Hi Armin,
did you see this updated patch?
It just aligns the PV with the actual version, and it silences cve-check also.
Regards
//Ernst
On Wed, 2022-01-12 at 08:06 +0100, Ernst Sjöstrand wrote:
> Since SRCREV is pointing to the release tag we can drop the PV part and
> just use it from the file
Hi all,
I think during
https://git.openembedded.org/meta-openembedded-contrib/commit/?h=stable/dunfell-nut&id=9ce3df8c2a10b45aa3695cf257aa27fd346d52a7
patch merge, PV variable is not updated and so CVE-2020-14354 is reported by
cve tool. So removing PV can solve this.
I have verified using "bi
Since SRCREV is pointing to the release tag we can drop the PV part and
just use it from the filename.
Signed-off-by: Ernst Sjöstrand
---
meta-oe/recipes-support/c-ares/c-ares_1.16.1.bb | 2 --
1 file changed, 2 deletions(-)
diff --git a/meta-oe/recipes-support/c-ares/c-ares_1.16.1.bb
b/meta-o