| Message ID | 20240703184836.23299-1-ninette@thehoodiefirm.com |
|---|---|
| State | Under Review |
| Headers | show |
| Series | [v2] apache2:apache2-native: Update CVE status | expand |
Ninette Adhikari via lists.openembedded.org schrieb am Mi 03. Jul, 11:48 (GMT): > Update CVE status for: CVE-1999-0289, CVE-2007-0450, CVE-2010-0425 > > The current version (2.4.6) is not affected. It only applies for Windows. > > Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com> > --- > meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb | 3 +++ > 1 file changed, 3 insertions(+) > > diff --git a/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb b/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb > index 48bb773dd..265313b3f 100644 > --- a/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb > +++ b/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb > @@ -41,6 +41,9 @@ CVE_STATUS[CVE-2007-6421] = "cpe-incorrect: The current version (2.4.59) is not > CVE_STATUS[CVE-2007-6422] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions from 2.2 (incl.) to 2.2.8 (excl.)" > CVE_STATUS[CVE-2007-6423] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions from 2.2.x to 2.2.7-dev" > CVE_STATUS[CVE-2008-2168] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions up to 2.2.6 (excl.)" > +CVE_STATUS[CVE-1999-0289] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows" > +CVE_STATUS[CVE-2007-0450] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows." > +CVE_STATUS[CVE-2010-0425] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows." Maybe it's good to keep the CVE_STATUS lines sorted. Regards Jörg
diff --git a/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb b/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb index 48bb773dd..265313b3f 100644 --- a/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb +++ b/meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb @@ -41,6 +41,9 @@ CVE_STATUS[CVE-2007-6421] = "cpe-incorrect: The current version (2.4.59) is not CVE_STATUS[CVE-2007-6422] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions from 2.2 (incl.) to 2.2.8 (excl.)" CVE_STATUS[CVE-2007-6423] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions from 2.2.x to 2.2.7-dev" CVE_STATUS[CVE-2008-2168] = "cpe-incorrect: The current version (2.4.59) is not affected by the CVE which affects versions up to 2.2.6 (excl.)" +CVE_STATUS[CVE-1999-0289] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows" +CVE_STATUS[CVE-2007-0450] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows." +CVE_STATUS[CVE-2010-0425] = "not-applicable-platform: The current version (2.4.6) is not affected. It only applies for Windows." SSTATE_SCAN_FILES += "apxs config_vars.mk config.nice"
Update CVE status for: CVE-1999-0289, CVE-2007-0450, CVE-2010-0425 The current version (2.4.6) is not affected. It only applies for Windows. Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com> --- meta-webserver/recipes-httpd/apache2/apache2_2.4.60.bb | 3 +++ 1 file changed, 3 insertions(+)