[PATCH][meta-oe][dunfell] flatbuffers: whitelist CVE-2020-35864

* [PATCH][meta-oe][dunfell] flatbuffers: whitelist CVE-2020-35864
@ 2021-01-15 10:53 Mikko Rapeli
  2021-01-15 10:53 ` [PATCH][meta-oe][gatesgarth][master] " Mikko Rapeli
  0 siblings, 1 reply; 2+ messages in thread
From: Mikko Rapeli @ 2021-01-15 10:53 UTC (permalink / raw)
  To: openembedded-devel; +Cc: Mikko Rapeli

CVE-2020-35864 is for the rust crate for flatbuffers, not
flatbuffers itself.

https://security-tracker.debian.org/tracker/CVE-2020-35864

"NOT-FOR-US: flatbuffers rust crate"

Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
---
 meta-oe/recipes-devtools/flatbuffers/flatbuffers_1.12.0.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta-oe/recipes-devtools/flatbuffers/flatbuffers_1.12.0.bb b/meta-oe/recipes-devtools/flatbuffers/flatbuffers_1.12.0.bb
index c31cef63c..42cfec910 100644
--- a/meta-oe/recipes-devtools/flatbuffers/flatbuffers_1.12.0.bb
+++ b/meta-oe/recipes-devtools/flatbuffers/flatbuffers_1.12.0.bb
@@ -14,6 +14,8 @@ SRCREV = "6df40a2471737b27271bdd9b900ab5f3aec746c7"
 
 SRC_URI = "git://github.com/google/flatbuffers.git"
 
+CVE_CHECK_WHITELIST += "CVE-2020-35864"
+
 # Make sure C++11 is used, required for example for GCC 4.9
 CXXFLAGS += "-std=c++11 -fPIC"
 BUILD_CXXFLAGS += "-std=c++11 -fPIC"
-- 
2.20.1


^ permalink raw reply related	[flat|nested] 2+ messages in thread