[nanbield,08/21] gtk: Set CVE_PRODUCT

Message ID	e1bab7d2f5a885f2e4fd0332599edb8bfa55be45.1708012696.git.steve@sakoman.com
State	Accepted
Delegated to:	Steve Sakoman
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.214.169, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][nanbield 08/21] gtk: Set CVE_PRODUCT Date: Thu, 15 Feb 2024 06:17:51 -1000 Message-Id: <e1bab7d2f5a885f2e4fd0332599edb8bfa55be45.1708012696.git.steve@sakoman.com> In-Reply-To: <cover.1708012696.git.steve@sakoman.com> References: <cover.1708012696.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[nanbield,01/21] tiff: fix CVE-2023-6228 \| expand [nanbield,01/21] tiff: fix CVE-2023-6228 [nanbield,02/21] tiff: fix CVE-2023-52355 and CVE-2023-52356 [nanbield,03/21] zlib: ignore CVE-2023-6992 [nanbield,04/21] libssh2: backport fix for CVE-2023-48795 [nanbield,05/21] gcc: Update status of CVE-2023-4039 [nanbield,06/21] cve_check: handle CVE_STATUS being set to the empty string [nanbield,07/21] cve_check: cleanup logging [nanbield,08/21] gtk: Set CVE_PRODUCT [nanbield,09/21] glibc: stable 2.38 branch updates [nanbield,10/21] linux-firmware: upgrade 20231030 -> 20231211 [nanbield,11/21] xserver-xorg: 21.1.9 -> 21.1.11 [nanbield,12/21] at-spi2-core: upgrade 2.50.0 -> 2.50.1 [nanbield,13/21] cpio: upgrade 2.14 -> 2.15 [nanbield,14/21] gstreamer: upgrade 1.22.8 -> 1.22.9 [nanbield,15/21] allarch: Fix allarch corner case [nanbield,16/21] reproducible: Fix race with externalsrc/devtool over lockfile [nanbield,17/21] externalsrc: fix task dependency for do_populate_lic [nanbield,18/21] udev-extraconf: fix unmount directories containing octal-escaped chars [nanbield,19/21] pseudo: Update to pull in gcc14 fix and missing statvfs64 intercept [nanbield,20/21] overlayfs: add missing closing parenthesis in selftest [nanbield,21/21] multilib_global.bbclass: fix parsing error with no kernel module split

Message ID

e1bab7d2f5a885f2e4fd0332599edb8bfa55be45.1708012696.git.steve@sakoman.com

State

Accepted

Delegated to:

Steve Sakoman

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][nanbield 08/21] gtk: Set CVE_PRODUCT
Date: Thu, 15 Feb 2024 06:17:51 -1000
Message-Id: 
 <e1bab7d2f5a885f2e4fd0332599edb8bfa55be45.1708012696.git.steve@sakoman.com>
In-Reply-To: <cover.1708012696.git.steve@sakoman.com>
References: <cover.1708012696.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[nanbield,01/21] tiff: fix CVE-2023-6228 | expand

Commit Message

Steve Sakoman Feb. 15, 2024, 4:17 p.m. UTC

From: Robert Joslyn <robert.joslyn@redrectangle.org>

The CPE vendor is "gnome" and the CPE product is "gtk" for both gtk+3
and gtk4 recipes. Set CVE_PRODUCT so we properly match the NVD database.

Signed-off-by: Robert Joslyn <robert.joslyn@redrectangle.org>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 253f5f745d66acefcc739f1c9ad2dd46be630e47)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb | 2 ++
 meta/recipes-gnome/gtk+/gtk4_4.12.3.bb   | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb b/meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb
index 37fa0a7290..c23c46a689 100644
--- a/meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb
+++ b/meta/recipes-gnome/gtk+/gtk+3_3.24.38.bb
@@ -13,3 +13,5 @@  LIC_FILES_CHKSUM = "file://COPYING;md5=5f30f0716dfdd0d91eb439ebec522ec2 \
                     file://gtk/gtk.h;endline=25;md5=1d8dc0fccdbfa26287a271dce88af737 \
                     file://gdk/gdk.h;endline=25;md5=c920ce39dc88c6f06d3e7c50e08086f2 \
                     file://tests/testgtk.c;endline=25;md5=cb732daee1d82af7a2bf953cf3cf26f1"
+
+CVE_PRODUCT = "gnome:gtk"
diff --git a/meta/recipes-gnome/gtk+/gtk4_4.12.3.bb b/meta/recipes-gnome/gtk+/gtk4_4.12.3.bb
index 001b06934e..2c85e7e75f 100644
--- a/meta/recipes-gnome/gtk+/gtk4_4.12.3.bb
+++ b/meta/recipes-gnome/gtk+/gtk4_4.12.3.bb
@@ -41,6 +41,8 @@  SRC_URI[sha256sum] = "148ce262f6c86487455fb1d9793c3f58bc3e1da477a29617fadb0420f5
 
 S = "${WORKDIR}/gtk-${PV}"
 
+CVE_PRODUCT = "gnome:gtk"
+
 inherit meson gettext pkgconfig gi-docgen update-alternatives gsettings features_check gobject-introspection
 
 # TBD: nativesdk

[nanbield,08/21] gtk: Set CVE_PRODUCT

Commit Message

Patch