[oe] [meta-oe][kirkstone][PATCH] p7zip: ignore CVE-2022-47069

Thu, 20 Nov 2025 07:26:47 -0800 

According to debian, this issue is due to crash in CLI tool with
no security impact, hence ignore this CVE

Reference: https://security-tracker.debian.org/tracker/CVE-2022-47069

Signed-off-by: Naman Jain <[email protected]>
---
 meta-oe/recipes-extended/p7zip/p7zip_16.02.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-oe/recipes-extended/p7zip/p7zip_16.02.bb 
b/meta-oe/recipes-extended/p7zip/p7zip_16.02.bb
index 31a12fdb04..cd92e73c12 100644
--- a/meta-oe/recipes-extended/p7zip/p7zip_16.02.bb
+++ b/meta-oe/recipes-extended/p7zip/p7zip_16.02.bb
@@ -42,4 +42,7 @@ do_install() {
 RPROVIDES:${PN} += "lib7z.so()(64bit) 7z lib7z.so"
 RPROVIDES:${PN}-dev += "lib7z.so()(64bit) 7z lib7z.so"
 
+# According to debian, this is due to Crash in CLI tool, no security impact
+CVE_CHECK_IGNORE += "CVE-2022-47069"
+
 BBCLASSEXTEND = "native nativesdk"
-- 
2.34.1


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#121950): 
https://lists.openembedded.org/g/openembedded-devel/message/121950
Mute This Topic: https://lists.openembedded.org/mt/116392330/21656
Group Owner: [email protected]
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to