From: Ross Burton Date: Tue, 14 Apr 2026 15:56:47 +0000 (+0100) Subject: graphene: ignore CVE-2024-1984 X-Git-Tag: yocto-6.0~115 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=1b0e3fac4b7b58ff69f2567c8d7fda1ea1411eb6;p=thirdparty%2Fopenembedded%2Fopenembedded-core.git graphene: ignore CVE-2024-1984 This CVE is for a WordPress theme called Graphene. It's likely that the CPE for this graphene will be gnome:graphene but this hasn't been formally documented, so exclude this one CVE for now. Signed-off-by: Ross Burton Signed-off-by: Richard Purdie --- diff --git a/meta/recipes-graphics/graphene/graphene_1.10.8.bb b/meta/recipes-graphics/graphene/graphene_1.10.8.bb index d14a6403ff..7aa72b4a78 100644 --- a/meta/recipes-graphics/graphene/graphene_1.10.8.bb +++ b/meta/recipes-graphics/graphene/graphene_1.10.8.bb @@ -26,3 +26,5 @@ EXTRA_OEMESON = "-Dinstalled_tests=false" FILES:${PN} += "${libdir}/graphene-1.0" BBCLASSEXTEND = "native nativesdk" + +CVE_STATUS[CVE-2024-1984] = "cpe-incorrect: issue in a WordPress theme"