From: Peter Marko <peter.ma...@siemens.com> NVD tracks this CVE as version-less. Per [1] this is fixed by following commits:
$ git tag --contains b28a3cef416fcfb92fbb9ea7fd3c71df52c6c9fc 0.26.0 0.26.0-rc1 $ git tag --contains 02e847458369c08421fd2d5e9a16a5f272c2de9e 0.26.0 0.26.0-rc1 [1] https://github.com/OpenSC/OpenSC/wiki/CVE-2024-8443 Signed-off-by: Peter Marko <peter.ma...@siemens.com> --- meta-oe/recipes-support/opensc/opensc_0.26.0.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta-oe/recipes-support/opensc/opensc_0.26.0.bb b/meta-oe/recipes-support/opensc/opensc_0.26.0.bb index 3e4d476ff4..bd44e24aeb 100644 --- a/meta-oe/recipes-support/opensc/opensc_0.26.0.bb +++ b/meta-oe/recipes-support/opensc/opensc_0.26.0.bb @@ -14,6 +14,8 @@ DEPENDS = "openssl" SRCREV = "fe857cc4c68da4873071f168c9aaf9860040ff4e" SRC_URI = "git://github.com/OpenSC/OpenSC;branch=master;protocol=https" +CVE_STATUS[CVE-2024-8443] = "fixed-version: this is fixed since 0.26.0" + S = "${WORKDIR}/git" inherit autotools pkgconfig bash-completion -- 2.30.2
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#114438): https://lists.openembedded.org/g/openembedded-devel/message/114438 Mute This Topic: https://lists.openembedded.org/mt/110215894/21656 Group Owner: openembedded-devel+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
