From 85f7185fec42b9aba670ed518e8f5afa5d0def96 Mon Sep 17 00:00:00 2001
From: Gyorgy Sarvari <skandigraun@gmail.com>
Date: Mon, 13 Apr 2026 20:02:22 +0200
Subject: [PATCH] ez-ipupdate: add CVE tag to CVE-fixing patch

An already existing patch fixes a CVE (CVE-2004-0980), but it
since the patch didn't have the CVE tag, the cve checker did not
pick it up.

Rectify this ommission.

CVE details: https://nvd.nist.gov/vuln/detail/CVE-2004-0980
The same patch is used by Gentoo to mitigate this issue.
Gentoo CVE advisory: https://security.gentoo.org/glsa/200411-20
Linked Gentoo bug, containing this patch: https://bugs.gentoo.org/69658

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
---
 .../recipes-connectivity/ez-ipupdate/files/wformat.patch   | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/meta-networking/recipes-connectivity/ez-ipupdate/files/wformat.patch b/meta-networking/recipes-connectivity/ez-ipupdate/files/wformat.patch
index 3b791559d5..7463e3c535 100644
--- a/meta-networking/recipes-connectivity/ez-ipupdate/files/wformat.patch
+++ b/meta-networking/recipes-connectivity/ez-ipupdate/files/wformat.patch
@@ -1,4 +1,9 @@
-Upstream-Status: Pending
+
+This patch is used by Gentoo to mitigate CVE-2004-0980:
+https://bugs.gentoo.org/69658
+
+CVE: CVE-2004-0980
+Upstream-Status: Inactive-Upstream [last commit: 2002]
 
 Index: ez-ipupdate-3.0.11b7/ez-ipupdate.c
 ===================================================================