This patch is not needed because vim was upgraded on master. https://git.openembedded.org/openembedded-core/commit/?id=cf63518d20c3c4a61b0e726edf1df2201e88e8ab
Peter > -----Original Message----- > From: [email protected] <openembedded- > [email protected]> On Behalf Of Ankur Tyagi via > lists.openembedded.org > Sent: Friday, February 6, 2026 11:43 > To: [email protected] > Cc: Ankur Tyagi <[email protected]> > Subject: [OE-core][PATCH 2/5] vim: ignore CVE-2025-66476 > > From: Ankur Tyagi <[email protected]> > > Details https://nvd.nist.gov/vuln/detail/CVE-2025-66476 > > Signed-off-by: Ankur Tyagi <[email protected]> > --- > meta/recipes-support/vim/vim_9.1.bb | 2 ++ > 1 file changed, 2 insertions(+) > > diff --git a/meta/recipes-support/vim/vim_9.1.bb b/meta/recipes- > support/vim/vim_9.1.bb > index fee9f055e9..c492342ffb 100644 > --- a/meta/recipes-support/vim/vim_9.1.bb > +++ b/meta/recipes-support/vim/vim_9.1.bb > @@ -21,3 +21,5 @@ ALTERNATIVE_LINK_NAME[xxd] = "${bindir}/xxd" > # in many places for _FORTIFY_SOURCE=2. Security flags become part of CC. > # > lcl_maybe_fortify = "${@oe.utils.conditional('DEBUG_BUILD','1','','- > D_FORTIFY_SOURCE=1',d)}" > + > +CVE_STATUS[CVE-2025-66476] = "not-applicable-platform: Issue only applies on > Windows"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#230608): https://lists.openembedded.org/g/openembedded-core/message/230608 Mute This Topic: https://lists.openembedded.org/mt/117669255/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
