diff options
author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-10 12:42:25 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-11 11:53:23 +0100 |
commit | d62b9974a5f3a0f462434ce2763c28a4b4bbcfc6 (patch) | |
tree | 1aa335caa04b76044bcfe774d9f5756a0f842bbd /meta | |
parent | 9b5355375d028577de0b98e05992de6a088cb972 (diff) | |
download | openembedded-core-contrib-d62b9974a5f3a0f462434ce2763c28a4b4bbcfc6.tar.gz |
qemu: Exclude CVE-2007-0998 from cve-check
The CVE applies to the built-in VNC server but we don't enable this by default.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta')
-rw-r--r-- | meta/recipes-devtools/qemu/qemu.inc | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc index e210f38cfe..32be057d0e 100644 --- a/meta/recipes-devtools/qemu/qemu.inc +++ b/meta/recipes-devtools/qemu/qemu.inc @@ -68,6 +68,10 @@ SRC_URI_append_class-nativesdk = " file://cross.patch" # Applies against virglrender < 0.6.0 and not qemu itself CVE_CHECK_WHITELIST += "CVE-2017-5957" +# The VNC server can expose host files uder some circumstances. We don't +# enable it by default. +CVE_CHECK_WHITELIST += "CVE-2007-0998" + COMPATIBLE_HOST_mipsarchn32 = "null" COMPATIBLE_HOST_mipsarchn64 = "null" |