[OE-core] [PATCH 1/1] binutils: fix PV to respect upstream tag and also cve database
Tom Rini
trini at konsulko.com
Thu Mar 28 14:56:22 UTC 2019
On Thu, Mar 28, 2019 at 02:38:40PM +0000, Burton, Ross wrote:
> On Thu, 28 Mar 2019 at 14:25, Tom Rini <trini at konsulko.com> wrote:
> > Bumping PE is what this is for too, to not break package feeds after
> > we've done something wrong in PV. So lets bump PE and not break feeds.
> > Especially since this is so that CVE check starts to see and correctly
> > complain about issues that will result in "lets move this from master to
> > ..." and so break feeds.
>
> Bumping PE is a nuclear-armed hammer when setting CVE_VERSION="2.32"
> is sufficient and will go away when we upgrade to 2.32.1 onwards.
So long as we don't break package feeds, OK. Thanks!
--
Tom
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.openembedded.org/pipermail/openembedded-core/attachments/20190328/546f9393/attachment-0001.sig>
More information about the Openembedded-core
mailing list