dpdk/19.11: ignore CVE-2021-3839

This is fixed in 19.11 but the CPE data in NVD is incomplete. [upstream commit link : https://git.dpdk.org/dpdk-stable/commit/?h=19.11&id=aef547884b8a64c0754b4b7906ae9d7c912b8043] Signed-off-by: Yogesh Tyagi <yogesh.tyagi@intel.com> Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
2025-07-19 12:19:01 +02:00 · 2022-09-09 22:03:47 +08:00 · 2022-09-09 22:03:47 +08:00 · 42c2329fb6
commit 42c2329fb6
parent 6c98c82ad7
1 changed files with 6 additions and 0 deletions
--- a/recipes-extended/dpdk/dpdk_19.11.9.bb
+++ b/recipes-extended/dpdk/dpdk_19.11.9.bb
@ -12,6 +12,12 @@ LIC_FILES_CHKSUM = "file://license/gpl-2.0.txt;md5=b234ee4d69f5fce4486a80fdaf4a4
                    file://license/lgpl-2.1.txt;md5=4b54a1fd55a448865a0b32d41598759d \
                    file://license/bsd-3-clause.txt;md5=0f00d99239d922ffd13cabef83b33444"

+# CVE-2021-3839 has been fixed by commit aef547884b in 19.11
+# NVD database is incomplete
+CVE_CHECK_WHITELIST  += "\
+    CVE-2021-3839 \
+"
+
 do_install_append () {
    # Remove the unneeded dir
    rm -rf ${D}/${INSTALL_PATH}/${RTE_TARGET}/app