From: Richard Purdie <richard.purdie@linuxfoundation.org>
Date: Mon, 22 Aug 2022 14:31:25 +0000 (+0100)
Subject: libtirpc: Mark CVE-2021-46828 as resolved
X-Git-Tag: 2022-10~327
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=28cd290cc70f2401da1f51d17a3533ce581afbca;p=thirdparty%2Fopenembedded%2Fopenembedded-core.git

libtirpc: Mark CVE-2021-46828 as resolved

This CVE only applied to pre 1.3.3rc1 and we're on 1.3.3 so we're sorted
but the rc versions make the automated matching fail. Therefore handle
manually.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb b/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
index bd13f6e95e9..8c6c20733c9 100644
--- a/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
+++ b/meta/recipes-extended/libtirpc/libtirpc_1.3.3.bb
@@ -14,6 +14,9 @@ UPSTREAM_CHECK_URI = "https://sourceforge.net/projects/libtirpc/files/libtirpc/"
 UPSTREAM_CHECK_REGEX = "(?P<pver>\d+(\.\d+)+)/"
 SRC_URI[sha256sum] = "6474e98851d9f6f33871957ddee9714fdcd9d8a5ee9abb5a98d63ea2e60e12f3"
 
+# Was fixed in 1.3.3rc1 so not present in 1.3.3
+CVE_CHECK_IGNORE += "CVE-2021-46828"
+
 inherit autotools pkgconfig
 
 EXTRA_OECONF = "--disable-gssapi"