diff options
| author |   Peter Marko <peter.marko@siemens.com> | 2023-09-27 23:06:32 +0200 |
|---|---|---|
| committer |   Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-09-28 12:37:44 +0100 |
| commit | 190dec283b7deeb7ff898d1811924db806509e4a (patch) | |
| tree | 88953b5240afcb04332a63376c9f83b7f54c27a8 /meta/recipes-devtools | |
| parent | 941ba1a132bafa9c9be855fb91fec96d8b06299f (diff) | |
| download | openembedded-core-contrib-190dec283b7deeb7ff898d1811924db806509e4a.tar.gz | |
json-c: define CVE_VERSION
Recently NVD updated all CVEs for json-c and old fixed
cves are reported in some older yocto branches.
NVD match clause now includes full tag name including
date which is "greater" than tag without additional numbers.
Define CVE_VERSION identical to full tag also on master to
avoid future CVEs to be reported incorrectly.
Put it close to hash so recipe update patch includes this line.
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Diffstat (limited to 'meta/recipes-devtools')
| -rw-r--r-- | meta/recipes-devtools/json-c/json-c_0.17.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-devtools/json-c/json-c_0.17.bb b/meta/recipes-devtools/json-c/json-c_0.17.bb index b7b596212f..f4b7a32cea 100644 --- a/meta/recipes-devtools/json-c/json-c_0.17.bb +++ b/meta/recipes-devtools/json-c/json-c_0.17.bb @@ -9,6 +9,9 @@ SRC_URI = "https://s3.amazonaws.com/json-c_releases/releases/${BP}.tar.gz \ " SRC_URI[sha256sum] = "7550914d58fb63b2c3546f3ccfbe11f1c094147bd31a69dcd23714d7956159e6" +# NVD uses full tag name including date +CVE_VERSION = "0.17-20230812" + UPSTREAM_CHECK_URI = "https://github.com/${BPN}/${BPN}/tags" UPSTREAM_CHECK_REGEX = "json-c-(?P<pver>\d+(\.\d+)+)-\d+" |