mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-02 18:52:40 +02:00
Code Issues Packages Projects Releases Wiki Activity

dpkg: set status for CVE-2025-6297

Browse Source 
NVD tracks this CVE as "Up to (excluding) 2025-06-30"
(which is fix commit date, not dpkg version)

(From OE-Core rev: 75859969b5ed7359124198eb48c480b8f6fe6f8f)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Peter Marko
2025-08-15 19:05:17 +02:00
committed by Richard Purdie
parent 6f397c72f4
commit 5dce840ba8
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
meta/recipes-devtools/dpkg/dpkg_1.22.21.bb
View File

@@ -19,3 +19,6 @@ SRC_URI = "git://salsa.debian.org/dpkg-team/dpkg.git;protocol=https;branch=1.22.
SRC_URI:append:class-native = " file://0001-build.c-ignore-return-of-1-from-tar-cf.patch"
SRCREV = "d72b038fd2113cb62972e4071db03dd1388394d8"
# NVD tracks this CVE as "Up to (excluding) 2025-06-30" (which is fix commit date, not dpkg version)
CVE_STATUS[CVE-2025-6297] = "cpe-incorrect: this is fixed in 1.22.21"