isha Parrakat
Subject: Re: [OE-core] [meta-oe][dunfell][PATCH] fuse: Whitelisted
CVE-2019-14860
This patch should go to openembedded-de...@lists.openembedded.org.
I think the correct solution here would be to add CVE_PRODUCT =
"fuse_project:fuse" in the recipe to differentiate it fro
This patch should go to openembedded-de...@lists.openembedded.org.
I think the correct solution here would be to add CVE_PRODUCT =
"fuse_project:fuse" in the recipe to differentiate it from
"redhat:fuse".
Thanks,
Anuj
On Fri, 2021-04-09 at 12:04 +0530, saloni wrote:
> CVE-2019-14860 is a
CVE-2019-14860 is a REDHAT specific issue and
was addressed for REDHAT Fuse products on
Red Hat Fuse 7.4.1 and Red Hat Fuse 7.5.0.
REDHAT has also released the fix and updated their
security advisories after significant releases.
Hence, whitelited the CVE-2019-14860.
Link: