]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1efbe10) | patch
curl: ignore CVE-2025-0725
authorYogita Urade <yogita.urade@windriver.com>
Wed, 2 Apr 2025 08:20:01 +0000 (08:20 +0000)
committerSteve Sakoman <steve@sakoman.com>
Fri, 4 Apr 2025 15:46:16 +0000 (08:46 -0700)
commit9077246122b1284e8b6430384cccaf6f0b6c80c3
tree93f48bf703e3bc391a5eeaa7a6c2ff4497be03e5tree | snapshot
parent1efbe1004bc82e7c14c1e8bd4ce644f5015c3346commit | diff
curl: ignore CVE-2025-0725

CVE-2025-0725 can only trigger for curl when using a runtime
zlib version 1.2.0.3 or older and kirkstone supports
zlib 1.2.11 version, hence ignore cve for kirkstone.

Reference:
https://curl.se/docs/CVE-2025-0725.html
https://git.openembedded.org/openembedded-core/commit/?h=scarthgap&id=8c3b4a604b40260e7ca9575715dd8017e17d35c0

Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/curl/curl_7.82.0.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib