mirror of
https://git.yoctoproject.org/poky
synced 2026-02-22 17:39:39 +01:00
4a4f2b6df0
This CVE is applicable to "SQLite3 bindings for Node.js" only. References: https://nvd.nist.gov/vuln/detail/CVE-2022-21227 (From OE-Core rev: cfc42fdabb3f12eb4ac5069a549ba5699385dfdc) Signed-off-by: Sanjay Chitroda <schitrod@cisco.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
18 lines
803 B
BlitzBasic
18 lines
803 B
BlitzBasic
require sqlite3.inc
|
|
|
|
LICENSE = "PD"
|
|
LIC_FILES_CHKSUM = "file://sqlite3.h;endline=11;md5=786d3dc581eff03f4fd9e4a77ed00c66"
|
|
|
|
SRC_URI = "http://www.sqlite.org/2023/sqlite-autoconf-${SQLITE_PV}.tar.gz"
|
|
SRC_URI[sha256sum] = "e98c100dd1da4e30fa460761dab7c0b91a50b785e167f8c57acc46514fae9499"
|
|
|
|
# -19242 is only an issue in specific development branch commits
|
|
CVE_CHECK_IGNORE += "CVE-2019-19242"
|
|
# This is believed to be iOS specific (https://groups.google.com/g/sqlite-dev/c/U7OjAbZO6LA)
|
|
CVE_CHECK_IGNORE += "CVE-2015-3717"
|
|
# Issue in an experimental extension we don't have/use. Fixed by https://sqlite.org/src/info/b1e0c22ec981cf5f
|
|
CVE_CHECK_IGNORE += "CVE-2021-36690"
|
|
# As per https://nvd.nist.gov/vuln/detail/CVE-2022-21227
|
|
# this bug is applicable to SQLite3 Node.js
|
|
CVE_CHECK_IGNORE += "CVE-2022-21227"
|