From 124826c5494f0baa4a0c6250d690b84ac8da5690 Mon Sep 17 00:00:00 2001
From: Gyorgy Sarvari <skandigraun@gmail.com>
Date: Sat, 22 Nov 2025 20:31:21 +0100
Subject: [PATCH] logcheck: ignore CVE-2017-20148

Details: https://nvd.nist.gov/vuln/detail/CVE-2017-20148

The issue is specific to the postinstall script that Gentoo packages
with this application - we can ignore it.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb b/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb
index b40d52ab94..ce6118a12b 100644
--- a/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb
+++ b/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb
@@ -77,3 +77,6 @@ RDEPENDS:${PN} = "\
 "
 
 FILES:${PN} += "${datadir}/logtail"
+
+# This vulnerability is specific to the way Gentoo packages this application.
+CVE_CHECK_IGNORE += "CVE-2017-20148"