* [Buildroot] [PATCH 1/1] package/emlog: annotate CVE-2019-16868 and CVE-2019-17073
@ 2020-02-29 20:45 Fabrice Fontaine
2020-03-01 9:35 ` Yann E. MORIN
0 siblings, 1 reply; 2+ messages in thread
From: Fabrice Fontaine @ 2020-02-29 20:45 UTC (permalink / raw)
To: buildroot
CVE-2019-16868 and CVE-2019-17073 are misclassified (by our CVE tracker)
as affecting emlog, while in fact it affects http://www.emlog.net.
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/emlog/emlog.mk | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/package/emlog/emlog.mk b/package/emlog/emlog.mk
index 8759f82c7c..7d63916ab2 100644
--- a/package/emlog/emlog.mk
+++ b/package/emlog/emlog.mk
@@ -9,6 +9,10 @@ EMLOG_SITE = $(call github,nicupavel,emlog,emlog-$(EMLOG_VERSION))
EMLOG_LICENSE = GPL-2.0
EMLOG_LICENSE_FILES = COPYING
+# CVE-2019-16868 and CVE-2019-17073 are misclassified (by our CVE tracker) as
+# affecting emlog, while in fact it affects http://www.emlog.net.
+EMLOG_IGNORE_CVES += CVE-2019-16868 CVE-2019-17073
+
define EMLOG_BUILD_CMDS
$(MAKE) -C $(@D) $(TARGET_CONFIGURE_OPTS) nbcat
endef
--
2.25.0
^ permalink raw reply related [flat|nested] 2+ messages in thread
* [Buildroot] [PATCH 1/1] package/emlog: annotate CVE-2019-16868 and CVE-2019-17073
2020-02-29 20:45 [Buildroot] [PATCH 1/1] package/emlog: annotate CVE-2019-16868 and CVE-2019-17073 Fabrice Fontaine
@ 2020-03-01 9:35 ` Yann E. MORIN
0 siblings, 0 replies; 2+ messages in thread
From: Yann E. MORIN @ 2020-03-01 9:35 UTC (permalink / raw)
To: buildroot
Fabrice, All,
On 2020-02-29 21:45 +0100, Fabrice Fontaine spake thusly:
> CVE-2019-16868 and CVE-2019-17073 are misclassified (by our CVE tracker)
> as affecting emlog, while in fact it affects http://www.emlog.net.
>
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Applied to master, thanks.
Regards,
Yann E. MORIN.
> ---
> package/emlog/emlog.mk | 4 ++++
> 1 file changed, 4 insertions(+)
>
> diff --git a/package/emlog/emlog.mk b/package/emlog/emlog.mk
> index 8759f82c7c..7d63916ab2 100644
> --- a/package/emlog/emlog.mk
> +++ b/package/emlog/emlog.mk
> @@ -9,6 +9,10 @@ EMLOG_SITE = $(call github,nicupavel,emlog,emlog-$(EMLOG_VERSION))
> EMLOG_LICENSE = GPL-2.0
> EMLOG_LICENSE_FILES = COPYING
>
> +# CVE-2019-16868 and CVE-2019-17073 are misclassified (by our CVE tracker) as
> +# affecting emlog, while in fact it affects http://www.emlog.net.
> +EMLOG_IGNORE_CVES += CVE-2019-16868 CVE-2019-17073
> +
> define EMLOG_BUILD_CMDS
> $(MAKE) -C $(@D) $(TARGET_CONFIGURE_OPTS) nbcat
> endef
> --
> 2.25.0
>
> _______________________________________________
> buildroot mailing list
> buildroot at busybox.net
> http://lists.busybox.net/mailman/listinfo/buildroot
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 561 099 427 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-03-01 9:35 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-02-29 20:45 [Buildroot] [PATCH 1/1] package/emlog: annotate CVE-2019-16868 and CVE-2019-17073 Fabrice Fontaine
2020-03-01 9:35 ` Yann E. MORIN
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.