mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-03-08 00:09:40 +01:00
Code Issues Packages Projects Releases Wiki Activity

zlib: ignore CVE-2026-22184

Browse Source 
This is CVE for example tool contrib/untgz.
This is not compiled in Yocto zlib recipe.

This CVE has controversial CVSS3 score of 9.8.

(From OE-Core rev: 1bdcd62d34b0b060b0e1e5142c5f3e7075f21cc2)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
This commit is contained in:
Peter Marko
2026-01-16 20:40:07 +01:00
committed by Paul Barker
parent 58f9b898da
commit ad756dec39
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
meta/recipes-core/zlib/zlib_1.2.11.bb
View File

@@ -58,3 +58,5 @@ BBCLASSEXTEND = "native nativesdk"
# this CVE is for cloudflare zlib
CVE_CHECK_IGNORE += "CVE-2023-6992"
# vulnerable file is not compiled
CVE_CHECK_IGNORE += "CVE-2026-22184"