mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-17 18:59:53 +00:00
python3-grpcio: set status for CVE-2026-33186
The vulnerability only affects the Go implementation of the library, not the Python one. Ignore this CVE due to this. Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-33186 Signed-off-by: Sudhir Dumbhare <sudumbha@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
This commit is contained in:
Sudhir Dumbhare
committed by
Anuj Mittal
Anuj Mittal
parent
bc70f00d38
commit
a218d02b51
@@ -54,3 +54,5 @@ BBCLASSEXTEND = "native nativesdk"
|
||||
CCACHE_DISABLE = "1"
|
||||
|
||||
CVE_PRODUCT += "grpc:grpc"
|
||||
|
||||
CVE_STATUS[CVE-2026-33186] = "cpe-incorrect: the vulnerability affects only the go implementation"
|
||||
|
||||
Reference in New Issue
Block a user