Message ID | 20230627075013.23809-1-virendrak@kpit.com |
---|---|
State | New |
Headers | show |
Series | [meta-oe,dunfell] c-ares: whitelist CVE-2023-31124 | expand |
diff --git a/meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb b/meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb index 66254583b..152d91332 100644 --- a/meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb +++ b/meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb @@ -23,3 +23,7 @@ PACKAGES =+ "${PN}-utils" FILES_${PN}-utils = "${bindir}" BBCLASSEXTEND = "native nativesdk" + +# this vulneribility applies only when cross-compiling using autotools +# yocto cross-compiles via cmake which is also listed as official workaround +CVE_CHECK_WHITELIST += "CVE-2023-31124"
CVE-2023-31124 applies only when cross-compiling using autotools. Yocto cross-compiles via cmake which is also listed as official workaround. See: * https://nvd.nist.gov/vuln/detail/CVE-2023-31124 * https://github.com/c-ares/c-ares/security/advisories/GHSA-54xr-f67r-4pc4 Signed-off-by: virendra thakur <virendrak@kpit.com> --- meta-oe/recipes-support/c-ares/c-ares_1.18.1.bb | 4 ++++ 1 file changed, 4 insertions(+)