mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-07-16 04:17:25 +00:00
fuse: set CVE_PRODUCT to "fuse_project:fuse"
Other products like "RedHat:fuse" introduce false CVE findings like:
https://nvd.nist.gov/vuln/detail/CVE-2018-10906
https://nvd.nist.gov/vuln/detail/CVE-2019-14860
https://nvd.nist.gov/vuln/detail/CVE-2020-25689
Signed-off-by: Mikko Rapeli <mikko.rapeli@bmw.de>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
(cherry picked from commit fd7dc34871)
[Fixup for Dunfell context]
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This commit is contained in:
committed by
Armin Kuster
parent
c9e034fbaa
commit
a1c7bb2098
@@ -22,6 +22,8 @@ UPSTREAM_CHECK_REGEX = "fuse\-(?P<pver>3(\.\d+)+).tar.xz"
|
|||||||
|
|
||||||
inherit meson pkgconfig
|
inherit meson pkgconfig
|
||||||
|
|
||||||
|
CVE_PRODUCT = "fuse_project:fuse"
|
||||||
|
|
||||||
DEPENDS = "udev"
|
DEPENDS = "udev"
|
||||||
|
|
||||||
PACKAGES =+ "fuse3-utils"
|
PACKAGES =+ "fuse3-utils"
|
||||||
|
|||||||
@@ -27,6 +27,8 @@ CVE_CHECK_WHITELIST += "CVE-2019-14860"
|
|||||||
UPSTREAM_CHECK_URI = "https://github.com/libfuse/libfuse/releases"
|
UPSTREAM_CHECK_URI = "https://github.com/libfuse/libfuse/releases"
|
||||||
UPSTREAM_CHECK_REGEX = "fuse\-(?P<pver>2(\.\d+)+).tar.gz"
|
UPSTREAM_CHECK_REGEX = "fuse\-(?P<pver>2(\.\d+)+).tar.gz"
|
||||||
|
|
||||||
|
CVE_PRODUCT = "fuse_project:fuse"
|
||||||
|
|
||||||
inherit autotools pkgconfig update-rc.d systemd
|
inherit autotools pkgconfig update-rc.d systemd
|
||||||
|
|
||||||
INITSCRIPT_NAME = "fuse"
|
INITSCRIPT_NAME = "fuse"
|
||||||
|
|||||||
Reference in New Issue
Block a user