[oe][meta-filesystems][master][kirkstone][PATCH] ntfs-3g-ntfsprogs: Set CVE_PRODUCT to "tuxera:ntfs-3g"

* [oe][meta-filesystems][master][kirkstone][PATCH] ntfs-3g-ntfsprogs: Set CVE_PRODUCT to "tuxera:ntfs-3g"
@ 2022-06-14 14:54 Akash Hadke
  0 siblings, 0 replies; only message in thread
From: Akash Hadke @ 2022-06-14 14:54 UTC (permalink / raw)
  To: openembedded-devel; +Cc: ranjitsinh.rathod, Akash Hadke

Set CVE_PRODUCT to 'tuxera:ntfs-3g' for ntfs-3g-ntfsprogs recipe,
cve-check class is setting default CVE_PRODUCT to 'ntfs-3g-ntfsprogs'
which ignores the ntfs-3g-ntfsprogs CVEs from NVD Database.

Reference:
CVE-2019-9755
Link: https://nvd.nist.gov/vuln/detail/CVE-2019-9755

Signed-off-by: Akash Hadke <akash.hadke@kpit.com>
Signed-off-by: Akash Hadke <hadkeakash4@gmail.com>
---
 .../ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2021.8.22.bb            | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta-filesystems/recipes-filesystems/ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2021.8.22.bb b/meta-filesystems/recipes-filesystems/ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2021.8.22.bb
index aa1b4c2e9..c77028785 100644
--- a/meta-filesystems/recipes-filesystems/ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2021.8.22.bb
+++ b/meta-filesystems/recipes-filesystems/ntfs-3g-ntfsprogs/ntfs-3g-ntfsprogs_2021.8.22.bb
@@ -50,3 +50,5 @@ do_install:append() {
 
 # Satisfy the -dev runtime dependency
 ALLOW_EMPTY:${PN} = "1"
+
+CVE_PRODUCT = "tuxera:ntfs-3g"
-- 
2.17.1



^ permalink raw reply related	[flat|nested] only message in thread