zlib: ignore CVE-2026-22184

author Peter Marko <peter.marko@siemens.com>

Fri, 16 Jan 2026 19:39:21 +0000 (20:39 +0100)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Thu, 22 Jan 2026 14:21:21 +0000 (14:21 +0000)
author Peter Marko <peter.marko@siemens.com>
Fri, 16 Jan 2026 19:39:21 +0000 (20:39 +0100)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Thu, 22 Jan 2026 14:21:21 +0000 (14:21 +0000)
diff --git a/meta/recipes-core/zlib/zlib_1.3.1.bb b/meta/recipes-core/zlib/zlib_1.3.1.bb

index 592b7f142296fee3010ca278549760a2e3ae5701..ef8314212160dcf71827074c04789236d838955b 100644 (file)
--- a/meta/recipes-core/zlib/zlib_1.3.1.bb
+++ b/meta/recipes-core/zlib/zlib_1.3.1.bb
@@ -51,3 +51,5 @@ BBCLASSEXTEND = "native nativesdk"
  
  # Adding 'CVE_PRODUCT' to avoid false detection of CVEs
  CVE_PRODUCT = "zlib:zlib gnu:zlib"
+
+CVE_STATUS[CVE-2026-22184] = "not-applicable-config: vulnerable file is not compiled"
author	Peter Marko <peter.marko@siemens.com>
	Fri, 16 Jan 2026 19:39:21 +0000 (20:39 +0100)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Thu, 22 Jan 2026 14:21:21 +0000 (14:21 +0000)