meta-openembedded

mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-13 17:39:57 +00:00

Files

T

History

Gyorgy Sarvari 4cf5f8cc31 libao: ignore CVE-2017-11548

Both Suse[1] and Debian[2] disputes that this is a vulnerability in libao.
Based on their investigation while an issue exists, it is not in libao, however
higher in the audio-toolchain, most likely in libmad or mpg321. There seem to
be nothing to be fixed about this in libao - ignore this CVE due to this.

[1]: https://bugzilla.suse.com/show_bug.cgi?id=1081767
[2]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870608

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit a993eb8b93)

Reworked for Kirkstone (CVE_STATUS -> CVE_CHECK_IGNORE)
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>

2025-11-30 15:13:58 +01:00

libao_1.2.0.bb

libao: ignore CVE-2017-11548

2025-11-30 15:13:58 +01:00