]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4ae9daf) | patch
go: ignore CVE-2025-0913
authorPeter Marko <peter.marko@siemens.com>
Sun, 10 Aug 2025 08:18:53 +0000 (10:18 +0200)
committerSteve Sakoman <steve@sakoman.com>
Mon, 11 Aug 2025 17:09:08 +0000 (10:09 -0700)
commit473da932a8f94b7454e0e13912753a7e7545fc17
tree9abc543c0c25177acd7e3456c07b4206fd12657etree | snapshot
parent4ae9daf3d05530952a8b002257dd9afda2e077e4commit | diff
go: ignore CVE-2025-0913

This is problem on Windows platform only.

Per NVD report [1], CPE has "and" clause
Running on/with
 cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Also linked patch [2] changes Windows files only (and tests).

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-0913
[2] https://go-review.googlesource.com/c/go/+/672396

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-devtools/go/go-1.17.13.inc diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib