mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-13 17:39:57 +00:00
Code Issues Projects Releases Wiki Activity

vlc: ignore CVE-2026-26227 and CVE-2026-26228

Browse Source 
Details: https://nvd.nist.gov/vuln/detail/CVE-2026-26227
https://nvd.nist.gov/vuln/detail/CVE-2026-26228

Both vulnerabilities affect only the Android version of VLC, not
the other ones. Because of this, ignore these CVEs.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
This commit is contained in:
Gyorgy Sarvari
2026-03-09 11:00:39 +01:00
committed by Anuj Mittal
parent 67d0242d70
commit 29e835b9b7
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-multimedia/recipes-multimedia/vlc/vlc_3.0.20.bb
+3
View File
@@ -134,3 +134,6 @@ FILES:${PN}-staticdev += "\
INSANE_SKIP:${PN} = "dev-so"
EXCLUDE_FROM_WORLD = "${@bb.utils.contains("LICENSE_FLAGS_ACCEPTED", "commercial", "0", "1", d)}"
CVE_STATUS[CVE-2026-26227] = "not-applicable-platform: the vulnerability is Android-specific"
CVE_STATUS[CVE-2026-26228] = "not-applicable-platform: the vulnerability is Android-specific"