From: Peter Marko <peter.marko@siemens.com>
Date: Wed, 19 Feb 2025 17:40:27 +0000 (+0100)
Subject: sassc: set status of CVE-2022-43357
X-Git-Tag: yocto-5.2~424
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=d7d45b5025550c1031ba9e44bc653f9d638c275e;p=thirdparty%2Fopenembedded%2Fopenembedded-core-contrib.git

sassc: set status of CVE-2022-43357

When this recipe was copied from oe, last commit was missing.
https://git.openembedded.org/meta-openembedded/commit/?id=576b84263bac4dda26d84d116a9e7628a126f866

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-support/sass/sassc_git.bb b/meta/recipes-support/sass/sassc_git.bb
index b52fc9de752..b7f57ca244b 100644
--- a/meta/recipes-support/sass/sassc_git.bb
+++ b/meta/recipes-support/sass/sassc_git.bb
@@ -12,4 +12,6 @@ SRCREV = "66f0ef37e7f0ad3a65d2f481eff09d09408f42d0"
 S = "${WORKDIR}/git"
 PV = "3.6.2"
 
+CVE_STATUS[CVE-2022-43357] = "cpe-incorrect: this is CVE for libsass, not sassc wrapper"
+
 BBCLASSEXTEND = "native"