diff mbox series

[meta-oe] libssh: ignore CVE-2025-5318 and CVE-2025-5987

Message ID 20251007143909.4098842-1-skandigraun@gmail.com
State Under Review
Headers show
Series [meta-oe] libssh: ignore CVE-2025-5318 and CVE-2025-5987 | expand

Commit Message

Gyorgy Sarvari Oct. 7, 2025, 2:39 p.m. UTC 
Both CVEs have been fixed in version 0.11.2.

CVE-2025-5318: https://git.libssh.org/projects/libssh.git/commit/?id=5f4ffda88770f95482fd0e66aa44106614dbf466
CVE-2025-5987: https://git.libssh.org/projects/libssh.git/commit/?id=90b4845e0c98574bbf7bea9e97796695f064bf57

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-oe/recipes-support/libssh/libssh_0.11.3.bb | 3 +++
 1 file changed, 3 insertions(+)
diff mbox series

Patch

diff --git a/meta-oe/recipes-support/libssh/libssh_0.11.3.bb b/meta-oe/recipes-support/libssh/libssh_0.11.3.bb
index bfeeccdad4..5928581312 100644
--- a/meta-oe/recipes-support/libssh/libssh_0.11.3.bb
+++ b/meta-oe/recipes-support/libssh/libssh_0.11.3.bb
@@ -47,3 +47,6 @@  do_install_ptest () {
 }
 
 BBCLASSEXTEND = "native nativesdk"
+
+CVE_STATUS[CVE-2025-5987] = "fixed-version: The vulnerability was fixed in 0.11.2"
+CVE_STATUS[CVE-2025-5318] = "fixed-version: The vulnerability was fixed in 0.11.2"