aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAdrian Bunk <bunk@stusta.de>2020-01-17 18:58:18 +0200
committerArmin Kuster <akuster808@gmail.com>2020-01-22 18:26:59 -0800
commit8e76d2508da411a1a67f3226465c83fec85dfe97 (patch)
tree7362bcc281ec6eb57d937e9dff9fb67d74e8a784
parentb9fb2913c72ec771e4da2931528f6f5425c14913 (diff)
downloadopenembedded-core-contrib-8e76d2508da411a1a67f3226465c83fec85dfe97.tar.gz
openembedded-core-contrib-8e76d2508da411a1a67f3226465c83fec85dfe97.tar.bz2
openembedded-core-contrib-8e76d2508da411a1a67f3226465c83fec85dfe97.zip
openssl: Whitelist CVE-2019-0190
This is only a problem with older Apache versions. Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com>
-rw-r--r--meta/recipes-connectivity/openssl/openssl_1.1.1d.bb4
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
index 0e65f333e22..af2217bd15d 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1d.bb
@@ -205,3 +205,7 @@ RCONFLICTS_openssl-conf = "openssl10-conf"
BBCLASSEXTEND = "native nativesdk"
CVE_PRODUCT = "openssl:openssl"
+
+# Only affects OpenSSL >= 1.1.1 in combination with Apache < 2.4.37
+# Apache in meta-webserver is already recent enough
+CVE_CHECK_WHITELIST += "CVE-2019-0190"