package/libexif: annotate CVEs
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
This commit is contained in:
Fabrice Fontaine
Thomas Petazzoni
parent
7c099731e7
commit
094d9857bd
@ -12,4 +12,13 @@ LIBEXIF_DEPENDENCIES = host-pkgconf
|
||||
LIBEXIF_LICENSE = LGPL-2.1+
|
||||
LIBEXIF_LICENSE_FILES = COPYING
|
||||
|
||||
# 0001-fixes-some-not-all-buffer-overreads-during-decoding-.patch
|
||||
LIBEXIF_IGNORE_CVES += CVE-2016-6328
|
||||
# 0002-On-saving-makernotes-make-sure-the-makernote-contain.patch
|
||||
LIBEXIF_IGNORE_CVES += CVE-2017-7544
|
||||
# 0004-Improve-deep-recursion-detection-in-exif_data_load_d.patch
|
||||
LIBEXIF_IGNORE_CVES += CVE-2018-20030
|
||||
# 0005-fix-CVE-2019-9278.patch
|
||||
LIBEXIF_IGNORE_CVES += CVE-2019-9278
|
||||
|
||||
$(eval $(autotools-package))
|
||||
|
||||
Loading…
Reference in New Issue
Block a user