From e32b9747549a48c51277eac9caed79ac3fc843e7 Mon Sep 17 00:00:00 2001
From: Gyorgy Sarvari <skandigraun@gmail.com>
Date: Mon, 6 Apr 2026 17:13:03 +0200
Subject: [PATCH] strongswan: mark CVE-2026-25075 as patched

The CVE is fixed in the current version already, however
NVD tracks it without version - suppress the report explicitly.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <khem.raj@oss.qualcomm.com>
---
 meta-networking/recipes-support/strongswan/strongswan_6.0.5.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta-networking/recipes-support/strongswan/strongswan_6.0.5.bb b/meta-networking/recipes-support/strongswan/strongswan_6.0.5.bb
index c3909acff2..405080070c 100644
--- a/meta-networking/recipes-support/strongswan/strongswan_6.0.5.bb
+++ b/meta-networking/recipes-support/strongswan/strongswan_6.0.5.bb
@@ -189,3 +189,5 @@ SYSTEMD_SERVICE:${PN} = " \
     ${@bb.utils.contains('PACKAGECONFIG', 'swanctl', '${BPN}.service', '', d)} \
     ${@bb.utils.contains('PACKAGECONFIG', 'charon', '${BPN}-starter.service', '', d)} \
 "
+
+CVE_STATUS[CVE-2026-25075] = "fixed-version: fixed in 6.0.5"