From: Peter Marko <[email protected]> This is a version-less Redhat CVE, so explicit status is needed. Per [1] the issue is mitigated by using openssl >= 3.2.0.
[1] https://bugzilla.redhat.com/show_bug.cgi?id=2336100 Signed-off-by: Peter Marko <[email protected]> Signed-off-by: Richard Purdie <[email protected]> (cherry picked from commit 5e03d64e32dce88d78dcf59429ea8fec475ea318) Signed-off-by: Yoann Congal <[email protected]> --- meta/recipes-devtools/ruby/ruby_4.0.2.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-devtools/ruby/ruby_4.0.2.bb b/meta/recipes-devtools/ruby/ruby_4.0.2.bb index ba24e8601ce..89d8d5b1551 100644 --- a/meta/recipes-devtools/ruby/ruby_4.0.2.bb +++ b/meta/recipes-devtools/ruby/ruby_4.0.2.bb @@ -140,3 +140,5 @@ FILES:${PN}-ptest:append:class-target = "\ " BBCLASSEXTEND = "native nativesdk" + +CVE_STATUS[CVE-2025-0306] = "not-applicable-config: issue does not occur with openssl >= 3.2.0"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#236644): https://lists.openembedded.org/g/openembedded-core/message/236644 Mute This Topic: https://lists.openembedded.org/mt/119210601/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
