Details: https://nvd.nist.gov/vuln/detail/CVE-2026-26227 https://nvd.nist.gov/vuln/detail/CVE-2026-26228
Both vulnerabilities affect only the Android version of VLC, not the other ones. Because of this, ignore these CVEs. Signed-off-by: Gyorgy Sarvari <[email protected]> --- meta-multimedia/recipes-multimedia/vlc/vlc_3.0.17.4.bb | 3 +++ 1 file changed, 3 insertions(+) diff --git a/meta-multimedia/recipes-multimedia/vlc/vlc_3.0.17.4.bb b/meta-multimedia/recipes-multimedia/vlc/vlc_3.0.17.4.bb index dfc838066b..8a49be72fb 100644 --- a/meta-multimedia/recipes-multimedia/vlc/vlc_3.0.17.4.bb +++ b/meta-multimedia/recipes-multimedia/vlc/vlc_3.0.17.4.bb @@ -130,3 +130,6 @@ FILES:${PN}-staticdev += "\ INSANE_SKIP:${PN} = "dev-so" EXCLUDE_FROM_WORLD = "${@bb.utils.contains("LICENSE_FLAGS_ACCEPTED", "commercial", "0", "1", d)}" + +# Android specific CVEs +CVE_CHECK_IGNORE += "CVE-2026-26227 CVE-2026-26228"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#124972): https://lists.openembedded.org/g/openembedded-devel/message/124972 Mute This Topic: https://lists.openembedded.org/mt/118218583/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
