python3-configobj: ignore CVE-2023-26112

Details: https://nvd.nist.gov/vuln/detail/CVE-2023-26112 The used version (5.0.9) contains the fix[1] already - ignore the CVE. [1]: https://github.com/DiffSK/configobj/commit/7c618b0bbaff6ecaca51a6f05b29795d1377a4a5 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
2026-06-14 17:59:59 +00:00 · 2026-01-05 11:02:35 +01:00
parent e51133657a
commit b964b9858b
1 changed files with 2 additions and 0 deletions
@@ -13,3 +13,5 @@ RDEPENDS:${PN} += " \
 	python3-pprint \
 	python3-six \
 "
+
+CVE_STATUS[CVE-2023-26112] = "fixed-version: the recipe version (5.0.9) contains the fix already"