[oe] [meta-multimedia][kirkstone][PATCH 2/8] mpd: Update status for CVE-2020-7465 and CVE-2020-7466

[Gyorgy Sarvari via lists.openembedded.org]

From: Ninette Adhikari <nine...@thehoodiefirm.com>

The recipe used in the `meta-openembedded` is a different mpd package compared 
to the one which has the CVE issue.
Package used in `meta-embedded`: http://www.musicpd.org
Package with CVE issue: https://sourceforge.net/projects/mpd/
No action required.

Signed-off-by: Ninette Adhikari <nine...@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.k...@gmail.com>
(cherry picked from commit 3e3c25698124dd82163d966fa9d7e7e807cfecbe)

Adapted to Kirkstone (CVE_STATUS -> CVE_CHECK_IGNORE)

Signed-off-by: Gyorgy Sarvari <skandigr...@gmail.com>
---
 meta-multimedia/recipes-multimedia/musicpd/mpd_0.23.12.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-multimedia/recipes-multimedia/musicpd/mpd_0.23.12.bb 
b/meta-multimedia/recipes-multimedia/musicpd/mpd_0.23.12.bb
index 0b4e9e3df1..8b9e938f8d 100644
--- a/meta-multimedia/recipes-multimedia/musicpd/mpd_0.23.12.bb
+++ b/meta-multimedia/recipes-multimedia/musicpd/mpd_0.23.12.bb
@@ -99,3 +99,6 @@ USERADD_PARAM:${PN} = " \
     --home ${localstatedir}/lib/mpd \
     --groups audio \
     --user-group mpd"
+
+# cpe-incorrect: The recipe used in the meta-openembedded is a different mpd 
package compared to the one which has the CVE issue.
+CVE_CHECK_IGNORE += "CVE-2020-7465 CVE-2020-7466"

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#122915): 
https://lists.openembedded.org/g/openembedded-devel/message/122915
Mute This Topic: https://lists.openembedded.org/mt/116939927/21656
Group Owner: openembedded-devel+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-