diff options
| author | Peter Marko <peter.marko@siemens.com> | 2025-07-12 23:19:22 +0200 |
|---|---|---|
| committer | Steve Sakoman <steve@sakoman.com> | 2025-07-18 08:32:26 -0700 |
| commit | e8aec82955d124f92cc1e0abc633ab41ac70a2ba (patch) | |
| tree | 4f61f51e7608ce2b26c9644fbf82af4a5565cf93 | |
| parent | b6acab6e64c74a92c0bbaf29647e0737575712cd (diff) | |
| download | poky-e8aec82955d124f92cc1e0abc633ab41ac70a2ba.tar.gz | |
ghostscript: ignore CVE-2025-46646
The code patched by [1] which fixes this CVE is not available in 9.55.0.
Also Debian says in [2] that even 10.0.0 is not yet affected.
[1] https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f
[2] https://security-tracker.debian.org/tracker/CVE-2025-46646
(From OE-Core rev: a3e02ed74db2c234b7c3718b4d6b5332468de226)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
| -rw-r--r-- | meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb b/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb index 3b50ac1409..4d696159e0 100644 --- a/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb +++ b/meta/recipes-extended/ghostscript/ghostscript_9.55.0.bb | |||
| @@ -28,6 +28,8 @@ CVE_CHECK_IGNORE += "CVE-2023-38560 CVE-2024-46954" | |||
| 28 | CVE_CHECK_IGNORE += "CVE-2024-29507 CVE-2025-27833" | 28 | CVE_CHECK_IGNORE += "CVE-2024-29507 CVE-2025-27833" |
| 29 | # Only impacts codepaths relevant for Windows builds | 29 | # Only impacts codepaths relevant for Windows builds |
| 30 | CVE_CHECK_IGNORE += "CVE-2025-27837" | 30 | CVE_CHECK_IGNORE += "CVE-2025-27837" |
| 31 | # Vulnerable code was introduced later, so 9.55.0 is not affected yet | ||
| 32 | CVE_CHECK_IGNORE += "CVE-2025-46646" | ||
| 31 | 33 | ||
| 32 | def gs_verdir(v): | 34 | def gs_verdir(v): |
| 33 | return "".join(v.split(".")) | 35 | return "".join(v.split(".")) |