From 3bf13d697b170c43ba67ab3eada214fbeb928067 Mon Sep 17 00:00:00 2001 From: Mikko Rapeli Date: Fri, 15 Jan 2021 12:50:49 +0200 Subject: fuse: set CVE_PRODUCT to "fuse_project:fuse" Other products like "RedHat:fuse" introduce false CVE findings like: https://nvd.nist.gov/vuln/detail/CVE-2018-10906 https://nvd.nist.gov/vuln/detail/CVE-2019-14860 https://nvd.nist.gov/vuln/detail/CVE-2020-25689 Signed-off-by: Mikko Rapeli Signed-off-by: Khem Raj --- meta-filesystems/recipes-support/fuse/fuse3_3.10.1.bb | 2 ++ meta-filesystems/recipes-support/fuse/fuse_2.9.9.bb | 2 ++ 2 files changed, 4 insertions(+) (limited to 'meta-filesystems') diff --git a/meta-filesystems/recipes-support/fuse/fuse3_3.10.1.bb b/meta-filesystems/recipes-support/fuse/fuse3_3.10.1.bb index 80ce028722..49d6c15daf 100644 --- a/meta-filesystems/recipes-support/fuse/fuse3_3.10.1.bb +++ b/meta-filesystems/recipes-support/fuse/fuse3_3.10.1.bb @@ -20,6 +20,8 @@ S = "${WORKDIR}/fuse-${PV}" UPSTREAM_CHECK_URI = "https://github.com/libfuse/libfuse/releases" UPSTREAM_CHECK_REGEX = "fuse\-(?P3(\.\d+)+).tar.xz" +CVE_PRODUCT = "fuse_project:fuse" + inherit meson pkgconfig ptest SRC_URI += " \ diff --git a/meta-filesystems/recipes-support/fuse/fuse_2.9.9.bb b/meta-filesystems/recipes-support/fuse/fuse_2.9.9.bb index 95e870691c..2c272d4527 100644 --- a/meta-filesystems/recipes-support/fuse/fuse_2.9.9.bb +++ b/meta-filesystems/recipes-support/fuse/fuse_2.9.9.bb @@ -22,6 +22,8 @@ SRC_URI[sha256sum] = "d0e69d5d608cc22ff4843791ad097f554dd32540ddc9bed7638cc6fea7 UPSTREAM_CHECK_URI = "https://github.com/libfuse/libfuse/releases" UPSTREAM_CHECK_REGEX = "fuse\-(?P2(\.\d+)+).tar.gz" +CVE_PRODUCT = "fuse_project:fuse" + inherit autotools pkgconfig update-rc.d systemd INITSCRIPT_NAME = "fuse" -- cgit 1.2.3-korg