php: ignore patched CVEs

CVE-2007-2728, CVE-2007-3205 and CVE-2007-4596 are patched in our version of php but they don't have a vulnerable version range in the NVD database, that's why they need to be ignored. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 1642bfcb071aadb542c488bf79922842e32f1db5) Signed-off-by: Armin Kuster <akuster808@gmail.com>
author: Davide Gardenal <davidegarde2000@gmail.com> 2022-07-18 13:07:09 +0200
committer: Armin Kuster <akuster808@gmail.com> 2022-07-21 07:17:15 -0700
commit: b0bf2829a26e5bc834048642ed8ce0adbd51f0d3 (patch)
tree: 6fe192ef44ded2fe92f1f41d2b34210922f45e49
parent: aca019a2d0a61799441f36ff57c39496ca6577f3 (diff)
download: meta-openembedded-contrib-b0bf2829a26e5bc834048642ed8ce0adbd51f0d3.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/meta-oe/recipes-devtools/php/php_8.1.7.bb b/meta-oe/recipes-devtools/php/php_8.1.7.bb
index e9e8eccf3a..cf4f6be3fa 100644
--- a/meta-oe/recipes-devtools/php/php_8.1.7.bb
+++ b/meta-oe/recipes-devtools/php/php_8.1.7.bb
@@ -35,6 +35,12 @@ SRC_URI:append:class-target = " \
 S = "${WORKDIR}/php-${PV}"
 SRC_URI[sha256sum] = "b816753eb005511e695d90945c27093c3236cc73db1262656d9fadd73ead7e9d"
 
+CVE_CHECK_IGNORE += "\
+    CVE-2007-2728 \
+    CVE-2007-3205 \
+    CVE-2007-4596 \
+"
+
 inherit autotools pkgconfig python3native gettext
 
 # phpize is not scanned for absolute paths by default (but php-config is).
author	Davide Gardenal <davidegarde2000@gmail.com>	2022-07-18 13:07:09 +0200
committer	Armin Kuster <akuster808@gmail.com>	2022-07-21 07:17:15 -0700
commit	b0bf2829a26e5bc834048642ed8ce0adbd51f0d3 (patch)
tree	6fe192ef44ded2fe92f1f41d2b34210922f45e49
parent	aca019a2d0a61799441f36ff57c39496ca6577f3 (diff)
download	meta-openembedded-contrib-b0bf2829a26e5bc834048642ed8ce0adbd51f0d3.tar.gz