mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-10 01:09:40 +01:00
Code Issues Packages Projects Releases Wiki Activity

harfbuzz: ignore CVE-2026-22693

Browse Source 
Patch [1] linked in NVD report fixes issue in cache code introduced only
in v6.0.0 (as can be seen in tags containind that commit).

[1] 1265ff8d99
[2] 7a004a7ac2

(From OE-Core rev: 1d7c87fa2e499927cb6a26e4b2ad99e6127b6e33)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
This commit is contained in:
Peter Marko
2026-02-22 22:28:07 +01:00
committed by Paul Barker
parent b5f43fb19e
commit 822c6db93e
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
meta/recipes-graphics/harfbuzz/harfbuzz_4.0.1.bb
View File

@@ -50,3 +50,6 @@ FILES:${PN}-icu-dev = "${libdir}/libharfbuzz-icu.la \
FILES:${PN}-subset = "${libdir}/libharfbuzz-subset.so.*"
BBCLASSEXTEND = "native nativesdk"
# fixed-version: vulnerability was introduced in v6.0.0
CVE_CHECK_IGNORE += "CVE-2026-22693"