Message ID | 20240614111911.46353-2-ninette@thehoodiefirm.com |
---|---|
State | Accepted |
Headers | show |
Series | smarty: Update status for CVE-2020-10375 | expand |
diff --git a/meta-oe/recipes-support/smarty/smarty_4.4.1.bb b/meta-oe/recipes-support/smarty/smarty_4.4.1.bb index 1caa4cd1b..e0979bb5a 100644 --- a/meta-oe/recipes-support/smarty/smarty_4.4.1.bb +++ b/meta-oe/recipes-support/smarty/smarty_4.4.1.bb @@ -24,3 +24,5 @@ do_install() { install -m 0644 ${S}/libs/sysplugins/*.php ${D}${datadir}/php/smarty3/libs/sysplugins/ } FILES:${PN} = "${datadir}/php/smarty3/" + +CVE_STATUS[CVE-2020-10375] = "cpe-incorrect: The recipe used in the meta-openembedded is a different smarty package compared to the one which has the CVE issue."
The recipe used in the meta-openembedded is a different package compared to the one which has the CVE issue. Package used in meta-embedded: https://www.smarty.net/ Package with CVE issue is from newmediacompany: https://www.smarty-online.de No action required. Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com> --- meta-oe/recipes-support/smarty/smarty_4.4.1.bb | 2 ++ 1 file changed, 2 insertions(+) -- 2.44.0