From 42c2329fb65963d75fe363189ccc27f7618db26d Mon Sep 17 00:00:00 2001
From: Yogesh Tyagi <yogesh.tyagi@intel.com>
Date: Fri, 9 Sep 2022 22:03:47 +0800
Subject: [PATCH] dpdk/19.11: ignore CVE-2021-3839

This is fixed in 19.11 but the CPE data in NVD is incomplete.

[upstream commit link : https://git.dpdk.org/dpdk-stable/commit/?h=19.11&id=aef547884b8a64c0754b4b7906ae9d7c912b8043]

Signed-off-by: Yogesh Tyagi <yogesh.tyagi@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
---
 recipes-extended/dpdk/dpdk_19.11.9.bb | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/recipes-extended/dpdk/dpdk_19.11.9.bb b/recipes-extended/dpdk/dpdk_19.11.9.bb
index 4d8ab19..437b9b6 100644
--- a/recipes-extended/dpdk/dpdk_19.11.9.bb
+++ b/recipes-extended/dpdk/dpdk_19.11.9.bb
@@ -12,6 +12,12 @@ LIC_FILES_CHKSUM = "file://license/gpl-2.0.txt;md5=b234ee4d69f5fce4486a80fdaf4a4
                     file://license/lgpl-2.1.txt;md5=4b54a1fd55a448865a0b32d41598759d \
                     file://license/bsd-3-clause.txt;md5=0f00d99239d922ffd13cabef83b33444"
 
+# CVE-2021-3839 has been fixed by commit aef547884b in 19.11
+# NVD database is incomplete
+CVE_CHECK_WHITELIST  += "\
+    CVE-2021-3839 \
+"
+
 do_install_append () {
     # Remove the unneeded dir
     rm -rf ${D}/${INSTALL_PATH}/${RTE_TARGET}/app