aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDavide Gardenal <davidegarde2000@gmail.com>2022-07-18 13:07:07 +0200
committerArmin Kuster <akuster808@gmail.com>2022-07-26 07:08:00 -0700
commit2763eaf35f9b2b1ed410809cadfbdce27c1fa5e5 (patch)
treee60c406efe11a620c03d5e73d6c6ec2dff28b9fb
parent7430daa22dda374561ce5e47955a84705b3b8953 (diff)
downloadmeta-openembedded-contrib-2763eaf35f9b2b1ed410809cadfbdce27c1fa5e5.tar.gz
meta-openembedded-contrib-2763eaf35f9b2b1ed410809cadfbdce27c1fa5e5.tar.bz2
meta-openembedded-contrib-2763eaf35f9b2b1ed410809cadfbdce27c1fa5e5.zip
openjpeg: ignore CVE-2015-1239
This CVE is patched in our version of openjpeg. The NVD database doesn't include a version range this is why it's still reported. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
-rw-r--r--meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb4
1 files changed, 4 insertions, 0 deletions
diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
index f248619ec8..42d2b4efb0 100644
--- a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
+++ b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
@@ -15,6 +15,10 @@ SRC_URI = " \
SRCREV = "37ac30ceff6640bbab502388c5e0fa0bff23f505"
S = "${WORKDIR}/git"
+CVE_CHECK_IGNORE += "\
+ CVE-2015-1239 \
+"
+
inherit cmake
# for multilib