git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

author	Peter Marko <peter.marko@siemens.com>
	Sun, 24 Aug 2025 16:55:22 +0000 (18:55 +0200)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 28 Aug 2025 09:46:23 +0000 (10:46 +0100)
commit	73ee9789183aa95072af2b51ac9e08203f4e33f9
tree	03f50f22464a6aa013e2e1769e3262ff3bf49d19	tree
parent	875e622eaa318eecd8214c2481d431e6a88e8419	commit \| diff

recipes: cleanup CVE_STATUS which are resolved now

The don't show up in CVE metrics anymore since they were either fixed
upstream or recipe version was upgraded meanwhile.

* bind CVE-2019-6470: cpe got corrected in nvd db
* libxml2 CVE-2023-45322: version is now higher than NVD cpe
* zlib CVE-2023-45853: version is now higher than NVD cpe
* gcc CVE-2021-37322: version is now higher than NVD cpe
* python3
  * CVE-2007-4559: version is now higher than NVD cpe
  * CVE-2019-18348: version is now higher than NVD cpe
  * CVE-2020-15523: version is now higher than NVD cpe
  * CVE-2022-26488: version is now higher than NVD cpe
  * CVE-2015-20107: version is now higher than NVD cpe
  * CVE-2023-36632: version is now higher than NVD cpe
* rust
  * CVE-2024-24576: NVD has no cpe, but we have newer version as fix
  * CVE-2024-43402: version is now higher than NVD cpe
* cups CVE-2021-25317: version is now higher than NVD cpe
* ghostscript CVE-2023-38559: version is now higher than NVD cpe
* libtirpc CVE-2021-46828: version is now higher than NVD cpe
* unzip CVE-2008-0888: version is now higher than NVD cpe
* ffmpeg CVE-2023-39018: cpe got corrected in nvd db
* libxslt CVE-2022-29824: version is now higher than NVD cpe
* libyaml
  * CVE-2024-35325: CVE is now rejected in NVD DB
  * CVE-2024-35326: CVE is now rejected in NVD DB
  * CVE-2024-35328: CVE is now rejected in NVD DB

Also add comment for iputils regarding reports for FKIE/NVD2.

Also remove some trailing spaces in python recipe.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

meta/recipes-connectivity/bind/bind_9.20.11.bb		diff \| blob \| blame \| history
meta/recipes-core/libxml/libxml2_2.14.5.bb		diff \| blob \| blame \| history
meta/recipes-core/zlib/zlib_1.3.1.bb		diff \| blob \| blame \| history
meta/recipes-devtools/gcc/gcc-15.2.inc		diff \| blob \| blame \| history
meta/recipes-devtools/python/python3_3.13.7.bb		diff \| blob \| blame \| history
meta/recipes-devtools/rust/rust-source.inc		diff \| blob \| blame \| history
meta/recipes-extended/cups/cups.inc		diff \| blob \| blame \| history
meta/recipes-extended/ghostscript/ghostscript_10.05.1.bb		diff \| blob \| blame \| history
meta/recipes-extended/iputils/iputils_20250605.bb		diff \| blob \| blame \| history
meta/recipes-extended/libtirpc/libtirpc_1.3.6.bb		diff \| blob \| blame \| history
meta/recipes-extended/unzip/unzip_6.0.bb		diff \| blob \| blame \| history
meta/recipes-multimedia/ffmpeg/ffmpeg_7.1.1.bb		diff \| blob \| blame \| history
meta/recipes-support/libxslt/libxslt_1.1.43.bb		diff \| blob \| blame \| history
meta/recipes-support/libyaml/libyaml_0.2.5.bb		diff \| blob \| blame \| history