* [OE-core][PATCH] libxml2: update CVE_PRODUCT
@ 2021-07-01 2:21 Chen Qi
0 siblings, 0 replies; only message in thread
From: Chen Qi @ 2021-07-01 2:21 UTC (permalink / raw)
To: openembedded-core
xmllint is also a valid CVE_PRODUCT for libxml2, e.g. CVE-2021-3516.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
---
meta/recipes-core/libxml/libxml2_2.9.12.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/recipes-core/libxml/libxml2_2.9.12.bb b/meta/recipes-core/libxml/libxml2_2.9.12.bb
index 955d934d7d..0f1c457206 100644
--- a/meta/recipes-core/libxml/libxml2_2.9.12.bb
+++ b/meta/recipes-core/libxml/libxml2_2.9.12.bb
@@ -9,6 +9,8 @@ LIC_FILES_CHKSUM = "file://Copyright;md5=2044417e2e5006b65a8b9067b683fcf1 \
file://list.c;beginline=4;endline=13;md5=b9c25b021ccaf287e50060602d20f3a7 \
file://trio.c;beginline=5;endline=14;md5=cd4f61e27f88c1d43df112966b1cd28f"
+CVE_PRODUCT = "libxml2 xmllint"
+
DEPENDS = "zlib virtual/libiconv"
SRC_URI = "http://www.xmlsoft.org/sources/libxml2-${PV}.tar.gz;name=libtar \
--
2.17.1
^ permalink raw reply related [flat|nested] only message in thread
only message in thread, other threads:[~2021-07-01 2:22 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-07-01 2:21 [OE-core][PATCH] libxml2: update CVE_PRODUCT Chen Qi
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.