mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-14 05:49:57 +00:00
Code Issues Projects Releases Wiki Activity
Files
ab83c61385854a2d333ed25c238c736bb596ce96
meta-openembedded/meta-oe/recipes-devtools/nodejs
T
History
Gyorgy Sarvari ab83c61385 nodejs: ignore CVE-2024-22017 
Details: https://nvd.nist.gov/vuln/detail/CVE-2024-22017

The vulnerability is related to the io_uring usage of libuv.

Libuv first introduced io_uring support in v1.45[1].
oe-core ships a non-vulnerable version (1.44.2), and nodejs
vendors also an older version (1.43).

Mark this CVE as ignored for this recipe version.

[1]: https://github.com/libuv/libuv/commit/d2c31f429b87b476a7f1344d145dad4752a406d4

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2026-01-08 22:03:03 +01:00
..
nodejs
nodejs: patch CVE-2023-39333
2026-01-08 22:03:03 +01:00
nodejs-oe-cache-16.20
nodejs: upgrade 16.19.1 -> 16.20.1
2023-07-16 15:30:53 -04:00
nodejs_16.20.2.bb
nodejs: ignore CVE-2024-22017
2026-01-08 22:03:03 +01:00
nodejs-oe-cache-native_16.20.bb
nodejs: upgrade 16.19.1 -> 16.20.1
2023-07-16 15:30:53 -04:00