mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-07-15 16:07:26 +00:00
python3-grpcio: set status for CVE-2026-33186
The vulnerability only affects the Go implementation of the library, not the Python one. Ignore this CVE due to this. Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-33186 Signed-off-by: Sudhir Dumbhare <sudumbha@cisco.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
This commit is contained in:
committed by
Anuj Mittal
parent
bc70f00d38
commit
a218d02b51
@@ -54,3 +54,5 @@ BBCLASSEXTEND = "native nativesdk"
|
|||||||
CCACHE_DISABLE = "1"
|
CCACHE_DISABLE = "1"
|
||||||
|
|
||||||
CVE_PRODUCT += "grpc:grpc"
|
CVE_PRODUCT += "grpc:grpc"
|
||||||
|
|
||||||
|
CVE_STATUS[CVE-2026-33186] = "cpe-incorrect: the vulnerability affects only the go implementation"
|
||||||
|
|||||||
Reference in New Issue
Block a user