package/sysstat: drop CVE-2022-39377 from IGNORE_CVES

As off 2022-11-22 CVE-2022-39377 is listed as affecting sysstat < 2.16.1 instead of < 2.17.1. The text is not updated, but the CPE info is. Signed-off-by: Daniel Lang <dalang@gmx.at> Signed-off-by: Arnout Vandecappelle <arnout@mind.be>
2023-09-21 06:15:18 +02:00 · 2023-09-21 06:15:18 +02:00 · 6425e0b848
commit 6425e0b848
parent 0b764a7d1e
1 changed files with 0 additions and 3 deletions
--- a/package/sysstat/sysstat.mk
+++ b/package/sysstat/sysstat.mk
@ -14,9 +14,6 @@ SYSSTAT_LICENSE_FILES = COPYING
 SYSSTAT_CPE_ID_VENDOR = sysstat_project
 SYSSTAT_SELINUX_MODULES = sysstat

-# NVD is not up-to-date; 12.6.1 includes c1e631eddc50, which fixes the issue
-SYSSTAT_IGNORE_CVES += CVE-2022-39377
-
 ifeq ($(BR2_PACKAGE_LM_SENSORS),y)
 SYSSTAT_DEPENDENCIES += lm-sensors
 SYSSTAT_CONF_OPTS += --enable-sensors