On Tue, Nov 18, 2025 at 8:27 AM Ankur Tyagi via lists.openembedded.org <[email protected]> wrote:
> From: Ankur Tyagi <[email protected]> > > Also update CVE_PRODUCT. > > Changelog: > https://github.com/smarty-php/smarty/blob/v5.6.0/CHANGELOG.md > --- > .../smarty/{smarty_5.4.5.bb => smarty_5.6.0.bb} | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > rename meta-oe/recipes-support/smarty/{smarty_5.4.5.bb => smarty_5.6.0.bb} > (82%) > > diff --git a/meta-oe/recipes-support/smarty/smarty_5.4.5.bb > b/meta-oe/recipes-support/smarty/smarty_5.6.0.bb > similarity index 82% > rename from meta-oe/recipes-support/smarty/smarty_5.4.5.bb > rename to meta-oe/recipes-support/smarty/smarty_5.6.0.bb > index 047f10589d..88afc55c15 100644 > --- a/meta-oe/recipes-support/smarty/smarty_5.4.5.bb > +++ b/meta-oe/recipes-support/smarty/smarty_5.6.0.bb > @@ -12,7 +12,7 @@ LIC_FILES_CHKSUM = > "file://LICENSE;md5=2c0f216b2120ffc367e20f2b56df51b3" > > SRC_URI = "git:// > github.com/smarty-php/smarty.git;protocol=https;branch=master;tag=v${PV} > <http://github.com/smarty-php/smarty.git;protocol=https;branch=master;tag=v$%7BPV%7D> > " > > -SRCREV = "e26f82d02c4d18fc82094c28fbc65f711e39ed5d" > +SRCREV = "1fc41e385da8a27a87bec5914392ab662a7bb8ec" > > > INHIBIT_DEFAULT_DEPS = "1" > @@ -34,4 +34,4 @@ FILES:${PN} += "${datadir}/php/smarty3/" > > RDEPENDS:${PN} = "php" > > -CVE_STATUS[CVE-2020-10375] = "cpe-incorrect: The recipe used in the > meta-openembedded is a different smarty package compared to the one which > has the CVE issue." > +CVE_PRODUCT = "smarty:smarty" > > I think this change should be split into a separate patch so it can be backported.
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#121796): https://lists.openembedded.org/g/openembedded-devel/message/121796 Mute This Topic: https://lists.openembedded.org/mt/116349300/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
