mirror of
https://git.yoctoproject.org/poky
synced 2026-07-16 15:57:04 +00:00
sqlite3: ignore CVE-2025-3277
The vulnerable code was introduced in 3.44.0 via [1]. (See fix commit [2]) Also Debian says "not vulnerabele yet for 3.40.1 in [3] [1] https://github.com/sqlite/sqlite/commit/e1e67abc5cf67f931aab1e471eda23d73f51d456 [2] https://sqlite.org/src/info/498e3f1cf57f164f [3] https://security-tracker.debian.org/tracker/CVE-2025-3277 (From OE-Core rev: ebacd5cd2827c1a9a45a92353518f9d976597526) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
committed by
Steve Sakoman
parent
bedacbb603
commit
a7f2f317f5
@@ -21,3 +21,5 @@ CVE_CHECK_IGNORE += "CVE-2019-19242"
|
||||
CVE_CHECK_IGNORE += "CVE-2015-3717"
|
||||
# Issue in an experimental extension we don't have/use. Fixed by https://sqlite.org/src/info/b1e0c22ec981cf5f
|
||||
CVE_CHECK_IGNORE += "CVE-2021-36690"
|
||||
# Issue was introduced in 3.44.0
|
||||
CVE_CHECK_IGNORE += "CVE-2025-3277"
|
||||
|
||||
Reference in New Issue
Block a user