[meta-networking][master][kirkstone][PATCH] openflow: ignore CVE-2018-1078


Davide Gardenal
 

CVE-2018-1078 is not for openflow but in the NVD database the
CVE is for a specific implementation that we don't have so we
can ignore it.

Signed-off-by: Davide Gardenal <davide.gardenal@...>
---
meta-networking/recipes-protocols/openflow/openflow.inc | 4 ++++
1 file changed, 4 insertions(+)

diff --git a/meta-networking/recipes-protocols/openflow/openflow.inc b/meta-networking/recipes-protocols/openflow/openflow.inc
index 15eb65ad3..ccafaf0de 100644
--- a/meta-networking/recipes-protocols/openflow/openflow.inc
+++ b/meta-networking/recipes-protocols/openflow/openflow.inc
@@ -53,3 +53,7 @@ do_install:append() {
}

FILES:${PN} += "${nonarch_libdir}/tmpfiles.d"
+
+# This CVE is not for this product but cve-check assumes it is
+# because two CPE collides when checking the NVD database
+CVE_CHECK_IGNORE = "CVE-2018-1078"
--
2.34.1

Join openembedded-devel@lists.openembedded.org to automatically receive all group messages.