cmake: whitelist CVE-2016-10642

This CVE is specific to the npm package that can install cmake, so isn't relevant to our cmake recipe. Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Ross Burton <ross@burtonini.com> 2020-09-08 17:47:44 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-09-08 23:03:01 +0100
commit: 8e74ed809ec4c1f61264ecf5be4bc319e5e07766 (patch)
tree: 8d0066e1f675e57f0820d5368183ad55cec88156
parent: e7cbfd0573b77d7debab3fbf4b05565ac8b33f3a (diff)
download: openembedded-core-contrib-8e74ed809ec4c1f61264ecf5be4bc319e5e07766.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-devtools/cmake/cmake.inc b/meta/recipes-devtools/cmake/cmake.inc
index 1334977225..fa1b818ae4 100644
--- a/meta/recipes-devtools/cmake/cmake.inc
+++ b/meta/recipes-devtools/cmake/cmake.inc
@@ -25,3 +25,7 @@ SRC_URI = "https://cmake.org/files/v${CMAKE_MAJOR_VERSION}/cmake-${PV}.tar.gz \
 SRC_URI[sha256sum] = "5d4e40fc775d3d828c72e5c45906b4d9b59003c9433ff1b36a1cb552bbd51d7e"
 
 UPSTREAM_CHECK_REGEX = "cmake-(?P<pver>\d+(\.\d+)+)\.tar"
+
+# This is specific to the npm package that installs cmake, so isn't
+# relevant to OpenEmbedded
+CVE_CHECK_WHITELIST += "CVE-2016-10642"
author	Ross Burton <ross@burtonini.com>	2020-09-08 17:47:44 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2020-09-08 23:03:01 +0100
commit	8e74ed809ec4c1f61264ecf5be4bc319e5e07766 (patch)
tree	8d0066e1f675e57f0820d5368183ad55cec88156
parent	e7cbfd0573b77d7debab3fbf4b05565ac8b33f3a (diff)
download	openembedded-core-contrib-8e74ed809ec4c1f61264ecf5be4bc319e5e07766.tar.gz