From: Ankur Tyagi <[email protected]> The impacted function mentioned in the nvd[1] was introduced in v12.82[2], hence we can ignore this CVE.
[1]https://nvd.nist.gov/vuln/detail/CVE-2026-7580 [2]https://github.com/exiftool/exiftool/commit/280a7f0db71b5887be492d57723723cb196ad2f9 Signed-off-by: Ankur Tyagi <[email protected]> --- meta-oe/recipes-devtools/perl/exiftool_12.72.bb | 1 + 1 file changed, 1 insertion(+) diff --git a/meta-oe/recipes-devtools/perl/exiftool_12.72.bb b/meta-oe/recipes-devtools/perl/exiftool_12.72.bb index f1d17a6799..68e7a79436 100644 --- a/meta-oe/recipes-devtools/perl/exiftool_12.72.bb +++ b/meta-oe/recipes-devtools/perl/exiftool_12.72.bb @@ -22,3 +22,4 @@ RDEPENDS:${PN} = " \ " CVE_STATUS[CVE-2026-3102] = "not-applicable-platform: affects only MacOS" +CVE_STATUS[CVE-2026-7580] = "cpe-incorrect: The current version (12.72) is not affected."
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#126944): https://lists.openembedded.org/g/openembedded-devel/message/126944 Mute This Topic: https://lists.openembedded.org/mt/119292974/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
