diff mbox series

[kirkstone,04/30] cups: ignore CVE-2022-26691

Message ID	8eb224d3160e8483c2bc6ffa207a2b6fc8644c6f.1656876825.git.steve@sakoman.com
State	Accepted, archived
Commit	8eb224d3160e8483c2bc6ffa207a2b6fc8644c6f
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.215.180, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][kirkstone 04/30] cups: ignore CVE-2022-26691 Date: Sun, 3 Jul 2022 09:35:39 -1000 Message-Id: <8eb224d3160e8483c2bc6ffa207a2b6fc8644c6f.1656876825.git.steve@sakoman.com> In-Reply-To: <cover.1656876825.git.steve@sakoman.com> References: <cover.1656876825.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[kirkstone,01/30] unzip: Port debian fixes for two CVEs \| expand [kirkstone,01/30] unzip: Port debian fixes for two CVEs [kirkstone,02/30] ghostscript: fix CVE-2022-2085 [kirkstone,03/30] binutils : CVE-2019-1010204 [kirkstone,04/30] cups: ignore CVE-2022-26691 [kirkstone,05/30] busybox: fix CVE-2022-30065 [kirkstone,06/30] cve-extra-exclusions: Clean up and ignore three CVEs (2xqemu and nasm) [kirkstone,07/30] cve-check: hook cleanup to the BuildCompleted event, not CookerExit [kirkstone,08/30] wireless-regdb: upgrade 2022.04.08 -> 2022.06.06 [kirkstone,09/30] vim: 8.2.5083 -> 9.0.0005 [kirkstone,10/30] openssl: Upgrade 3.0.3 -> 3.0.4 [kirkstone,11/30] initramfs-framework: move storage mounts to actual rootfs [kirkstone,12/30] libffi: fix native build being not portable [kirkstone,13/30] wic: fix WicError message [kirkstone,14/30] perf: sort-pmuevents: really keep array terminators [kirkstone,15/30] kernel-uboot.bbclass: Use vmlinux.initramfs when INITRAMFS_IMAGE_BUNDLE set [kirkstone,16/30] insane.bbclass: host-user-contaminated: Correct per package home path [kirkstone,17/30] sanity.bbclass: Add ftps to accepted URI protocols for mirrors sanity [kirkstone,18/30] oeqa/sdk: drop the nativesdk-python 2.x test [kirkstone,19/30] base.bbclass: Correct the test for obsolete license exceptions [kirkstone,20/30] coreutils: Tweak packaging variable names for coreutils-dev [kirkstone,21/30] at: take tarballs from debian [kirkstone,22/30] rust: fix issue building cross-canadian tools for aarch64 on x86_64 [kirkstone,23/30] recipetool/devtool: Fix python egg whitespace issues in PACKAGECONFIG [kirkstone,24/30] glibc-tests: not clear BBCLASSEXTEND [kirkstone,25/30] curl: backport openssl fix CN check error code [kirkstone,26/30] oeqa/runtime/scp: Disable scp test for dropbear [kirkstone,27/30] packagegroup-core-ssh-dropbear: Add openssh-sftp-server recommendation [kirkstone,28/30] oe-selftest-image: Ensure the image has sftp as well as dropbear [kirkstone,29/30] openssh: break dependency on base package for -dev package [kirkstone,30/30] dropbear: break dependency on base package for -dev package

Commit Message

Steve Sakoman July 3, 2022, 7:35 p.m. UTC

From: Ross Burton <ross.burton@arm.com>

This is fixed in 2.4.2, which we have, but the complex CPE in that CVE
isn't parsed by cve-check correctly so it thinks that we're vulnerable.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit b40dd920f8b40eabe78db363249257818c63c074)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-extended/cups/cups.inc | 2 ++
 1 file changed, 2 insertions(+)

diff mbox series

Patch

diff --git a/meta/recipes-extended/cups/cups.inc b/meta/recipes-extended/cups/cups.inc
index 8f2ad8a009..4592980766 100644
--- a/meta/recipes-extended/cups/cups.inc
+++ b/meta/recipes-extended/cups/cups.inc
@@ -26,6 +26,8 @@  CVE_CHECK_IGNORE += "CVE-2008-1033"
 CVE_CHECK_IGNORE += "CVE-2009-0032"
 # This is an Ubuntu only issue.
 CVE_CHECK_IGNORE += "CVE-2018-6553"
+# This is fixed in 2.4.2 but the cve-check class still reports it
+CVE_CHECK_IGNORE += "CVE-2022-26691"
 
 LEAD_SONAME = "libcupsdriver.so"