[08/10] libxml2: Ignore CVE-2016-3709

Message ID	20220814222037.283943-8-raj.khem@gmail.com
State	Accepted, archived
Commit	131b7010ae45b0c4e1c6a29dfc56b225d2ad2a69
Headers	show Return-Path: <raj.khem@gmail.com> ip: 209.85.214.172, mailfrom: raj.khem@gmail.com) From: Khem Raj <raj.khem@gmail.com> To: openembedded-core@lists.openembedded.org Cc: Khem Raj <raj.khem@gmail.com> Subject: [PATCH 08/10] libxml2: Ignore CVE-2016-3709 Date: Sun, 14 Aug 2022 15:20:35 -0700 Message-Id: <20220814222037.283943-8-raj.khem@gmail.com> In-Reply-To: <20220814222037.283943-1-raj.khem@gmail.com> References: <20220814222037.283943-1-raj.khem@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[01/10] json-c: Fix function prototypes \| expand [01/10] json-c: Fix function prototypes [02/10] xmlto: Update to use upstream tip of trunk [03/10] zlib: Resolve CVE-2022-37434 [04/10] rsync: Backport fix to address CVE-2022-29154 [05/10] rsync: Upgrade to 3.2.5 [06/10] connman: Backports for security fixes [07/10] libtirpc: Backport fix for CVE-2021-46828 [08/10] libxml2: Ignore CVE-2016-3709 [09/10] tiff: Backport a patch for CVE-2022-34526 [10/10] libtirpc: Upgrade to 1.3.3

Message ID

20220814222037.283943-8-raj.khem@gmail.com

State

Accepted, archived

Commit

131b7010ae45b0c4e1c6a29dfc56b225d2ad2a69

Headers

From: Khem Raj <raj.khem@gmail.com>
To: openembedded-core@lists.openembedded.org
Cc: Khem Raj <raj.khem@gmail.com>
Subject: [PATCH 08/10] libxml2: Ignore CVE-2016-3709
Date: Sun, 14 Aug 2022 15:20:35 -0700
Message-Id: <20220814222037.283943-8-raj.khem@gmail.com>
In-Reply-To: <20220814222037.283943-1-raj.khem@gmail.com>
References: <20220814222037.283943-1-raj.khem@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[01/10] json-c: Fix function prototypes | expand

Commit Message

Khem Raj Aug. 14, 2022, 10:20 p.m. UTC

This is fixed via a revert in 2.9.11 [1]

[1] https://gitlab.gnome.org/GNOME/libxml2/-/commit/c1ba6f54d32b707ca6d91cb3257ce9de82876b6f

Signed-off-by: Khem Raj <raj.khem@gmail.com>
---
 meta/recipes-core/libxml/libxml2_2.9.14.bb | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-core/libxml/libxml2_2.9.14.bb b/meta/recipes-core/libxml/libxml2_2.9.14.bb
index 3081ebf92f0..e58298d3b01 100644
--- a/meta/recipes-core/libxml/libxml2_2.9.14.bb
+++ b/meta/recipes-core/libxml/libxml2_2.9.14.bb
@@ -29,6 +29,10 @@  SRC_URI[testtar.sha256sum] = "96151685cec997e1f9f3387e3626d61e6284d4d6e66e0e440c
 
 BINCONFIG = "${bindir}/xml2-config"
 
+# Fixed since 2.9.11 via
+# https://gitlab.gnome.org/GNOME/libxml2/-/commit/c1ba6f54d32b707ca6d91cb3257ce9de82876b6f
+CVE_CHECK_IGNORE += "CVE-2016-3709"
+
 PACKAGECONFIG ??= "python \
     ${@bb.utils.filter('DISTRO_FEATURES', 'ipv6', d)} \
 "

[08/10] libxml2: Ignore CVE-2016-3709

Commit Message

Patch