From: Peter Marko <peter.marko@siemens.com>
Date: Fri, 6 Dec 2024 18:25:12 +0000 (+0100)
Subject: tiff: remove status for CVE-2023-3164
X-Git-Tag: uninative-4.7~642
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=53584c5f37f551d8fcee83496627ea0b0e7c883d;p=thirdparty%2Fopenembedded%2Fopenembedded-core.git

tiff: remove status for CVE-2023-3164

We have reached higher version than what NVD marks for fix.
So this explicit status setting is no longer needed.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-multimedia/libtiff/tiff_4.7.0.bb b/meta/recipes-multimedia/libtiff/tiff_4.7.0.bb
index 474fe1e8fd9..5b318d06219 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.7.0.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.7.0.bb
@@ -16,7 +16,6 @@ SRC_URI[sha256sum] = "67160e3457365ab96c5b3286a0903aa6e78bdc44c4bc737d2e486bcecb
 UPSTREAM_CHECK_REGEX = "tiff-(?P<pver>\d+(\.\d+)+).tar"
 
 CVE_STATUS[CVE-2015-7313] = "fixed-version: Tested with check from https://security-tracker.debian.org/tracker/CVE-2015-7313 and already 4.3.0 doesn't have the issue"
-CVE_STATUS[CVE-2023-3164] = "cpe-incorrect: Issue only affects the tiffcrop tool not compiled by default since 4.6.0"
 
 inherit autotools multilib_header