This is only seen in development branch as per [1] [1] https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1#commitcomment-80753451 CVE: CVE-2022-37434
Signed-off-by: Khem Raj <[email protected]> --- meta/recipes-core/zlib/zlib_1.2.12.bb | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/meta/recipes-core/zlib/zlib_1.2.12.bb b/meta/recipes-core/zlib/zlib_1.2.12.bb index 77e7a4937fa..d3e0f25295d 100644 --- a/meta/recipes-core/zlib/zlib_1.2.12.bb +++ b/meta/recipes-core/zlib/zlib_1.2.12.bb @@ -17,6 +17,10 @@ UPSTREAM_CHECK_URI = "http://zlib.net/"; SRC_URI[sha256sum] = "7db46b8d7726232a621befaab4a1c870f00a90805511c0e0090441dac57def18" +# 1.2.12 or any other released zlib version does not have this issue see +# https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1#commitcomment-80801182 +CVE_CHECK_IGNORE += "CVE-2022-37434" + CFLAGS += "-D_REENTRANT" RDEPENDS:${PN}-ptest += "make" -- 2.37.2
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#169330): https://lists.openembedded.org/g/openembedded-core/message/169330 Mute This Topic: https://lists.openembedded.org/mt/93025229/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
