mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-13 17:39:57 +00:00
dovecot: ignore CVE-2025-30189
Vulnerable versions are 2.4.0, 2.4.1 according to the full disclosure[1] Details: https://nvd.nist.gov/vuln/detail/CVE-2025-30189 [1] https://seclists.org/fulldisclosure/2025/Oct/29 Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Adapted to Kirkstone. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
This commit is contained in:
Ankur Tyagi
committed by
Gyorgy Sarvari
Gyorgy Sarvari
parent
33822593e5
commit
3e3bd7acfc
@@ -78,3 +78,6 @@ FILES:${PN}-dbg += "${libdir}/dovecot/*/.debug"
|
||||
|
||||
# CVE-2016-4983 affects only postinstall script on specific distribution
|
||||
CVE_CHECK_IGNORE += "CVE-2016-4983"
|
||||
|
||||
# cpe-incorrect: The current version (2.3.14) is not affected.
|
||||
CVE_CHECK_IGNORE += "CVE-2025-30189"
|
||||
|
||||
Reference in New Issue
Block a user