git: ignore CVE-2022-41953

author Ross Burton <ross.burton@arm.com>

Mon, 30 Jan 2023 12:07:08 +0000 (12:07 +0000)

committer Steve Sakoman <steve@sakoman.com>

Mon, 20 Feb 2023 15:51:44 +0000 (05:51 -1000)
author Ross Burton <ross.burton@arm.com>
Mon, 30 Jan 2023 12:07:08 +0000 (12:07 +0000)
committer Steve Sakoman <steve@sakoman.com>
Mon, 20 Feb 2023 15:51:44 +0000 (05:51 -1000)
diff --git a/meta/recipes-devtools/git/git.inc b/meta/recipes-devtools/git/git.inc

index d707f25456ee45930f3604b668ef4f01cd1f1f4d..ed6308ea2d89d642a2a0309338b2c0de9a518368 100644 (file)
--- a/meta/recipes-devtools/git/git.inc
+++ b/meta/recipes-devtools/git/git.inc
@@ -23,6 +23,8 @@ CVE_PRODUCT = "git-scm:git"
  # in mirrored git repos. Most OE users wouldn't build the docs and
  # we don't see this as a major issue for our general users/usecases.
  CVE_CHECK_WHITELIST += "CVE-2022-24975"
+# This is specific to Git-for-Windows
+CVE_CHECK_WHITELIST += "CVE-2022-41953"
  
  PACKAGECONFIG ??= ""
  PACKAGECONFIG[cvsserver] = ""
author	Ross Burton <ross.burton@arm.com>
	Mon, 30 Jan 2023 12:07:08 +0000 (12:07 +0000)
committer	Steve Sakoman <steve@sakoman.com>
	Mon, 20 Feb 2023 15:51:44 +0000 (05:51 -1000)