[5/5] libva: set status for CVE-2023-39929

Message ID	20260425222634.44171-5-peter.marko@siemens.com
State	Under Review
Headers	show Return-Path: <peter.marko@siemens.com> ip: 185.136.65.228, mailfrom: fm-256628-20260425222746fb7f41ab6000020758-zpbfec@rts-flowmailer.siemens.com) From: Peter Marko <peter.marko@siemens.com> To: openembedded-core@lists.openembedded.org Cc: Peter Marko <peter.marko@siemens.com> Subject: [PATCH 5/5] libva: set status for CVE-2023-39929 Date: Sun, 26 Apr 2026 00:26:34 +0200 Message-ID: <20260425222634.44171-5-peter.marko@siemens.com> In-Reply-To: <20260425222634.44171-1-peter.marko@siemens.com> References: <20260425222634.44171-1-peter.marko@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-256628:519-21489:flowmailer
Series	[1/5] shadow: set CVE_PRODUCT \| expand [1/5] shadow: set CVE_PRODUCT [2/5] ruby: set status for CVE-2025-0306 [3/5] python3-setuptools: set status for CVE-2024-6345 [4/5] p11-kit: set status for CVE-2026-2100 [5/5] libva: set status for CVE-2023-39929

Message ID

20260425222634.44171-5-peter.marko@siemens.com

State

Under Review

Headers

From: Peter Marko <peter.marko@siemens.com>
To: openembedded-core@lists.openembedded.org
Cc: Peter Marko <peter.marko@siemens.com>
Subject: [PATCH 5/5] libva: set status for CVE-2023-39929
Date: Sun, 26 Apr 2026 00:26:34 +0200
Message-ID: <20260425222634.44171-5-peter.marko@siemens.com>
In-Reply-To: <20260425222634.44171-1-peter.marko@siemens.com>
References: <20260425222634.44171-1-peter.marko@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-256628:519-21489:flowmailer

Series

[1/5] shadow: set CVE_PRODUCT | expand

Commit Message

Peter Marko April 25, 2026, 10:26 p.m. UTC

From: Peter Marko <peter.marko@siemens.com>

This CVE is reported as open because NVD has no cpe and cvelistV5 has
unparseable "version": "before version 2.20.0".

Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 meta/recipes-graphics/libva/libva_2.23.0.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-graphics/libva/libva_2.23.0.bb b/meta/recipes-graphics/libva/libva_2.23.0.bb
index 63dc5af8f2..39a80db7f8 100644
--- a/meta/recipes-graphics/libva/libva_2.23.0.bb
+++ b/meta/recipes-graphics/libva/libva_2.23.0.bb
@@ -13,3 +13,5 @@  RDEPENDS:${PN}-glx =+ "${PN}-x11"
 FILES:${PN}-x11 =+ "${libdir}/libva-x11*${SOLIBS}"
 FILES:${PN}-glx =+ "${libdir}/libva-glx*${SOLIBS}"
 FILES:${PN}-wayland =+ "${libdir}/libva-wayland*${SOLIBS}"
+
+CVE_STATUS[CVE-2023-39929] = "fixed-version: fixed since 2.20.0"

[5/5] libva: set status for CVE-2023-39929

Commit Message

Patch