From df890007b4a1f15504f839d62458da0bad65137e Mon Sep 17 00:00:00 2001 From: Ankur Tyagi Date: Mon, 2 Feb 2026 17:08:05 +1300 Subject: [PATCH] vim: ignore CVE-2025-66476 Details https://nvd.nist.gov/vuln/detail/CVE-2025-66476 (From OE-Core rev: f42ed917ab6a4a91d473ef5b2107cdf0f1961c57) Signed-off-by: Ankur Tyagi Signed-off-by: Yoann Congal Signed-off-by: Paul Barker Signed-off-by: Richard Purdie --- meta/recipes-support/vim/vim_9.1.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-support/vim/vim_9.1.bb b/meta/recipes-support/vim/vim_9.1.bb index fee9f055e9..c492342ffb 100644 --- a/meta/recipes-support/vim/vim_9.1.bb +++ b/meta/recipes-support/vim/vim_9.1.bb @@ -21,3 +21,5 @@ ALTERNATIVE_LINK_NAME[xxd] = "${bindir}/xxd" # in many places for _FORTIFY_SOURCE=2. Security flags become part of CC. # lcl_maybe_fortify = "${@oe.utils.conditional('DEBUG_BUILD','1','','-D_FORTIFY_SOURCE=1',d)}" + +CVE_STATUS[CVE-2025-66476] = "not-applicable-platform: Issue only applies on Windows"