[kirkstone] json-c: define CVE_VERSION

Message ID	20230927210540.15233-1-peter.marko@siemens.com
State	Accepted, archived
Commit	55e9ff0fe1de70f226557529f73c28f34f6956ed
Headers	show Return-Path: <peter.marko@siemens.com> ip: 185.136.64.225, mailfrom: fm-256628-202309272106266549f42251030942af-3rv0qu@rts-flowmailer.siemens.com) From: Peter Marko <peter.marko@siemens.com> To: openembedded-core@lists.openembedded.org Cc: Peter Marko <peter.marko@siemens.com> Subject: [OE-core][kirkstone][PATCH] json-c: define CVE_VERSION Date: Wed, 27 Sep 2023 23:05:40 +0200 Message-Id: <20230927210540.15233-1-peter.marko@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-256628:519-21489:flowmailer
Series	[kirkstone] json-c: define CVE_VERSION \| expand [kirkstone] json-c: define CVE_VERSION

Message ID

20230927210540.15233-1-peter.marko@siemens.com

State

Accepted, archived

Commit

55e9ff0fe1de70f226557529f73c28f34f6956ed

Headers

From: Peter Marko <peter.marko@siemens.com>
To: openembedded-core@lists.openembedded.org
Cc: Peter Marko <peter.marko@siemens.com>
Subject: [OE-core][kirkstone][PATCH] json-c: define CVE_VERSION
Date: Wed, 27 Sep 2023 23:05:40 +0200
Message-Id: <20230927210540.15233-1-peter.marko@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-256628:519-21489:flowmailer

Series

[kirkstone] json-c: define CVE_VERSION | expand

Commit Message

Peter Marko Sept. 27, 2023, 9:05 p.m. UTC

From: Peter Marko <peter.marko@siemens.com>

Recently NVD updated all CVEs for json-c and old fixed
CVE-2020-12762 is reported by cve_check now.
NVD match clause now includes full tag name including
date which is "greater" than tag without additional numbers.

Fix it by defining CVE_VERSION identical to full tag.
Put it close to hash so recipe update patch includes this line.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 meta/recipes-devtools/json-c/json-c_0.15.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/recipes-devtools/json-c/json-c_0.15.bb b/meta/recipes-devtools/json-c/json-c_0.15.bb
index 4da30bc50c..b3679e0135 100644
--- a/meta/recipes-devtools/json-c/json-c_0.15.bb
+++ b/meta/recipes-devtools/json-c/json-c_0.15.bb
@@ -12,6 +12,9 @@  SRC_URI = " \
 
 SRC_URI[sha256sum] = "b8d80a1ddb718b3ba7492916237bbf86609e9709fb007e7f7d4322f02341a4c6"
 
+# NVD uses full tag name including date
+CVE_VERSION = "0.15-20200726"
+
 UPSTREAM_CHECK_URI = "https://github.com/${BPN}/${BPN}/tags"
 UPSTREAM_CHECK_REGEX = "json-c-(?P<pver>\d+(\.\d+)+)-\d+"

[kirkstone] json-c: define CVE_VERSION

Commit Message

Patch