]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commitdiff
projects / thirdparty / openembedded / openembedded-core.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 9b121df)
libtirpc: Mark CVE-2021-46828 as resolved
authorRichard Purdie <richard.purdie@linuxfoundation.org>
Mon, 22 Aug 2022 14:31:25 +0000 (15:31 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Tue, 23 Aug 2022 14:23:27 +0000 (15:23 +0100)
This CVE only applied to pre 1.3.3rc1 and we're on 1.3.3 so we're sorted
but the rc versions make the automated matching fail. Therefore handle
manually.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb patch | blob | blame | history

diff --git a/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb b/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
index bd13f6e95e910e6835116597734858b0672fe867..8c6c20733c9c5b9694729c92a62663f353d19af9 100644 (file)
--- a/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
+++ b/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
@@ -14,6 +14,9 @@ UPSTREAM_CHECK_URI = "https://sourceforge.net/projects/libtirpc/files/libtirpc/"
 UPSTREAM_CHECK_REGEX = "(?P<pver>\d+(\.\d+)+)/"
 SRC_URI[sha256sum] = "6474e98851d9f6f33871957ddee9714fdcd9d8a5ee9abb5a98d63ea2e60e12f3"
 
+# Was fixed in 1.3.3rc1 so not present in 1.3.3
+CVE_CHECK_IGNORE += "CVE-2021-46828"
+
 inherit autotools pkgconfig
 
 EXTRA_OECONF = "--disable-gssapi"
Mirror of git://git.openembedded.org/openembedded-core