glibc: add ignore for CVE-2023-25139

This CVE has been fixed in the 2.37 release branch (07b9521fc6) and
we're now using a SHA that incorporates that commit, so manually mark it
as ignored.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

diff --git a/meta/recipes-core/glibc/glibc_2.37.bb b/meta/recipes-core/glibc/glibc_2.37.bb
index f299a3004a444ca0bdad51db0140d85e28dedf18..31c94929b939de590dd436e6e8acbd217f141b72 100644 (file)
--- a/meta/recipes-core/glibc/glibc_2.37.bb
+++ b/meta/recipes-core/glibc/glibc_2.37.bb
@@ -19,6 +19,9 @@ CVE_CHECK_IGNORE += "CVE-2019-1010025"
 # This has been integrated into the 2.36 branch as of c399271 so is now fixed
 CVE_CHECK_IGNORE += "CVE-2022-39046"
 
+# This is integrated into the 2.37 branch as of 07b9521fc6
+CVE_CHECK_IGNORE += "CVE-2023-25139"
+
 DEPENDS += "gperf-native bison-native"
 
 NATIVESDKFIXES ?= ""