From e88e353f30744a54b0031e5fcc0d00baa6b7f7a7 Mon Sep 17 00:00:00 2001
From: Gyorgy Sarvari <skandigraun@gmail.com>
Date: Sat, 3 Jan 2026 09:48:33 +0100
Subject: [PATCH] nodejs: ignore CVE-2024-3566 and CVE-2024-36138

Details: https://nvd.nist.gov/vuln/detail/CVE-2024-3566
https://nvd.nist.gov/vuln/detail/CVE-2024-36138

This vulnerabilities affect Windows only.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
---
 meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb b/meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb
index 9326b26421..11e9717c6a 100644
--- a/meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb
+++ b/meta-oe/recipes-devtools/nodejs/nodejs_16.20.2.bb
@@ -54,6 +54,9 @@ CVE_CHECK_IGNORE = "CVE-2023-30583 CVE-2023-30584 CVE-2023-30587"
 # the vulnerability was introduced later (with libuv 1.45)
 CVE_CHECK_IGNORE += "CVE-2024-22017"
 
+# this vulnerabilities affect only Windows
+CVE_CHECK_IGNORE += "CVE-2024-3566 CVE-2024-36138"
+
 # v8 errors out if you have set CCACHE
 CCACHE = ""