libsdl: add CVE-2019-14906 to allowlist

Message ID	20220623054434.1787116-1-hasegawa-hitomi@fujitsu.com
State	New
Headers	show Return-Path: <hasegawa-hitomi@fujitsu.com> ip: 139.138.37.100, mailfrom: hasegawa-hitomi@fujitsu.com) From: Hitomi Hasegawa <hasegawa-hitomi@fujitsu.com> To: openembedded-devel@lists.openembedded.org Subject: [PATCH] libsdl: add CVE-2019-14906 to allowlist Date: Thu, 23 Jun 2022 14:44:34 +0900 Message-Id: <20220623054434.1787116-1-hasegawa-hitomi@fujitsu.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	libsdl: add CVE-2019-14906 to allowlist \| expand libsdl: add CVE-2019-14906 to allowlist

Message ID

20220623054434.1787116-1-hasegawa-hitomi@fujitsu.com

State

New

Headers

From: Hitomi Hasegawa <hasegawa-hitomi@fujitsu.com>
To: openembedded-devel@lists.openembedded.org
Subject: [PATCH] libsdl: add CVE-2019-14906 to allowlist
Date: Thu, 23 Jun 2022 14:44:34 +0900
Message-Id: <20220623054434.1787116-1-hasegawa-hitomi@fujitsu.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

libsdl: add CVE-2019-14906 to allowlist | expand

Commit Message

Hitomi Hasegawa June 23, 2022, 5:44 a.m. UTC

CVE-2019-14906 is a Red Hat vulnerability and Yocto is not applicable.
So add it to the allowlist.

Signed-off-by: Hitomi Hasegawa <hasegawa-hitomi@fujitsu.com>
---
 meta-oe/recipes-graphics/libsdl/libsdl_1.2.15.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-oe/recipes-graphics/libsdl/libsdl_1.2.15.bb b/meta-oe/recipes-graphics/libsdl/libsdl_1.2.15.bb
index 9085c6d2f..4ec0dc6ca 100644
--- a/meta-oe/recipes-graphics/libsdl/libsdl_1.2.15.bb
+++ b/meta-oe/recipes-graphics/libsdl/libsdl_1.2.15.bb
@@ -82,3 +82,6 @@  do_configure:prepend() {
 }
 
 BBCLASSEXTEND = "native nativesdk"
+
+#CVE-2019-14906 is a RHEL specific vulnerability.
+CVE_CHECK_IGNORE += "CVE-2019-14906"

libsdl: add CVE-2019-14906 to allowlist

Commit Message

Patch