Message ID | 20230913110145.1100755-1-jose.quaresma@foundries.io |
---|---|
State | New |
Headers | show |
Series | [meta-oe] opensc: ignore CVE-2021-34193 | expand |
Sorry but forgot to mention that this patch is for kirstone, should I send a new one? Jose Jose Quaresma <quaresma.jose@gmail.com> escreveu no dia quarta, 13/09/2023 à(s) 12:02: > The CVE-2021-34193 is a duplicate CVE covering the 5 individual already > fixed. > > https://github.com/OpenSC/OpenSC/pull/2855 > > Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> > --- > meta-oe/recipes-support/opensc/opensc_0.22.0.bb | 5 +++++ > 1 file changed, 5 insertions(+) > > diff --git a/meta-oe/recipes-support/opensc/opensc_0.22.0.bb > b/meta-oe/recipes-support/opensc/opensc_0.22.0.bb > index 4590b85fa..3bb79b9d9 100644 > --- a/meta-oe/recipes-support/opensc/opensc_0.22.0.bb > +++ b/meta-oe/recipes-support/opensc/opensc_0.22.0.bb > @@ -16,6 +16,11 @@ SRCREV = "c902e1992195e00ada12d71beb1029287cd72037" > SRC_URI = "git://github.com/OpenSC/OpenSC;branch=master;protocol=https \ > file://CVE-2023-2977.patch \ > " > + > +# CVE-2021-34193 is a duplicate CVE covering the 5 individual > +# > https://github.com/OpenSC/OpenSC/pull/2855/commits/7a049fc3922060fb75cb9fea9e58eef9edc357ae > +CVE_CHECK_IGNORE += "CVE-2021-34193" > + > DEPENDS = "virtual/libiconv openssl" > > S = "${WORKDIR}/git" > -- > 2.34.1 > >
diff --git a/meta-oe/recipes-support/opensc/opensc_0.22.0.bb b/meta-oe/recipes-support/opensc/opensc_0.22.0.bb index 4590b85fa..3bb79b9d9 100644 --- a/meta-oe/recipes-support/opensc/opensc_0.22.0.bb +++ b/meta-oe/recipes-support/opensc/opensc_0.22.0.bb @@ -16,6 +16,11 @@ SRCREV = "c902e1992195e00ada12d71beb1029287cd72037" SRC_URI = "git://github.com/OpenSC/OpenSC;branch=master;protocol=https \ file://CVE-2023-2977.patch \ " + +# CVE-2021-34193 is a duplicate CVE covering the 5 individual +# https://github.com/OpenSC/OpenSC/pull/2855/commits/7a049fc3922060fb75cb9fea9e58eef9edc357ae +CVE_CHECK_IGNORE += "CVE-2021-34193" + DEPENDS = "virtual/libiconv openssl" S = "${WORKDIR}/git"
The CVE-2021-34193 is a duplicate CVE covering the 5 individual already fixed. https://github.com/OpenSC/OpenSC/pull/2855 Signed-off-by: Jose Quaresma <jose.quaresma@foundries.io> --- meta-oe/recipes-support/opensc/opensc_0.22.0.bb | 5 +++++ 1 file changed, 5 insertions(+)