logrotate: Exclude CVE-2011-1548,1549,1550 from cve-check

These CVEs apply to the way logrotate was installed on Gentoo, Debian and SUSE, exclude from cve-check as they don't apply to OE. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 23643016f3b8794db772e333ff0b8f598571b628) Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-10 16:40:11 +0100
committer: Steve Sakoman <steve@sakoman.com> 2021-05-14 07:16:37 -1000
commit: 99cb9534902717e637f1460c1d1c10d290bbebf2 (patch)
tree: 5d850c5b79b1c26a143d67d6a2167a697c523d5e
parent: d18ba3735ff3438ebd60b680e6bae5227c85bccb (diff)
download: openembedded-core-99cb9534902717e637f1460c1d1c10d290bbebf2.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-extended/logrotate/logrotate_3.15.1.bb b/meta/recipes-extended/logrotate/logrotate_3.15.1.bb
index 503a0622b1..7c1b77add8 100644
--- a/meta/recipes-extended/logrotate/logrotate_3.15.1.bb
+++ b/meta/recipes-extended/logrotate/logrotate_3.15.1.bb
@@ -22,6 +22,9 @@ SRC_URI = "https://github.com/${BPN}/${BPN}/releases/download/${PV}/${BP}.tar.xz
 SRC_URI[md5sum] = "afe109afea749c306ff489203fde6beb"
 SRC_URI[sha256sum] = "491fec9e89f1372f02a0ab66579aa2e9d63cac5178dfa672c204c88e693a908b"
 
+# These CVEs are debian, gentoo or SUSE specific on the way logrotate was installed/used
+CVE_CHECK_WHITELIST += "CVE-2011-1548 CVE-2011-1549 CVE-2011-1550"
+
 PACKAGECONFIG ?= "${@bb.utils.filter('DISTRO_FEATURES', 'acl selinux', d)}"
 
 PACKAGECONFIG[acl] = ",,acl"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-10 16:40:11 +0100
committer	Steve Sakoman <steve@sakoman.com>	2021-05-14 07:16:37 -1000
commit	99cb9534902717e637f1460c1d1c10d290bbebf2 (patch)
tree	5d850c5b79b1c26a143d67d6a2167a697c523d5e
parent	d18ba3735ff3438ebd60b680e6bae5227c85bccb (diff)
download	openembedded-core-99cb9534902717e637f1460c1d1c10d290bbebf2.tar.gz