[OE-core] [dunfell][PATCH] gcc: Add CVE-2021-37322 to the list of CVEs to ignore

Tim Orling Wed, 08 Dec 2021 22:53:50 -0800

From: Richard Purdie <richard.pur...@linuxfoundation.org>

The CVE applies to binutils 2.26 and not to gcc so ignore there.


Signed-off-by: Richard Purdie <richard.pur...@linuxfoundation.org>
Signed-off-by: Tim Orling <tim.orl...@konsulko.com>
---
 meta/recipes-devtools/gcc/gcc-9.3.inc | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta/recipes-devtools/gcc/gcc-9.3.inc 
b/meta/recipes-devtools/gcc/gcc-9.3.inc
index 1c8e3df51d9..a1b442de8a6 100644
--- a/meta/recipes-devtools/gcc/gcc-9.3.inc
+++ b/meta/recipes-devtools/gcc/gcc-9.3.inc
@@ -123,3 +123,6 @@ EXTRA_OECONF_PATHS = "\
     --with-sysroot=/not/exist \
     --with-build-sysroot=${STAGING_DIR_TARGET} \
 "
+
+# Is a binutils 2.26 issue, not gcc
+CVE_CHECK_WHITELIST += "CVE-2021-37322"
-- 
2.30.2

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#159441): 
https://lists.openembedded.org/g/openembedded-core/message/159441
Mute This Topic: https://lists.openembedded.org/mt/87607595/21656
Group Owner: openembedded-core+ow...@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub 
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

[OE-core] [dunfell][PATCH] gcc: Add CVE-2021-37322 to the list of CVEs to ignore

Reply via email to