There are some unrelated software called "links", which cases false-positive CVEs to be reported by the CVE checker.
Set the vendor/product pairs that were historically used with CVEs for this software. Signed-off-by: Gyorgy Sarvari <[email protected]> --- meta-oe/recipes-support/links/links.inc | 2 ++ meta-oe/recipes-support/links/links_2.29.bb | 2 -- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/meta-oe/recipes-support/links/links.inc b/meta-oe/recipes-support/links/links.inc index d772d54aff..a255f0ba6b 100644 --- a/meta-oe/recipes-support/links/links.inc +++ b/meta-oe/recipes-support/links/links.inc @@ -14,4 +14,6 @@ PACKAGECONFIG ??= "" PACKAGECONFIG[bzip2] = "--with-bzip2,--without-bzip2,bzip2" PACKAGECONFIG[lzma] = "--with-lzma,--without-lzma,xz" +CVE_PRODUCT = "twibright_labs:links twibright:links links:links" + inherit autotools pkgconfig diff --git a/meta-oe/recipes-support/links/links_2.29.bb b/meta-oe/recipes-support/links/links_2.29.bb index 311d84e484..e3a15d1819 100644 --- a/meta-oe/recipes-support/links/links_2.29.bb +++ b/meta-oe/recipes-support/links/links_2.29.bb @@ -9,5 +9,3 @@ EXTRA_OECONF = "--enable-graphics \ --without-directfb --without-pmshell --without-atheos \ --without-x" SRC_URI[sha256sum] = "22aa96c0b38e1a6f8f7ed9d7a4167a47fc37246097759ef6059ecf8f9ead7998" - -CVE_STATUS[CVE-2008-3319] = "cpe-incorrect: The recipe used in the `meta-openembedded` is a different links package compared to the one which has the CVE issue."
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#121742): https://lists.openembedded.org/g/openembedded-devel/message/121742 Mute This Topic: https://lists.openembedded.org/mt/116311386/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
