]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 3ad8ca2) | patch
curl: add vendors to CVE_PRODUCT to exclude false positives
authorRoss Burton <ross@burtonini.com>
Tue, 8 Sep 2020 12:23:24 +0000 (13:23 +0100)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Tue, 8 Sep 2020 15:43:35 +0000 (16:43 +0100)
commitbb265122cccea9466405fdd924ad10ce8cda0dec
tree95a9757ca040789ef9ed39d8260498a4be1bfd03tree | snapshot
parent3ad8ca257d40f5041b3ec167e4117c687da448a9commit | diff
curl: add vendors to CVE_PRODUCT to exclude false positives

To avoid false positives (such as CVE-2010-0734, rubygems:curl), expand
the CVE_PRODUCT list to include all the vendors that have been used.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/recipes-support/curl/curl_7.72.0.bb diff | blob | history
Mirror of the official openembedded-core repository