diff options
author | Davide Gardenal <davidegarde2000@gmail.com> | 2022-07-18 13:07:05 +0200 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2022-07-21 07:17:06 -0700 |
commit | cd54a3b37d31d2e293235dfee8acc1b99fe2f794 (patch) | |
tree | 877673fd80a3ac057c2d4b3e18e30a18fb2cce04 | |
parent | a47ef046619d639dfbd3be2a13ef6d5b40fd40a1 (diff) | |
download | meta-openembedded-contrib-cd54a3b37d31d2e293235dfee8acc1b99fe2f794.tar.gz |
libplist: ignore patched CVEs
CVE-2017-5834, CVE-2017-5835 and CVE-2017-5836 are patched in our
version of libplist but they don't have a vulnerable version range in
the NVD database, that's why they need to be ignored.
Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit 261465eb6e2bd8f83e6841f8e42e1fb1be6d1499)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
-rw-r--r-- | meta-oe/recipes-extended/libimobiledevice/libplist_2.2.0.bb | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/libimobiledevice/libplist_2.2.0.bb b/meta-oe/recipes-extended/libimobiledevice/libplist_2.2.0.bb index db4f507b7c..daaff00395 100644 --- a/meta-oe/recipes-extended/libimobiledevice/libplist_2.2.0.bb +++ b/meta-oe/recipes-extended/libimobiledevice/libplist_2.2.0.bb @@ -13,6 +13,12 @@ SRC_URI = "git://github.com/libimobiledevice/libplist;protocol=https;branch=mast S = "${WORKDIR}/git" +CVE_CHECK_IGNORE += "\ + CVE-2017-5834 \ + CVE-2017-5835 \ + CVE-2017-5836 \ +" + do_install:append () { if [ -e ${D}${libdir}/python*/site-packages/plist/_plist.so ]; then chrpath -d ${D}${libdir}/python*/site-packages/plist/_plist.so |