[OE-core][PATCH] libxml2: update CVE_PRODUCT

Chen Qi Wed, 30 Jun 2021 19:22:21 -0700

xmllint is also a valid CVE_PRODUCT for libxml2, e.g. CVE-2021-3516.

Signed-off-by: Chen Qi <qi.c...@windriver.com>
---
 meta/recipes-core/libxml/libxml2_2.9.12.bb | 2 ++
 1 file changed, 2 insertions(+)


diff --git a/meta/recipes-core/libxml/libxml2_2.9.12.bb 
b/meta/recipes-core/libxml/libxml2_2.9.12.bb
index 955d934d7d..0f1c457206 100644
--- a/meta/recipes-core/libxml/libxml2_2.9.12.bb
+++ b/meta/recipes-core/libxml/libxml2_2.9.12.bb
@@ -9,6 +9,8 @@ LIC_FILES_CHKSUM = 
"file://Copyright;md5=2044417e2e5006b65a8b9067b683fcf1 \
                     
file://list.c;beginline=4;endline=13;md5=b9c25b021ccaf287e50060602d20f3a7 \
                     
file://trio.c;beginline=5;endline=14;md5=cd4f61e27f88c1d43df112966b1cd28f"
 
+CVE_PRODUCT = "libxml2 xmllint"
+
 DEPENDS = "zlib virtual/libiconv"
 
 SRC_URI = "http://www.xmlsoft.org/sources/libxml2-${PV}.tar.gz;name=libtar \
-- 
2.17.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#153449): 
https://lists.openembedded.org/g/openembedded-core/message/153449
Mute This Topic: https://lists.openembedded.org/mt/83908297/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core][PATCH] libxml2: update CVE_PRODUCT

Reply via email to