[meta-oe,2/3] boinc-client: mark CVE-2013-2018 patched

Message ID	20260112102106.453902-2-skandigraun@gmail.com
State	New
Headers	show Return-Path: <skandigraun@gmail.com> ip: 209.85.221.49, mailfrom: skandigraun@gmail.com) From: Gyorgy Sarvari <skandigraun@gmail.com> To: openembedded-devel@lists.openembedded.org Subject: [meta-oe][PATCH 2/3] boinc-client: mark CVE-2013-2018 patched Date: Mon, 12 Jan 2026 11:21:05 +0100 Message-ID: <20260112102106.453902-2-skandigraun@gmail.com> In-Reply-To: <20260112102106.453902-1-skandigraun@gmail.com> References: <20260112102106.453902-1-skandigraun@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[meta-oe,1/3] influxdb: ignore CVE-2024-30896 \| expand [meta-oe,1/3] influxdb: ignore CVE-2024-30896 [meta-oe,2/3] boinc-client: mark CVE-2013-2018 patched [meta-oe,3/3] lmdb: patch CVE-2026-22185

Message ID

20260112102106.453902-2-skandigraun@gmail.com

State

New

Headers

From: Gyorgy Sarvari <skandigraun@gmail.com>
To: openembedded-devel@lists.openembedded.org
Subject: [meta-oe][PATCH 2/3] boinc-client: mark CVE-2013-2018 patched
Date: Mon, 12 Jan 2026 11:21:05 +0100
Message-ID: <20260112102106.453902-2-skandigraun@gmail.com>
In-Reply-To: <20260112102106.453902-1-skandigraun@gmail.com>
References: <20260112102106.453902-1-skandigraun@gmail.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[meta-oe,1/3] influxdb: ignore CVE-2024-30896 | expand

Commit Message

Gyorgy Sarvari Jan. 12, 2026, 10:21 a.m. UTC

Details: https://nvd.nist.gov/vuln/detail/CVE-2013-2018

According to oss-security email[1], version 7.0.45 included
the fixes[2][3][4]

[1]: https://www.openwall.com/lists/oss-security/2013/04/29/11
[2]: https://github.com/BOINC/boinc/commit/6e205de096da83b12ffb2f0183b43e51261eb0c4
[3]: https://github.com/BOINC/boinc/commit/e8d6c33fe158129a5616e18eb84a7a9d44aca15f
[4]: https://github.com/BOINC/boinc/commit/ce3110489bc139b8218252ba1cb0862d69f72ae3

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-oe/recipes-extended/boinc/boinc-client_7.20.5.bb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/meta-oe/recipes-extended/boinc/boinc-client_7.20.5.bb b/meta-oe/recipes-extended/boinc/boinc-client_7.20.5.bb
index aed6fe6edd..4cc0ed2da2 100644
--- a/meta-oe/recipes-extended/boinc/boinc-client_7.20.5.bb
+++ b/meta-oe/recipes-extended/boinc/boinc-client_7.20.5.bb
@@ -31,6 +31,7 @@  DEPENDS = "curl \
 "
 
 CVE_PRODUCT = "boinc_client"
+CVE_STATUS[CVE-2013-2018] = "fixed-version: fixed in version 7.0.45 and later"
 
 SRCREV = "4774e1cbe0ad13cb9a6f7fffbb626a417316f61d"
 BRANCH = "client_release/7/7.20"

[meta-oe,2/3] boinc-client: mark CVE-2013-2018 patched

Commit Message

Patch