[meta-oe][kirkstone][PATCH] openjpeg: ignore CVE-2015-1239


Davide Gardenal
 

This CVE is patched in our version of openjpeg. The NVD database doesn't
include a version range this is why it's still reported.

Signed-off-by: Davide Gardenal <davide.gardenal@...>
---
meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb | 4 ++++
1 file changed, 4 insertions(+)

diff --git a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
index f248619ec..42d2b4efb 100644
--- a/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
+++ b/meta-oe/recipes-graphics/openjpeg/openjpeg_2.4.0.bb
@@ -15,6 +15,10 @@ SRC_URI = " \
SRCREV = "37ac30ceff6640bbab502388c5e0fa0bff23f505"
S = "${WORKDIR}/git"

+CVE_CHECK_IGNORE += "\
+ CVE-2015-1239 \
+"
+
inherit cmake

# for multilib
--
2.34.1

Join openembedded-devel@lists.openembedded.org to automatically receive all group messages.