diff mbox series

[meta-oe,kirkstone,5/7] fontforge: ignore CVE-2019-15785

Message ID 20251130194414.2335669-5-skandigraun@gmail.com
State New
Headers show
Series [meta-oe,kirkstone,1/7] yasm: add alternative CVE_PRODUCT | expand

Commit Message

Gyorgy Sarvari Nov. 30, 2025, 7:44 p.m. UTC 
Details: https://nvd.nist.gov/vuln/detail/CVE-2019-15785

The vulnerability is not present in the currently used version, so
ignore it.

Current version: 20190801
First vulnerable version: 20190813

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-oe/recipes-graphics/fontforge/fontforge_20190801.bb | 3 +++
 1 file changed, 3 insertions(+)
diff mbox series

Patch

diff --git a/meta-oe/recipes-graphics/fontforge/fontforge_20190801.bb b/meta-oe/recipes-graphics/fontforge/fontforge_20190801.bb
index cb5f4d5ea1..84644f2560 100644
--- a/meta-oe/recipes-graphics/fontforge/fontforge_20190801.bb
+++ b/meta-oe/recipes-graphics/fontforge/fontforge_20190801.bb
@@ -43,5 +43,8 @@  FILES:${PN} += " \
 FILES:${PN}-python = "${PYTHON_SITEPACKAGES_DIR} ${datadir}/${BPN}/python"
 RDEPENDS:${PN}-python = "python3"
 
+# The vulnerability was introduced after the used revision.
+CVE_CHECK_IGNORE += "CVE-2019-15785"
+
 # for e.g kde's oxygen-fonts
 BBCLASSEXTEND = "native"