git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit

projects / thirdparty / openembedded / openembedded-core.git / commit

author	Ralph Siemsen <ralph.siemsen@linaro.org>
	Thu, 17 Nov 2022 16:54:52 +0000 (11:54 -0500)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Wed, 23 Nov 2022 00:26:19 +0000 (00:26 +0000)
commit	bca720eca95929752436b56aa01e7fddfa1c834f
tree	0f31e497e58654b5f9baa02399e375b46d8aef8b	tree
parent	aab2a343be4b0b21dcaf22a7fbf77007d48c08d6	commit \| diff

golang: ignore CVE-2022-29804

The issue only affects Windows per the golang announcement [1]:

On Windows, the filepath.Clean function could convert an invalid path to
a valid, absolute path. For example, Clean(`.\c:`) returned `c:`.

[1] https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg

Signed-off-by: Ralph Siemsen <ralph.siemsen@linaro.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

meta/recipes-devtools/go/go-1.14.inc

diff | blob | blame | history

Mirror of git://git.openembedded.org/openembedded-core

RSS Atom