meta-oe: ignore patched CVEs

Some old CVEs don't have a vulnerable version range in the NVD database, this causes come mismatch with cve-check. Ignore many CVEs that are picked up by the class but are patched in our products. Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit efa12676dd0676fd0aa63457d7ba360fe8a6fae2) Signed-off-by: Armin Kuster <akuster808@gmail.com>
author: Davide Gardenal <davidegarde2000@gmail.com> 2022-07-18 13:07:06 +0200
committer: Armin Kuster <akuster808@gmail.com> 2022-07-21 07:17:15 -0700
commit: bd8f5fa080beba824b5d08c34df53768224857eb (patch)
tree: 6afc271f1a71b22ff1c67c1f10f66f12802faf41 /meta-oe/recipes-support/atop/atop_2.4.0.bb
parent: cd54a3b37d31d2e293235dfee8acc1b99fe2f794 (diff)
download: meta-openembedded-contrib-bd8f5fa080beba824b5d08c34df53768224857eb.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/meta-oe/recipes-support/atop/atop_2.4.0.bb b/meta-oe/recipes-support/atop/atop_2.4.0.bb
index 35540b3b8f..b1d2abde73 100644
--- a/meta-oe/recipes-support/atop/atop_2.4.0.bb
+++ b/meta-oe/recipes-support/atop/atop_2.4.0.bb
@@ -24,6 +24,10 @@ SRC_URI = "http://www.atoptool.nl/download/${BP}.tar.gz \
 SRC_URI[md5sum] = "1077da884ed94f2bc3c81ac3ab970436"
 SRC_URI[sha256sum] = "be1c010a77086b7d98376fce96514afcd73c3f20a8d1fe01520899ff69a73d69"
 
+CVE_CHECK_IGNORE += "\
+    CVE-2011-3618 \
+"
+
 do_compile() {
     oe_runmake all
 }
author	Davide Gardenal <davidegarde2000@gmail.com>	2022-07-18 13:07:06 +0200
committer	Armin Kuster <akuster808@gmail.com>	2022-07-21 07:17:15 -0700
commit	bd8f5fa080beba824b5d08c34df53768224857eb (patch)
tree	6afc271f1a71b22ff1c67c1f10f66f12802faf41 /meta-oe/recipes-support/atop/atop_2.4.0.bb
parent	cd54a3b37d31d2e293235dfee8acc1b99fe2f794 (diff)
download	meta-openembedded-contrib-bd8f5fa080beba824b5d08c34df53768224857eb.tar.gz