diff mbox series

[dunfell,1/1] go: ignore CVE-2023-45283 & CVE-2023-45284

Message ID 20231114085305.2852702-1-archana.polampalli@windriver.com
State Accepted, archived
Delegated to: Steve Sakoman
Headers show
Series [dunfell,1/1] go: ignore CVE-2023-45283 & CVE-2023-45284 | expand

Commit Message

Polampalli, Archana Nov. 14, 2023, 8:53 a.m. UTC 
From: Archana Polampalli <archana.polampalli@windriver.com>

Only affects code running on Windows

References:
https://nvd.nist.gov/vuln/detail/CVE-2023-45284
https://nvd.nist.gov/vuln/detail/CVE-2023-45283
https://groups.google.com/g/golang-announce/c/4tU8LZfBFkY

Signed-off-by: Archana Polampalli <archana.polampalli@windriver.com>
---
 meta/recipes-devtools/go/go-1.14.inc | 4 ++++
 1 file changed, 4 insertions(+)
diff mbox series

Patch

diff --git a/meta/recipes-devtools/go/go-1.14.inc b/meta/recipes-devtools/go/go-1.14.inc
index 091b778de8..b8b7fd0c46 100644
--- a/meta/recipes-devtools/go/go-1.14.inc
+++ b/meta/recipes-devtools/go/go-1.14.inc
@@ -115,3 +115,7 @@  CVE_CHECK_WHITELIST += "CVE-2022-41716"
 
 # Issue introduced in go1.15beta1, does not exist in 1.14
 CVE_CHECK_WHITELIST += "CVE-2022-1705"
+
+# Only affects code running on Windows
+CVE_CHECK_WHITELIST += "CVE-2023-45283"
+CVE_CHECK_WHITELIST += "CVE-2023-45284"