diff options
author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-11 14:13:08 +0100 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2021-05-14 07:16:38 -1000 |
commit | 256f6be93eed82c7db8a76b1038e105331c0009f (patch) | |
tree | a5f50b469fa6da8764d8a2e549598afe736c2330 | |
parent | d7779a9d58b088ce078956af4fdc0325d8c03c35 (diff) | |
download | openembedded-core-256f6be93eed82c7db8a76b1038e105331c0009f.tar.gz |
tiff: Exclude CVE-2015-7313 from cve-check
Some fix upstream addresses the issue, it isn't clear which change this was. Our
current version doesn't have issues with the test image though so we can exclude.
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3874da694ae1d9de06dd003bd80705205e2b033b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
-rw-r--r-- | meta/recipes-multimedia/libtiff/tiff_4.1.0.bb | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.1.0.bb b/meta/recipes-multimedia/libtiff/tiff_4.1.0.bb index 97ad575f64..cfea18ed29 100644 --- a/meta/recipes-multimedia/libtiff/tiff_4.1.0.bb +++ b/meta/recipes-multimedia/libtiff/tiff_4.1.0.bb @@ -19,6 +19,10 @@ SRC_URI[sha256sum] = "5d29f32517dadb6dbcd1255ea5bbc93a2b54b94fbf83653b4d65c7d677 # exclude betas UPSTREAM_CHECK_REGEX = "tiff-(?P<pver>\d+(\.\d+)+).tar" +# Tested with check from https://security-tracker.debian.org/tracker/CVE-2015-7313 +# and 4.1.0 doesn't have the issue +CVE_CHECK_WHITELIST += "CVE-2015-7313" + inherit autotools multilib_header CACHED_CONFIGUREVARS = "ax_cv_check_gl_libgl=no" |