mirror of
https://github.com/openembedded/meta-openembedded.git
synced 2026-06-14 05:49:57 +00:00
Ankur Tyagi
f11e20ad6e
Details: https://nvd.nist.gov/vuln/detail/CVE-2025-48796 The vulnerable function ani_load_image() was added[1] after the current version of GIMP[2], we can ignore the CVE. [1] https://gitlab.gnome.org/GNOME/gimp/-/commit/aa51b9e19ece8a8c54a513fe33b6d65abcb0fbfb [2] https://gitlab.gnome.org/GNOME/gimp/-/commits/GIMP_2_10_38/plug-ins/file-ico/ico-load.c?ref_type=tags Signed-off-by: Ankur Tyagi <ankur.tyagi85@gmail.com> Signed-off-by: Anuj Mittal <anuj.mittal@oss.qualcomm.com>
Dependencies
This layer depends on:
URI: git://git.openembedded.org/openembedded-core branch: scarthgap
URI: git://git.openembedded.org/meta-openembedded branch: scarthgap
Send pull requests to openembedded-devel@lists.openembedded.org with '[meta-gnome][scarthgap]' in the subject'
When sending single patches, please using something like: git send-email -M -1 --to openembedded-devel@lists.openembedded.org --subject-prefix='meta-gnome][scarthgap][PATCH'
Layer maintainer: Armin Kuster akuster808@gmail.com