aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorArmin Kuster <akuster808@gmail.com>2021-07-05 15:33:32 -0700
committerArmin Kuster <akuster808@gmail.com>2021-07-06 07:50:13 -0700
commit7bd47ef6c98323c95a9e527129dca98c9a65ee08 (patch)
tree23e384f893f11a3aa6894b4179329c9cf88f504c
parent50ffe3b559117cc0209b6aefe34f443f92c4ae04 (diff)
downloadmeta-openembedded-kraj/dunfell.tar.gz
meta-openembedded-kraj/dunfell.tar.bz2
meta-openembedded-kraj/dunfell.zip
dovecot: add CVE-2016-4983 to allowlistkraj/dunfell
CVE-2016-4983 affects only postinstall script on specific distribution, so add it to allowlist. Signed-off-by: Yuichi Ito <ito-yuichi@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 3613b50a84559ce771866cd1eef1141fa3e6d238) [mkcert.sh does mask 077 first] Signed-off-by: Armin Kuster <akuster808@gmail.com> (cherry picked from commit d1fb027f894921ea02c984eb581ee1500c613470) Signed-off-by: Armin Kuster <akuster808@gmail.com>
-rw-r--r--meta-networking/recipes-support/dovecot/dovecot_2.2.36.4.bb3
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/dovecot/dovecot_2.2.36.4.bb b/meta-networking/recipes-support/dovecot/dovecot_2.2.36.4.bb
index 0f7fad2b2..e21a94ad6 100644
--- a/meta-networking/recipes-support/dovecot/dovecot_2.2.36.4.bb
+++ b/meta-networking/recipes-support/dovecot/dovecot_2.2.36.4.bb
@@ -67,3 +67,6 @@ FILES_${PN} += "${libdir}/dovecot/*plugin.so \
FILES_${PN}-staticdev += "${libdir}/dovecot/*/*.a"
FILES_${PN}-dev += "${libdir}/dovecot/libdovecot*.so"
FILES_${PN}-dbg += "${libdir}/dovecot/*/.debug"
+
+# CVE-2016-4983 affects only postinstall script on specific distribution
+CVE_CHECK_WHITELIST += "CVE-2016-4983"