[0/1] mercurial: Update CVE status for CVE-2022-43410

Message ID	20240626142109.61310-1-ninette@thehoodiefirm.com
Headers	show Return-Path: <ninette@thehoodiefirm.com> ip: 209.85.214.170, mailfrom: ninette@thehoodiefirm.com) From: Ninette Adhikari <ninette@thehoodiefirm.com> To: openembedded-devel@lists.openembedded.org Cc: engineering@neighbourhood.ie, Ninette Adhikari <ninette@thehoodiefirm.com> Subject: [PATCH 0/1] mercurial: Update CVE status for CVE-2022-43410 Date: Wed, 26 Jun 2024 07:21:08 -0700 Message-ID: <20240626142109.61310-1-ninette@thehoodiefirm.com> Reply-To: engineering@neighbourhood.ie MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	mercurial: Update CVE status for CVE-2022-43410 \| expand [0/1] mercurial: Update CVE status for CVE-2022-43410 [1/1] mercurial: Update CVE status for CVE-2022-43410

Message ID

20240626142109.61310-1-ninette@thehoodiefirm.com

Headers

From: Ninette Adhikari <ninette@thehoodiefirm.com>
To: openembedded-devel@lists.openembedded.org
Cc: engineering@neighbourhood.ie,
	Ninette Adhikari <ninette@thehoodiefirm.com>
Subject: [PATCH 0/1] mercurial: Update CVE status for CVE-2022-43410
Date: Wed, 26 Jun 2024 07:21:08 -0700
Message-ID: <20240626142109.61310-1-ninette@thehoodiefirm.com>
Reply-To: engineering@neighbourhood.ie
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

mercurial: Update CVE status for CVE-2022-43410 | expand

Message

Ninette Adhikari June 26, 2024, 2:21 p.m. UTC

The recipe used in the `meta-openembedded` is a different mercurial package compared to the one which has the CVE issue.
Package used in `meta-embedded`: https://www.mercurial-scm.org/
Package with CVE issue is a Jenkins plugin: https://plugins.jenkins.io/mercurial/
(This is reflected in the CPE)

Ninette Adhikari (1):
  mercurial: Update CVE status for CVE-2022-43410

 meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb | 1 +
 1 file changed, 1 insertion(+)

--
2.44.0