diff options
| author |   Ross Burton <ross.burton@arm.com> | 2023-10-23 18:38:20 +0100 |
|---|---|---|
| committer |   Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-10-26 15:28:23 +0100 |
| commit | a32f285501b459cfe18e3135a3c531b63f58034c (patch) | |
| tree | eda386dbb6ad34a142127460908a637bc9ede654 | |
| parent | b93dd888b861aa6df97cd78b70fa9f757cfcdf61 (diff) | |
| download | openembedded-core-contrib-a32f285501b459cfe18e3135a3c531b63f58034c.tar.gz | |
zlib: ignore CVE-2023-45853
This CVE relates to a bug in the minizip tool, but we don't build that.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta/recipes-core/zlib/zlib_1.3.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-core/zlib/zlib_1.3.bb b/meta/recipes-core/zlib/zlib_1.3.bb index c8fd855ee6..1ed18172fa 100644 --- a/meta/recipes-core/zlib/zlib_1.3.bb +++ b/meta/recipes-core/zlib/zlib_1.3.bb @@ -45,3 +45,5 @@ do_install_ptest() { } BBCLASSEXTEND = "native nativesdk" + +CVE_STATUS[CVE-2023-45853] = "not-applicable-config: we don't build minizip" |