[oe-commits] [openembedded-core] 07/11: glib: Whitelist CVE-2019-12450
git at git.openembedded.org
git at git.openembedded.org
Mon Dec 16 23:11:55 UTC 2019
This is an automated email from the git hooks/post-receive script.
rpurdie pushed a commit to branch zeus
in repository openembedded-core.
commit 060e46a73fb08b21c2acc5dddce30168574cd4f1
Author: Adrian Bunk <bunk at stusta.de>
AuthorDate: Sat Dec 14 14:15:01 2019 +0800
glib: Whitelist CVE-2019-12450
Fixed in 2.60.4, but CPE data is outdated.
Signed-off-by: Adrian Bunk <bunk at stusta.de>
Signed-off-by: Anuj Mittal <anuj.mittal at intel.com>
Signed-off-by: Richard Purdie <richard.purdie at linuxfoundation.org>
---
meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb | 3 +++
1 file changed, 3 insertions(+)
diff --git a/meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb b/meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb
index 7404737..5aefa6a 100644
--- a/meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb
+++ b/meta/recipes-core/glib-2.0/glib-2.0_2.60.7.bb
@@ -23,3 +23,6 @@ SRC_URI_append_class-target = " file://glib-meson.cross"
SRC_URI[md5sum] = "f036f78a7fca330d9f7d939fcf794bde"
SRC_URI[sha256sum] = "8b12c0af569afd3b71200556ad751bad4cf4bf7bc4b5f880638459a42ca86310"
+
+# Fixed in 2.60.4, but CPE data is outdated
+CVE_CHECK_WHITELIST += "CVE-2019-12450"
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Openembedded-commits
mailing list