On Fri, Feb 6, 2026 at 11:49 PM Marko, Peter <[email protected]> wrote: > > This patch is not needed because vim was upgraded on master. > https://git.openembedded.org/openembedded-core/commit/?id=cf63518d20c3c4a61b0e726edf1df2201e88e8ab >
Got it, thanks Peter. > Peter > > > -----Original Message----- > > From: [email protected] <openembedded- > > [email protected]> On Behalf Of Ankur Tyagi via > > lists.openembedded.org > > Sent: Friday, February 6, 2026 11:43 > > To: [email protected] > > Cc: Ankur Tyagi <[email protected]> > > Subject: [OE-core][PATCH 2/5] vim: ignore CVE-2025-66476 > > > > From: Ankur Tyagi <[email protected]> > > > > Details https://nvd.nist.gov/vuln/detail/CVE-2025-66476 > > > > Signed-off-by: Ankur Tyagi <[email protected]> > > --- > > meta/recipes-support/vim/vim_9.1.bb | 2 ++ > > 1 file changed, 2 insertions(+) > > > > diff --git a/meta/recipes-support/vim/vim_9.1.bb b/meta/recipes- > > support/vim/vim_9.1.bb > > index fee9f055e9..c492342ffb 100644 > > --- a/meta/recipes-support/vim/vim_9.1.bb > > +++ b/meta/recipes-support/vim/vim_9.1.bb > > @@ -21,3 +21,5 @@ ALTERNATIVE_LINK_NAME[xxd] = "${bindir}/xxd" > > # in many places for _FORTIFY_SOURCE=2. Security flags become part of CC. > > # > > lcl_maybe_fortify = "${@oe.utils.conditional('DEBUG_BUILD','1','','- > > D_FORTIFY_SOURCE=1',d)}" > > + > > +CVE_STATUS[CVE-2025-66476] = "not-applicable-platform: Issue only applies > > on > > Windows"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#230609): https://lists.openembedded.org/g/openembedded-core/message/230609 Mute This Topic: https://lists.openembedded.org/mt/117669255/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
