qemu: Exclude CVE-2017-5957 from cve-check

The CVE applies to virglrender before 0.6.0 which we don't have. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 9b5355375d028577de0b98e05992de6a088cb972) Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-10 12:17:15 +0100
committer: Steve Sakoman <steve@sakoman.com> 2021-05-14 07:16:37 -1000
commit: 559ed3e62e542b7a4456a9a4eef8742ce8521dfb (patch)
tree: afdecf7627b171f1fa8c910438c5e6c251a8a386
parent: 095535506951172e6f1812506a14fc3400f8b96e (diff)
download: openembedded-core-contrib-559ed3e62e542b7a4456a9a4eef8742ce8521dfb.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index 7647e44726..86abd5ea49 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -61,6 +61,9 @@ UPSTREAM_CHECK_REGEX = "qemu-(?P<pver>\d+(\.\d+)+)\.tar"
 SRC_URI[md5sum] = "278eeb294e4b497e79af7a57e660cb9a"
 SRC_URI[sha256sum] = "d3481d4108ce211a053ef15be69af1bdd9dde1510fda80d92be0f6c3e98768f0"
 
+# Applies against virglrender < 0.6.0 and not qemu itself
+CVE_CHECK_WHITELIST += "CVE-2017-5957"
+
 COMPATIBLE_HOST_mipsarchn32 = "null"
 COMPATIBLE_HOST_mipsarchn64 = "null"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-10 12:17:15 +0100
committer	Steve Sakoman <steve@sakoman.com>	2021-05-14 07:16:37 -1000
commit	559ed3e62e542b7a4456a9a4eef8742ce8521dfb (patch)
tree	afdecf7627b171f1fa8c910438c5e6c251a8a386
parent	095535506951172e6f1812506a14fc3400f8b96e (diff)
download	openembedded-core-contrib-559ed3e62e542b7a4456a9a4eef8742ce8521dfb.tar.gz