mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-04-23 00:32:12 +02:00
Code Issues Packages Projects Releases Wiki Activity

gnupg: ignore CVE-2022-3515

Browse Source 
This is vulnerability of libksba and we use fixed libksba version
(currently 1.6.4).

(From OE-Core rev: 12007a6d19db220e6540948de9818332192ecde1)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
Peter Marko
2024-12-01 19:53:34 +01:00
committed by Steve Sakoman
parent da9b588be4
commit 4df7e37fca
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
meta/recipes-support/gnupg/gnupg_2.3.7.bb
View File

@@ -87,3 +87,5 @@ lcl_maybe_fortify:mipsarch = ""
# upstream-wontfix: Upstream doesn't seem to be keen on merging the proposed commit - https://dev.gnupg.org/T5993
CVE_CHECK_IGNORE += "CVE-2022-3219"
# cpe-incorrect: this is vulnerability of libksba and we use fixed libksba version
CVE_CHECK_IGNORE += "CVE-2022-3515"