sqlite3: set CVE_STATUS for CVE-2023-36191

The error is a bug. It has been fixed upstream. But it is not a vulnerability. You may safely ignore the CVE. Refer: [1] https://www.sqlite.org/forum/forumpost/19f55ef73b Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Changqing Li <changqing.li@windriver.com> 2023-09-04 10:09:47 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2023-09-04 20:13:57 +0100
commit: 34874433c1e6c9e21d45d9ba686e4bb15479659d (patch)
tree: bb76a0515d0a2305658db62c40d45c7e37bcc66f /meta/recipes-support/sqlite
parent: db76ac9968ceddc01e48069dbacc212eb4f88574 (diff)
download: openembedded-core-34874433c1e6c9e21d45d9ba686e4bb15479659d.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-support/sqlite/sqlite3_3.43.0.bb b/meta/recipes-support/sqlite/sqlite3_3.43.0.bb
index e6d7bb9cd5..84644a09e6 100644
--- a/meta/recipes-support/sqlite/sqlite3_3.43.0.bb
+++ b/meta/recipes-support/sqlite/sqlite3_3.43.0.bb
@@ -6,3 +6,5 @@ LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed0
 SRC_URI = "http://www.sqlite.org/2023/sqlite-autoconf-${SQLITE_PV}.tar.gz"
 SRC_URI[sha256sum] = "49008dbf3afc04d4edc8ecfc34e4ead196973034293c997adad2f63f01762ae1"
 
+CVE_STATUS[CVE-2023-36191] = "disputed: The error is a bug. It has been fixed upstream. But it is not a vulnerability"
+
author	Changqing Li <changqing.li@windriver.com>	2023-09-04 10:09:47 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-09-04 20:13:57 +0100
commit	34874433c1e6c9e21d45d9ba686e4bb15479659d (patch)
tree	bb76a0515d0a2305658db62c40d45c7e37bcc66f /meta/recipes-support/sqlite
parent	db76ac9968ceddc01e48069dbacc212eb4f88574 (diff)
download	openembedded-core-34874433c1e6c9e21d45d9ba686e4bb15479659d.tar.gz