diff options
| author | Ankur Tyagi <ankur.tyagi85@gmail.com> | 2025-10-31 14:04:11 +1300 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2025-10-30 21:33:54 -0700 |
| commit | fb27cbf27add45bc1a23e6e9a467b1071efa1e8f (patch) | |
| tree | 0f4904f3c83fe5fdf6efefa507293d6c9160e1d5 | |
| parent | 71a022d1434a8bffe2c4a07267f47ee4c207e496 (diff) | |
| download | meta-openembedded-fb27cbf27add45bc1a23e6e9a467b1071efa1e8f.tar.gz | |
mercurial: set CVE_PRODUCT to "mercurial-scm:mercurial mercurial:mercurial"
Other product "mercurial" introduce false CVE finding like:
https://nvd.nist.gov/vuln/detail/CVE-2022-43410
Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
| -rw-r--r-- | meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb b/meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb index a312be4aa7..3fa692029e 100644 --- a/meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb +++ b/meta-oe/recipes-devtools/mercurial/mercurial_6.6.3.bb | |||
| @@ -34,4 +34,4 @@ PACKAGES =+ "${PN}-python" | |||
| 34 | FILES:${PN} += "${PYTHON_SITEPACKAGES_DIR} ${datadir}" | 34 | FILES:${PN} += "${PYTHON_SITEPACKAGES_DIR} ${datadir}" |
| 35 | FILES:${PN}-python = "${nonarch_libdir}/${PYTHON_DIR}" | 35 | FILES:${PN}-python = "${nonarch_libdir}/${PYTHON_DIR}" |
| 36 | 36 | ||
| 37 | CVE_STATUS[CVE-2022-43410] = "cpe-incorrect: The recipe used in the `meta-openembedded` is a different mercurial package compared to the one which has the CVE issue." | 37 | CVE_PRODUCT = "mercurial-scm:mercurial mercurial:mercurial" |