From 62a53097324ace9161d8fdcfbc533baac9ee6309 Mon Sep 17 00:00:00 2001 From: Gyorgy Sarvari Date: Sat, 15 Nov 2025 19:19:09 +0100 Subject: [PATCH] links: set CVE_PRODUCT There are some unrelated software called "links", which cases false-positive CVEs to be reported by the CVE checker. Set the vendor/product pairs that were historically used with CVEs for this software. Signed-off-by: Gyorgy Sarvari Signed-off-by: Khem Raj --- meta-oe/recipes-support/links/links.inc | 2 ++ meta-oe/recipes-support/links/links_2.29.bb | 2 -- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/meta-oe/recipes-support/links/links.inc b/meta-oe/recipes-support/links/links.inc index d772d54aff..a255f0ba6b 100644 --- a/meta-oe/recipes-support/links/links.inc +++ b/meta-oe/recipes-support/links/links.inc @@ -14,4 +14,6 @@ PACKAGECONFIG ??= "" PACKAGECONFIG[bzip2] = "--with-bzip2,--without-bzip2,bzip2" PACKAGECONFIG[lzma] = "--with-lzma,--without-lzma,xz" +CVE_PRODUCT = "twibright_labs:links twibright:links links:links" + inherit autotools pkgconfig diff --git a/meta-oe/recipes-support/links/links_2.29.bb b/meta-oe/recipes-support/links/links_2.29.bb index 311d84e484..e3a15d1819 100644 --- a/meta-oe/recipes-support/links/links_2.29.bb +++ b/meta-oe/recipes-support/links/links_2.29.bb @@ -9,5 +9,3 @@ EXTRA_OECONF = "--enable-graphics \ --without-directfb --without-pmshell --without-atheos \ --without-x" SRC_URI[sha256sum] = "22aa96c0b38e1a6f8f7ed9d7a4167a47fc37246097759ef6059ecf8f9ead7998" - -CVE_STATUS[CVE-2008-3319] = "cpe-incorrect: The recipe used in the `meta-openembedded` is a different links package compared to the one which has the CVE issue."