]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core.git/commit
projects / thirdparty / openembedded / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 53584c5) | patch
tiff: set status for CVEs firx in 4.7.0
authorPeter Marko <peter.marko@siemens.com>
Fri, 6 Dec 2024 18:25:13 +0000 (19:25 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Mon, 9 Dec 2024 09:17:50 +0000 (09:17 +0000)
commit56cbd53cffc39ff5067f6ed1412af36005a82fcc
treed04e71c4692f149b85215b7b24dbfd11dc4feb71tree | snapshot
parent53584c5f37f551d8fcee83496627ea0b0e7c883dcommit | diff
tiff: set status for CVEs firx in 4.7.0

NDV DB tracks these CVEs as version-less.
So these re-appered in CVE reports after patch files were removed during
last upgrade although the CVEs are fixed.
This seems to be a current trend with RedHat CVEs since due due to
current NVD CVE annotation situation, version-less CVEs are no longer
getting fixed-in added version when available.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-multimedia/libtiff/tiff_4.7.0.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core