tcl: Exclude CVE-2021-35331 from checks

author Richard Purdie <richard.purdie@linuxfoundation.org>

Fri, 3 Sep 2021 09:17:58 +0000 (10:17 +0100)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Fri, 3 Sep 2021 09:18:00 +0000 (10:18 +0100)
author Richard Purdie <richard.purdie@linuxfoundation.org>
Fri, 3 Sep 2021 09:17:58 +0000 (10:17 +0100)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Fri, 3 Sep 2021 09:18:00 +0000 (10:18 +0100)
diff --git a/meta/recipes-devtools/tcltk/tcl_8.6.11.bb b/meta/recipes-devtools/tcltk/tcl_8.6.11.bb

index 1e91f0827ed8c955fb6601cd02b1088c6b852550..cb9e486698c55514560e8cf35cb9fe239e853c22 100644 (file)
--- a/meta/recipes-devtools/tcltk/tcl_8.6.11.bb
+++ b/meta/recipes-devtools/tcltk/tcl_8.6.11.bb
@@ -29,6 +29,10 @@ SRC_URI[sha256sum] = "cfb49aab82bd179651e23eeeb69606f51b0ddc575ca55c3d35e2457469
  
  SRC_URI:class-native = "${BASE_SRC_URI}"
  
+# Upstream don't believe this is an exploitable issue
+# https://core.tcl-lang.org/tcl/info/7079e4f91601e9c7
+CVE_CHECK_WHITELIST += "CVE-2021-35331"
+
  UPSTREAM_CHECK_REGEX = "tcl(?P<pver>\d+(\.\d+)+)-src"
  
  S = "${WORKDIR}/${BPN}${PV}"
author	Richard Purdie <richard.purdie@linuxfoundation.org>
	Fri, 3 Sep 2021 09:17:58 +0000 (10:17 +0100)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Fri, 3 Sep 2021 09:18:00 +0000 (10:18 +0100)