CVE-2006-3376 is already patched, but the patch is missing the required CVE tag, so the cve-checker misses it.
This patch adds the tag. Signed-off-by: Gyorgy Sarvari <[email protected]> --- .../libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch b/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch index 50d915c010..d92758b394 100644 --- a/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch +++ b/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch @@ -2,6 +2,8 @@ http://cvs.fedoraproject.org/viewvc/devel/libwmf/libwmf-0.2.8.4-intoverflow.patc CVE-2006-3376 libwmf integer overflow +CVE: CVE-2006-3376 + --- libwmf-0.2.8.4.orig/src/player.c 2002-12-10 19:30:26.000000000 +0000 +++ libwmf-0.2.8.4/src/player.c 2006-07-12 15:12:52.000000000 +0100 @@ -42,6 +42,7 @@
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#121717): https://lists.openembedded.org/g/openembedded-devel/message/121717 Mute This Topic: https://lists.openembedded.org/mt/116298290/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
