The default, "python:cbor2" CVE_PRODUCT is not appropriate for this recipe, because most associated CVEs use "agronholm:cbor2" CPE.
Set the CVE_PRODUCT to cbor2, so it will match the currently used CPE, and in case there will be future python:cbor2 CPEs also, they will be matched too. Signed-off-by: Gyorgy Sarvari <[email protected]> --- meta-python/recipes-devtools/python/python3-cbor2_5.7.1.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta-python/recipes-devtools/python/python3-cbor2_5.7.1.bb b/meta-python/recipes-devtools/python/python3-cbor2_5.7.1.bb index e124207cbf..26dc41802f 100644 --- a/meta-python/recipes-devtools/python/python3-cbor2_5.7.1.bb +++ b/meta-python/recipes-devtools/python/python3-cbor2_5.7.1.bb @@ -15,4 +15,6 @@ RDEPENDS:${PN} += " \ python3-datetime \ " +CVE_PRODUCT = "cbor2" + BBCLASSEXTEND = "native nativesdk"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#123006): https://lists.openembedded.org/g/openembedded-devel/message/123006 Mute This Topic: https://lists.openembedded.org/mt/116996276/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
