Some CVEs assign smarty-php as the vendor to the corresponding CPE. E.g CVE-2024-35226[1] is tracked with smarty-php:smarty by mitre (NVD tracks it without CPE).
[1]: https://cveawg.mitre.org/api/cve/CVE-2024-35226 Signed-off-by: Gyorgy Sarvari <[email protected]> --- meta-oe/recipes-support/smarty/smarty_5.7.0.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-oe/recipes-support/smarty/smarty_5.7.0.bb b/meta-oe/recipes-support/smarty/smarty_5.7.0.bb index e7281a30b5..1d21c7eedf 100644 --- a/meta-oe/recipes-support/smarty/smarty_5.7.0.bb +++ b/meta-oe/recipes-support/smarty/smarty_5.7.0.bb @@ -34,4 +34,4 @@ FILES:${PN} += "${datadir}/php/smarty3/" RDEPENDS:${PN} = "php" -CVE_PRODUCT = "smarty:smarty" +CVE_PRODUCT = "smarty:smarty smarty-php:smarty"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#122921): https://lists.openembedded.org/g/openembedded-devel/message/122921 Mute This Topic: https://lists.openembedded.org/mt/116940112/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
