diff options
| author | Peter Marko <peter.marko@siemens.com> | 2023-07-29 23:24:28 +0200 |
|---|---|---|
| committer | Bruce Ashfield <bruce.ashfield@gmail.com> | 2023-08-01 14:41:46 -0400 |
| commit | 07a578d49ca07aa2f09d67afa7581e54878e3c06 (patch) | |
| tree | 8edb656482e47c45990152285d64e5d4f2ce45fa | |
| parent | 7332b594729085c5cd74fdad516ff977578017fc (diff) | |
| download | meta-virtualization-07a578d49ca07aa2f09d67afa7581e54878e3c06.tar.gz | |
podman: ignore CVE-2022-2989 and CVE-2023-0778
NVD shows only redhat links and does not mention fixed-in release
se these CVEs will show-up in reports indefinitely.
They are already fixed in current version, so ignore them.
CVE-2022-2989
* https://github.com/advisories/GHSA-4wjj-jwc9-2x96
* https://github.com/containers/podman/pull/15618
* commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups
CVE-2023-0778
* https://github.com/advisories/GHSA-qwqv-rqgf-8qh8
* https://github.com/containers/podman/pull/17528
* commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content
Signed-off-by: Peter Marko <peter.marko@siemens.com>
| -rw-r--r-- | recipes-containers/podman/podman_git.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/recipes-containers/podman/podman_git.bb b/recipes-containers/podman/podman_git.bb index cda2e949..4f728210 100644 --- a/recipes-containers/podman/podman_git.bb +++ b/recipes-containers/podman/podman_git.bb | |||
| @@ -34,6 +34,9 @@ S = "${WORKDIR}/git" | |||
| 34 | 34 | ||
| 35 | PV = "4.5.1+git${SRCPV}" | 35 | PV = "4.5.1+git${SRCPV}" |
| 36 | 36 | ||
| 37 | CVE_STATUS[CVE-2022-2989] = "fixed-version: fixed since v4.3.0" | ||
| 38 | CVE_STATUS[CVE-2023-0778] = "fixed-version: fixed since v4.5.0" | ||
| 39 | |||
| 37 | PACKAGES =+ "${PN}-contrib" | 40 | PACKAGES =+ "${PN}-contrib" |
| 38 | 41 | ||
| 39 | PODMAN_PKG = "github.com/containers/libpod" | 42 | PODMAN_PKG = "github.com/containers/libpod" |