mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-04 23:02:22 +02:00
Code Issues Packages Projects Releases Wiki Activity

tiff: ignore CVE-2023-2731

Browse Source 
This further tweaks fix for CVE-2022-1622/CVE-2022-1623 by adding it to
one additional goto label.

Previous fix:
b4e79bfa0c

Additional fix:
9be22b639e

(From OE-Core rev: c7632c5a3853290292fa695a0a7b15eb06159036)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
Peter Marko
2024-12-31 22:25:08 +01:00
committed by Steve Sakoman
parent bc35e81080
commit 08538e11df
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
View File

@@ -65,8 +65,8 @@ UPSTREAM_CHECK_REGEX = "tiff-(?P<pver>\d+(\.\d+)+).tar"
# and 4.3.0 doesn't have the issue
CVE_CHECK_IGNORE += "CVE-2015-7313"
# These issues only affect libtiff post-4.3.0 but before 4.4.0,
# caused by 3079627e and fixed by b4e79bfa.
CVE_CHECK_IGNORE += "CVE-2022-1622 CVE-2022-1623"
# caused by 3079627e and fixed by b4e79bfa and again by 9be22b63
CVE_CHECK_IGNORE += "CVE-2022-1622 CVE-2022-1623 CVE-2023-2731"
# Issue is in jbig which we don't enable
CVE_CHECK_IGNORE += "CVE-2022-1210"