Is this also suitable for dunfell? Steve
On Tue, Sep 8, 2020 at 6:47 AM Ross Burton <[email protected]> wrote: > > This CVE is specific to the npm package that can install cmake, so isn't > relevant to our cmake recipe. > > Signed-off-by: Ross Burton <[email protected]> > --- > meta/recipes-devtools/cmake/cmake.inc | 4 ++++ > 1 file changed, 4 insertions(+) > > diff --git a/meta/recipes-devtools/cmake/cmake.inc > b/meta/recipes-devtools/cmake/cmake.inc > index 1334977225..fa1b818ae4 100644 > --- a/meta/recipes-devtools/cmake/cmake.inc > +++ b/meta/recipes-devtools/cmake/cmake.inc > @@ -25,3 +25,7 @@ SRC_URI = > "https://cmake.org/files/v${CMAKE_MAJOR_VERSION}/cmake-${PV}.tar.gz \ > SRC_URI[sha256sum] = > "5d4e40fc775d3d828c72e5c45906b4d9b59003c9433ff1b36a1cb552bbd51d7e" > > UPSTREAM_CHECK_REGEX = "cmake-(?P<pver>\d+(\.\d+)+)\.tar" > + > +# This is specific to the npm package that installs cmake, so isn't > +# relevant to OpenEmbedded > +CVE_CHECK_WHITELIST += "CVE-2016-10642" > -- > 2.28.0 > >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#142273): https://lists.openembedded.org/g/openembedded-core/message/142273 Mute This Topic: https://lists.openembedded.org/mt/76713173/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
