diff options
author | Marta Rybczynska <marta.rybczynska@huawei.com> | 2021-11-29 19:54:13 +0100 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2021-11-30 14:40:43 -0800 |
commit | e0e79bbde23f17185cc59908fee97c0cea098428 (patch) | |
tree | e318cfdfc1e85bc73ecffa4e39b01fcbc747a968 | |
parent | d9717dea53557840e600b3fe3f19e2616acf23e4 (diff) | |
download | meta-openembedded-e0e79bbde23f17185cc59908fee97c0cea098428.tar.gz |
jansson: whitelist CVE-2020-36325
According to the upstream [1], the bug happens only if the programmer
does not follow the API definition.
[1] https://github.com/akheron/jansson/issues/548
Signed-off-by: Marta Rybczynska <marta.rybczynska@huawei.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
-rw-r--r-- | meta-oe/recipes-extended/jansson/jansson_2.13.1.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb b/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb index d6e56ea768..7beea9f1e7 100644 --- a/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb +++ b/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb @@ -11,4 +11,7 @@ SRC_URI[sha256sum] = "f4f377da17b10201a60c1108613e78ee15df6b12016b116b6de42209f4 inherit autotools pkgconfig +# upstream considers it isn't a real bug https://github.com/akheron/jansson/issues/548 +CVE_CHECK_WHITELIST = "CVE-2020-36325 " + BBCLASSEXTEND = "native" |