From: Virendra Thakur <[email protected]> The fix for this CVE-2018-21029 is already available in our code base.
Reference: https://github.com/systemd/systemd-stable/commit/38e053c58fa139e0f546f327b5d8ce3db7cf1647 https://github.com/systemd/systemd-stable/commit/7f2f4faced3fda47e6b76ab73cde747cc20cf8b8 Signed-off-by: Virendra Thakur <[email protected]> --- meta/recipes-core/systemd/systemd_244.5.bb | 3 +++ 1 file changed, 3 insertions(+) diff --git a/meta/recipes-core/systemd/systemd_244.5.bb b/meta/recipes-core/systemd/systemd_244.5.bb index a648272bc0..711d23a26e 100644 --- a/meta/recipes-core/systemd/systemd_244.5.bb +++ b/meta/recipes-core/systemd/systemd_244.5.bb @@ -65,6 +65,9 @@ SRC_URI_MUSL = "\ # already applied in 244.5 CVE_CHECK_WHITELIST += "CVE-2020-13776" +# Whitelist the CVE because cve patch is already present +CVE_CHECK_WHITELIST += "CVE-2018-21029" + PAM_PLUGINS = " \ pam-plugin-unix \ pam-plugin-loginuid \ -- 2.17.1
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#166470): https://lists.openembedded.org/g/openembedded-core/message/166470 Mute This Topic: https://lists.openembedded.org/mt/91497880/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
