The ID should be in the CVE-YYYY-NNNNN format, as in the other CVE_STATUS[] settings.
Add 'CVE-' to avoid potential parsing errors in tools that provide CVE scaning/analysis. Signed-off-by: João Marcos Costa <[email protected]> --- meta-oe/recipes-connectivity/linuxptp/linuxptp_4.1.bb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/meta-oe/recipes-connectivity/linuxptp/linuxptp_4.1.bb b/meta-oe/recipes-connectivity/linuxptp/linuxptp_4.1.bb index d7d90bba25..56f8551c05 100644 --- a/meta-oe/recipes-connectivity/linuxptp/linuxptp_4.1.bb +++ b/meta-oe/recipes-connectivity/linuxptp/linuxptp_4.1.bb @@ -61,4 +61,4 @@ PACKAGES =+ "${PN}-configs" FILES:${PN}-configs += "${docdir}" -CVE_STATUS[2024-42861] = "disputed: Considered to be bogus by upstream and major distros" +CVE_STATUS[CVE-2024-42861] = "disputed: Considered to be bogus by upstream and major distros" -- 2.47.0
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#123780): https://lists.openembedded.org/g/openembedded-devel/message/123780 Mute This Topic: https://lists.openembedded.org/mt/117415608/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
