From: Peter Marko <[email protected]> These CVEs were fixed in 3.10.15
Commit 487e8cdf1df6feba6d88fa29e11791f4ebaaa362 removed patches in favor of version upgrade, which caused the CVEs to re-appear in reports. Signed-off-by: Peter Marko <[email protected]> --- meta/recipes-devtools/python/python3_3.10.15.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-devtools/python/python3_3.10.15.bb b/meta/recipes-devtools/python/python3_3.10.15.bb index 4157b8cb83..0eb619dfa2 100644 --- a/meta/recipes-devtools/python/python3_3.10.15.bb +++ b/meta/recipes-devtools/python/python3_3.10.15.bb @@ -63,6 +63,8 @@ CVE_CHECK_IGNORE += "CVE-2020-15523 CVE-2022-26488" CVE_CHECK_IGNORE += "CVE-2015-20107" # Not an issue, in fact expected behaviour CVE_CHECK_IGNORE += "CVE-2023-36632" +# Fixes are included in 3.10.15 +CVE_CHECK_IGNORE += "CVE-2023-27043 CVE-2024-6232 CVE-2024-7592" PYTHON_MAJMIN = "3.10" -- 2.30.2
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#206270): https://lists.openembedded.org/g/openembedded-core/message/206270 Mute This Topic: https://lists.openembedded.org/mt/109179789/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
