diff mbox series

[meta-oe,kirkstone,06/10] exiv2: add missing CVE tag to patch

Message ID 20251122193128.1703871-6-skandigraun@gmail.com
State New
Headers show
Series [meta-webserver,kirkstone,01/10] monkey: Update status for CVE-2013-2183 | expand

Commit Message

Gyorgy Sarvari Nov. 22, 2025, 7:31 p.m. UTC 
Details: https://nvd.nist.gov/vuln/detail/CVE-2021-29458
https://nvd.nist.gov/vuln/detail/CVE-2021-31292

The patch is already present, but it was missing the CVE tag, which
is added in this change.

The same patch fixes both CVEs.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-oe/recipes-support/exiv2/exiv2/CVE-2021-29458.patch | 3 +++
 1 file changed, 3 insertions(+)
diff mbox series

Patch

diff --git a/meta-oe/recipes-support/exiv2/exiv2/CVE-2021-29458.patch b/meta-oe/recipes-support/exiv2/exiv2/CVE-2021-29458.patch
index 285f6fe4ce..e7fb887844 100644
--- a/meta-oe/recipes-support/exiv2/exiv2/CVE-2021-29458.patch
+++ b/meta-oe/recipes-support/exiv2/exiv2/CVE-2021-29458.patch
@@ -2,6 +2,9 @@  From 9b7a19f957af53304655ed1efe32253a1b11a8d0 Mon Sep 17 00:00:00 2001
 From: Kevin Backhouse <kevinbackhouse@github.com>
 Date: Fri, 9 Apr 2021 13:37:48 +0100
 Subject: [PATCH] Fix integer overflow.
+
+CVE: CVE-2021-29458 CVE-2021-31292
+
 ---
  src/crwimage_int.cpp | 8 ++++++--
  1 file changed, 6 insertions(+), 2 deletions(-)