[OE-core] [PATCH v2] gcc: Add CVE-2021-37322 to the list of CVEs to ignore

Richard Purdie Wed, 08 Dec 2021 16:15:49 -0800

The CVE applies to binutils 2.26 and not to gcc so ignore there.

Signed-off-by: Richard Purdie <[email protected]>
---
 meta/recipes-devtools/gcc/gcc-11.2.inc | 3 +++
 1 file changed, 3 insertions(+)


diff --git a/meta/recipes-devtools/gcc/gcc-11.2.inc 
b/meta/recipes-devtools/gcc/gcc-11.2.inc
index 29007d1f19e..e49c4e0b372 100644
--- a/meta/recipes-devtools/gcc/gcc-11.2.inc
+++ b/meta/recipes-devtools/gcc/gcc-11.2.inc
@@ -111,3 +111,6 @@ EXTRA_OECONF_PATHS = "\
     --with-sysroot=/not/exist \
     --with-build-sysroot=${STAGING_DIR_TARGET} \
 "
+
+# Is a binutils 2.26 issue, not gcc
+CVE_CHECK_WHITELIST += "CVE-2021-37322"
-- 
2.32.0

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#159400): 
https://lists.openembedded.org/g/openembedded-core/message/159400
Mute This Topic: https://lists.openembedded.org/mt/87602118/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [PATCH v2] gcc: Add CVE-2021-37322 to the list of CVEs to ignore

Reply via email to