]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: deb77c5) | patch
curl: add vendors to CVE_PRODUCT to exclude false positives
authorRoss Burton <ross@burtonini.com>
Tue, 8 Sep 2020 12:23:24 +0000 (13:23 +0100)
committerSteve Sakoman <steve@sakoman.com>
Mon, 14 Sep 2020 14:26:37 +0000 (04:26 -1000)
commit3c0029c9cf22b6983020edf9ce2aeb7b326d8c12
tree374abae937e983deb93a8cdff6386996ed31a4b9tree | snapshot
parentdeb77c59b9c11738a93fc80c1b256b3df8e14827commit | diff
curl: add vendors to CVE_PRODUCT to exclude false positives

To avoid false positives (such as CVE-2010-0734, rubygems:curl), expand
the CVE_PRODUCT list to include all the vendors that have been used.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit bb265122cccea9466405fdd924ad10ce8cda0dec)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-support/curl/curl_7.69.1.bb diff | blob | history
Mirror of the official openembedded-core repository