[kirkstone,03/19] gstreamer1.0: ignore CVE-2024-0444

Message ID	e64d90d4c52f2e236dbe3b24b7deffce10452671.1731467662.git.steve@sakoman.com
State	RFC
Delegated to:	Steve Sakoman
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.210.172, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][kirkstone 03/19] gstreamer1.0: ignore CVE-2024-0444 Date: Tue, 12 Nov 2024 19:15:56 -0800 Message-Id: <e64d90d4c52f2e236dbe3b24b7deffce10452671.1731467662.git.steve@sakoman.com> In-Reply-To: <cover.1731467662.git.steve@sakoman.com> References: <cover.1731467662.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[kirkstone,01/19] ghostscript: fix CVE-2023-46361 \| expand [kirkstone,01/19] ghostscript: fix CVE-2023-46361 [kirkstone,02/19] curl: patch CVE-2024-9681 [kirkstone,03/19] gstreamer1.0: ignore CVE-2024-0444 [kirkstone,04/19] expat: patch CVE-2024-50602 [kirkstone,05/19] glib-2.0: patch regression of CVE-2023-32665 [kirkstone,06/19] patch.py: Use shlex instead of deprecated pipe [kirkstone,07/19] cmake: Fix sporadic issues when determining compiler internals [kirkstone,08/19] pseudo: Update to pull in linux-libc-headers race fix [kirkstone,09/19] pseudo: Disable LFS on 32bit arches [kirkstone,10/19] pseudo: Switch back to the master branch [kirkstone,11/19] pseudo: Update to include logic fix [kirkstone,12/19] pseudo: Update to pull in fd leak fix [kirkstone,13/19] pseudo: Update to pull in syncfs probe fix [kirkstone,14/19] pseudo: Update to pull in gcc14 fix and missing statvfs64 intercept [kirkstone,15/19] pseudo: Update to pull in fchmodat fix [kirkstone,16/19] pseudo: Update to pull in python 3.12+ fix [kirkstone,17/19] pseudo: Fix to work with glibc 2.40 [kirkstone,18/19] pseudo: Update to include open symlink handling bugfix [kirkstone,19/19] pseudo: Fix envp bug and add posix_spawn wrapper

Message ID

e64d90d4c52f2e236dbe3b24b7deffce10452671.1731467662.git.steve@sakoman.com

State

RFC

Delegated to:

Steve Sakoman

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][kirkstone 03/19] gstreamer1.0: ignore CVE-2024-0444
Date: Tue, 12 Nov 2024 19:15:56 -0800
Message-Id: 
 <e64d90d4c52f2e236dbe3b24b7deffce10452671.1731467662.git.steve@sakoman.com>
In-Reply-To: <cover.1731467662.git.steve@sakoman.com>
References: <cover.1731467662.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[kirkstone,01/19] ghostscript: fix CVE-2023-46361 | expand

Commit Message

Steve Sakoman Nov. 13, 2024, 3:15 a.m. UTC

From: Peter Marko <peter.marko@siemens.com>

This CVE is patched in gstreamer1.0-plugins-bad.
cpe product is set to gstreamer, they share source git repository.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-multimedia/gstreamer/gstreamer1.0_1.20.7.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.20.7.bb b/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.20.7.bb
index 6d002198ae..2c9c6944b0 100644
--- a/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.20.7.bb
+++ b/meta/recipes-multimedia/gstreamer/gstreamer1.0_1.20.7.bb
@@ -69,4 +69,7 @@  FILES:${PN}-dbg += "${datadir}/gdb ${datadir}/gstreamer-1.0/gdb"
 
 CVE_PRODUCT = "gstreamer"
 
+# this CVE is patched in gstreamer1.0-plugins-bad
+CVE_CHECK_IGNORE += "CVE-2024-0444"
+
 PTEST_BUILD_HOST_FILES = ""

[kirkstone,03/19] gstreamer1.0: ignore CVE-2024-0444

Commit Message

Patch