| Message ID | 20240719174934.866987-1-dmitry.baryshkov@linaro.org |
|---|---|
| State | Accepted, archived |
| Commit | 0ec5dcbdd7c922df25ce90b04902d9c7c749a8c0 |
| Headers | show |
| Series | xserver-xorg: fix CVE-2023-5574 status | expand |
diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc index 22f7d9a8adcb..e2754426cf1e 100644 --- a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc @@ -176,4 +176,4 @@ python populate_packages:prepend() { d.appendVar("RPROVIDES:" + pn, " " + get_abi("video")) } -CVE_STATUS[CVE-2023-5574] = "${@bb.utils.contains('PACKAGECONFIG', 'xvfb', '', 'not-applicable-config: specific to Xvfb', d)}" +CVE_STATUS[CVE-2023-5574] = "${@bb.utils.contains('PACKAGECONFIG', 'xvfb', 'unpatched', 'not-applicable-config: specific to Xvfb', d)}"
If XvFB is enabled, the CVE_STATUS for CVE-2023-5574 should be 'unpatched' rather than the empty string. Otherwise SDPX checker complains: xserver-xorg-2_21.1.13-r0 do_create_spdx: Unknown CVE status Signed-off-by: Dmitry Baryshkov <dmitry.baryshkov@linaro.org> --- meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)