From: Richard Purdie <richard.purdie@linuxfoundation.org>
Date: Wed, 12 May 2021 22:54:49 +0000 (+0100)
Subject: avahi: Exclude CVE-2021-26720 from cve-check
X-Git-Tag: 2020-04.8-dunfell~16
X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=760cc905fda18ee73ff3698a117f8841d3823b65;p=openembedded-core.git

avahi: Exclude CVE-2021-26720 from cve-check

Issue only affects Debian and SUSE.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 72522fa1a5f3b9b2855043fe6b421886d641385f)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---

diff --git a/meta/recipes-connectivity/avahi/avahi_0.7.bb b/meta/recipes-connectivity/avahi/avahi_0.7.bb
index f6e3afb24e..0df44bffbe 100644
--- a/meta/recipes-connectivity/avahi/avahi_0.7.bb
+++ b/meta/recipes-connectivity/avahi/avahi_0.7.bb
@@ -8,6 +8,9 @@ SRC_URI += "file://00avahi-autoipd \
 
 inherit update-rc.d systemd useradd
 
+# Issue only affects Debian/SUSE, not us
+CVE_CHECK_WHITELIST += "CVE-2021-26720"
+
 PACKAGES =+ "libavahi-gobject avahi-daemon libavahi-common libavahi-core libavahi-client avahi-dnsconfd libavahi-glib avahi-autoipd avahi-utils"
 
 LICENSE_libavahi-gobject = "LGPLv2.1+"