NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

package/openssh: add CVE ignore for CVE-2024-6387

Browse Source 
Commit ecc0c1fb12 (package/openssh: disable async-signal-unsafe code in
sshsigdie()) add a patch for CVE-2024-6387 but forgot to add an _IGNORE_CVES
entry.  Fix that.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
This commit is contained in:
Peter Korsgaard 2024-07-20 10:26:13 +02:00
parent e0a2687421
commit 0040095a17
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
package/openssh/openssh.mk
View File

@ -16,6 +16,9 @@ OPENSSH_LICENSE_FILES = LICENCE
# 0001-Improve-detection-of-fzero-call-used-regs-used.patch # 0001-Improve-detection-of-fzero-call-used-regs-used.patch
OPENSSH_AUTORECONF = YES OPENSSH_AUTORECONF = YES
# 0002-sshsigdie-async-signal-unsafe.patch
OPENSSH_IGNORE_CVES += CVE-2024-6387
OPENSSH_CONF_ENV = \ OPENSSH_CONF_ENV = \
LD="$(TARGET_CC)" \ LD="$(TARGET_CC)" \
LDFLAGS="$(TARGET_CFLAGS)" \ LDFLAGS="$(TARGET_CFLAGS)" \