From: Peter Marko <peter.ma...@siemens.com> This CVE is fixed in 10.40 NVD wrongly changed <10.40 to =10.40 when adding debian_linux=10.0
Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-1586#VulnChangeHistorySection Signed-off-by: Peter Marko <peter.ma...@siemens.com> --- meta/recipes-support/libpcre/libpcre2_10.40.bb | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/meta/recipes-support/libpcre/libpcre2_10.40.bb b/meta/recipes-support/libpcre/libpcre2_10.40.bb index 74c12ecec2..ba5f8cff32 100644 --- a/meta/recipes-support/libpcre/libpcre2_10.40.bb +++ b/meta/recipes-support/libpcre/libpcre2_10.40.bb @@ -19,6 +19,10 @@ SRC_URI[sha256sum] = "14e4b83c4783933dc17e964318e6324f7cae1bc75d8f3c79bc6969f00c CVE_PRODUCT = "pcre2" +# This CVE is fixed in 10.40 +# NVD wrongly changed <10.40 to =10.40 when adding debian_linux=10.0 +CVE_CHECK_IGNORE += "CVE-2022-1586" + S = "${WORKDIR}/pcre2-${PV}" PROVIDES += "pcre2"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#211270): https://lists.openembedded.org/g/openembedded-core/message/211270 Mute This Topic: https://lists.openembedded.org/mt/111147587/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
