| Message ID | 20260128195425.207546-1-skandigraun@gmail.com |
|---|---|
| State | New |
| Headers | show |
| Series | [meta-oe] freerdp: ignore CVE-2025-68118 | expand |
diff --git a/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb b/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb index a78724b925..9b07c94169 100644 --- a/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb +++ b/meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb @@ -95,6 +95,7 @@ python populate_packages:prepend () { } CVE_STATUS[CVE-2024-32662] = "fixed-version: 2.x is not affected, bug was introduced in 3.0.0" +CVE_STATUS[CVE-2025-68118] = "not-applicable-platform: Windows-only vulnerability" # avoid http://errors.yoctoproject.org/Errors/Details/852862/ # fixed in freerdp3 with https://github.com/FreeRDP/FreeRDP/pull/10553
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-68118 The vulnerability is specific to the usage of Microsoft specific sprintf implementation. Because of this, ignore this vulnerability. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> --- meta-oe/recipes-support/freerdp/freerdp_2.11.7.bb | 1 + 1 file changed, 1 insertion(+)