[oe] [meta-qt5][PATCH] set CVE_PRODUCT
Mikko Rapeli
mikko.rapeli at bmw.de
Fri Jul 21 08:20:31 UTC 2017
This way yocto cve-check can find open CVE's for qt5 recipes. See also:
http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html
"Results from cve-check are not very good at the moment.
One of the reasons for this is that component names used in CVE
database differ from yocto recipe names. This series fixes several
of those name mapping problems by setting the CVE_PRODUCT correctly
in the recipes. To check this mapping with after a build, I'm exporting
LICENSE and CVE_PRODUCT variables to buildhistory for recipes and
packages."
Mikko Rapeli (1):
qt5-git.inc: set CVE_PRODUCT to qt
recipes-qt/qt5/qt5-git.inc | 2 ++
1 file changed, 2 insertions(+)
--
1.9.1
More information about the Openembedded-devel
mailing list