aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorDavide Gardenal <davidegarde2000@gmail.com>2022-07-06 11:42:07 +0200
committerArmin Kuster <akuster808@gmail.com>2022-07-18 06:58:22 -0700
commit66106e15b97a8d2db24db0f62f6795ad256e7cae (patch)
treeee3e476ac62d1f121450aa5ed68d0424d54fa99e
parent5166896a02630392fa0ad6e29869ac12cdda3d17 (diff)
downloadmeta-openembedded-contrib-66106e15b97a8d2db24db0f62f6795ad256e7cae.tar.gz
meta-openembedded-contrib-66106e15b97a8d2db24db0f62f6795ad256e7cae.tar.bz2
meta-openembedded-contrib-66106e15b97a8d2db24db0f62f6795ad256e7cae.zip
spice: ignore patched CVEs
The following CVEs are already patched so we can ignore them: - CVE-2016-0749 - CVE-2016-2150 - CVE-2018-10893 This is caused by inaccurate CPE in the NVD database. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
-rw-r--r--meta-networking/recipes-support/spice/spice_git.bb6
1 files changed, 6 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/spice/spice_git.bb b/meta-networking/recipes-support/spice/spice_git.bb
index d9083bcbe8..1887a5582f 100644
--- a/meta-networking/recipes-support/spice/spice_git.bb
+++ b/meta-networking/recipes-support/spice/spice_git.bb
@@ -30,6 +30,12 @@ SRC_URI = " \
S = "${WORKDIR}/git"
+CVE_CHECK_IGNORE += "\
+ CVE-2016-0749 \
+ CVE-2016-2150 \
+ CVE-2018-10893 \
+"
+
inherit autotools gettext python3native python3-dir pkgconfig
DEPENDS += "spice-protocol jpeg pixman alsa-lib glib-2.0 python3-pyparsing-native python3-six-native glib-2.0-native"