CVE-2006-3376 is already patched, but the patch is missing the required CVE tag, so the cve-checker misses it.
This patch adds the tag. Signed-off-by: Gyorgy Sarvari <[email protected]> --- .../libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch b/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch index 4e7cd8887a..ffec9fb685 100644 --- a/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch +++ b/meta-oe/recipes-extended/libwmf/libwmf/libwmf-0.2.8.4-intoverflow.patch @@ -4,6 +4,8 @@ http://cvs.fedoraproject.org/viewvc/devel/libwmf/libwmf-0.2.8.4-intoverflow.patc CVE-2006-3376 libwmf integer overflow +CVE: CVE-2006-3376 + --- libwmf-0.2.8.4.orig/src/player.c 2002-12-10 19:30:26.000000000 +0000 +++ libwmf-0.2.8.4/src/player.c 2006-07-12 15:12:52.000000000 +0100 @@ -42,6 +42,7 @@
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#121844): https://lists.openembedded.org/g/openembedded-devel/message/121844 Mute This Topic: https://lists.openembedded.org/mt/116354042/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
