package/openssh: add CVE ignore for CVE-2024-6387

Commit ecc0c1fb12 (package/openssh: disable async-signal-unsafe code in sshsigdie()) add a patch for CVE-2024-6387 but forgot to add an _IGNORE_CVES entry. Fix that. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2024-07-20 10:26:13 +02:00 · 2024-07-20 10:26:13 +02:00 · 0040095a17
commit 0040095a17
parent e0a2687421
1 changed files with 3 additions and 0 deletions
--- a/package/openssh/openssh.mk
+++ b/package/openssh/openssh.mk
@ -16,6 +16,9 @@ OPENSSH_LICENSE_FILES = LICENCE
 # 0001-Improve-detection-of-fzero-call-used-regs-used.patch
 OPENSSH_AUTORECONF = YES

+# 0002-sshsigdie-async-signal-unsafe.patch
+OPENSSH_IGNORE_CVES += CVE-2024-6387
+
 OPENSSH_CONF_ENV = \
 	LD="$(TARGET_CC)" \
 	LDFLAGS="$(TARGET_CFLAGS)" \