Skip to content
This repository has been archived by the owner on Feb 9, 2022. It is now read-only.

Commit

Permalink
go: Exclude CVE-2021-29923 from report list
Browse files Browse the repository at this point in the history 
Upstream don't believe it is a signifiant real world issue and will only
fix in 1.17 onwards. Therefore exclude it from our reports.

golang/go#30999 (comment)

(From OE-Core rev: 5bd5faf0c34b47b2443975d66b71482d2380a01a)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
  • Loading branch information
@rpurdie
rpurdie committed Sep 7, 2021
1 parent 8632de2 commit 1ad2ae0
Showing 1 changed file with 5 additions and 0 deletions.
5 changes: 5 additions & 0 deletions meta/recipes-devtools/go/go-1.16.7.inc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,3 +18,8 @@ SRC_URI += "\
file://0009-Revert-cmd-go-make-sure-CC-and-CXX-are-absolute.patch \
"
SRC_URI[main.sha256sum] = "1a9f2894d3d878729f7045072f30becebe243524cf2fce4e0a7b248b1e0654ac"

# Upstream don't believe it is a signifiant real world issue and will only
# fix in 1.17 onwards where we can drop this.
# https://github.com/golang/go/issues/30999#issuecomment-910470358
CVE_CHECK_WHITELIST += "CVE-2021-29923"

0 comments on commit 1ad2ae0

Please sign in to comment.