aboutsummaryrefslogtreecommitdiffstats
path: root/meta-oe
diff options
context:
space:
mode:
authorMarta Rybczynska <marta.rybczynska@huawei.com>2021-11-29 19:54:13 +0100
committerArmin Kuster <akuster808@gmail.com>2021-11-30 14:40:43 -0800
commite0e79bbde23f17185cc59908fee97c0cea098428 (patch)
treee318cfdfc1e85bc73ecffa4e39b01fcbc747a968 /meta-oe
parentd9717dea53557840e600b3fe3f19e2616acf23e4 (diff)
downloadmeta-openembedded-contrib-e0e79bbde23f17185cc59908fee97c0cea098428.tar.gz
jansson: whitelist CVE-2020-36325
According to the upstream [1], the bug happens only if the programmer does not follow the API definition. [1] https://github.com/akheron/jansson/issues/548 Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-oe')
-rw-r--r--meta-oe/recipes-extended/jansson/jansson_2.13.1.bb3
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb b/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb
index d6e56ea768..7beea9f1e7 100644
--- a/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb
+++ b/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb
@@ -11,4 +11,7 @@ SRC_URI[sha256sum] = "f4f377da17b10201a60c1108613e78ee15df6b12016b116b6de42209f4
inherit autotools pkgconfig
+# upstream considers it isn't a real bug https://github.com/akheron/jansson/issues/548
+CVE_CHECK_WHITELIST = "CVE-2020-36325 "
+
BBCLASSEXTEND = "native"