python3: ignore CVE-2023-36632

This CVE shouldn't have been filed as the "exploit" is described in the documentation as how the library behaves. (From OE-Core rev: 3e7f736fa07a132d4fe42a59baaabe565238da21) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit c652f094d86c4efb7ff99accba63b8169493ab18) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Peter Marko <peter.marko@siemens.com> 2023-07-23 11:22:19 +0200
committer: Steve Sakoman <steve@sakoman.com> 2023-08-01 06:17:27 -1000
commit: 38c70c430fffb103e9afb69e6566ec4edd474f1c (patch)
tree: ddf26d6bc442bab45e14f3f4445430c836a76e0b
parent: 53929c40c5c87732e7883cbe8f8eea0581d3cd55 (diff)
download: poky-38c70c430fffb103e9afb69e6566ec4edd474f1c.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-devtools/python/python3_3.11.2.bb b/meta/recipes-devtools/python/python3_3.11.2.bb
index 5bd8d32b14..f3be9768bf 100644
--- a/meta/recipes-devtools/python/python3_3.11.2.bb
+++ b/meta/recipes-devtools/python/python3_3.11.2.bb
@@ -56,6 +56,8 @@ CVE_CHECK_IGNORE += "CVE-2020-15523 CVE-2022-26488"
 # The mailcap module is insecure by design, so this can't be fixed in a meaningful way.
 # The module will be removed in the future and flaws documented.
 CVE_CHECK_IGNORE += "CVE-2015-20107"
+# Not an issue, in fact expected behaviour
+CVE_CHECK_IGNORE += "CVE-2023-36632"
 PYTHON_MAJMIN = "3.11"
author	Peter Marko <peter.marko@siemens.com>	2023-07-23 11:22:19 +0200
committer	Steve Sakoman <steve@sakoman.com>	2023-08-01 06:17:27 -1000
commit	38c70c430fffb103e9afb69e6566ec4edd474f1c (patch)
tree	ddf26d6bc442bab45e14f3f4445430c836a76e0b
parent	53929c40c5c87732e7883cbe8f8eea0581d3cd55 (diff)
download	poky-38c70c430fffb103e9afb69e6566ec4edd474f1c.tar.gz

diff --git a/meta/recipes-devtools/python/python3_3.11.2.bb b/meta/recipes-devtools/python/python3_3.11.2.bb index 5bd8d32b14..f3be9768bf 100644 --- a/meta/recipes-devtools/python/python3_3.11.2.bb +++ b/meta/recipes-devtools/python/python3_3.11.2.bb
@@ -56,6 +56,8 @@ CVE_CHECK_IGNORE += "CVE-2020-15523 CVE-2022-26488"
56	# The mailcap module is insecure by design, so this can't be fixed in a meaningful way.	56	# The mailcap module is insecure by design, so this can't be fixed in a meaningful way.
57	# The module will be removed in the future and flaws documented.	57	# The module will be removed in the future and flaws documented.
58	CVE_CHECK_IGNORE += "CVE-2015-20107"	58	CVE_CHECK_IGNORE += "CVE-2015-20107"
		59	# Not an issue, in fact expected behaviour
		60	CVE_CHECK_IGNORE += "CVE-2023-36632"
59		61
60	PYTHON_MAJMIN = "3.11"	62	PYTHON_MAJMIN = "3.11"
61		63