diff mbox series

[meta-oe,scarthgap,4/4] opencv: ignore CVE-2025-53644

Message ID 20251015063531.1573191-4-ankur.tyagi85@gmail.com
State New
Headers show
Series [meta-oe,scarthgap,1/4] mercurial: Update CVE status for CVE-2022-43410 | expand

Commit Message

Ankur Tyagi Oct. 15, 2025, 6:35 a.m. UTC 
Details https://nvd.nist.gov/vuln/detail/CVE-2025-53644

CVE was fixed by [1] but the change [2] which introduced CVE was not present this version (4.9.0).

$ git tag --no-contains 40faced6 | grep 4.9.0
4.9.0

[1] https://github.com/opencv/opencv/commit/a39db41390de546d18962ee1278bd6dbb715f466
[2] https://github.com/opencv/opencv/commit/40faced6c18baa6fbc7c1fbd409d59d6ddecc74f#diff-ae9fbe252ce7879e83e7ae22e594d50b5a8d2ea8dfb4cc8e02e896902a1a8f10R2872

Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
---
 meta-oe/recipes-support/opencv/opencv_4.9.0.bb | 2 ++
 1 file changed, 2 insertions(+)
diff mbox series

Patch

diff --git a/meta-oe/recipes-support/opencv/opencv_4.9.0.bb b/meta-oe/recipes-support/opencv/opencv_4.9.0.bb
index cf836d3ecf..e4910553bf 100644
--- a/meta-oe/recipes-support/opencv/opencv_4.9.0.bb
+++ b/meta-oe/recipes-support/opencv/opencv_4.9.0.bb
@@ -208,3 +208,5 @@  do_install:append() {
         rm -rf ${D}${bindir}/setup_vars_opencv4.sh
     fi
 }
+
+CVE_STATUS[CVE-2025-53644] = "cpe-incorrect: This version (4.9.0) doesn't contain the change which introduced CVE."