meta-virtualization

mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 12:50:22 +02:00

History

Peter Marko 07a578d49c podman: ignore CVE-2022-2989 and CVE-2023-0778 NVD shows only redhat links and does not mention fixed-in release se these CVEs will show-up in reports indefinitely. They are already fixed in current version, so ignore them. CVE-2022-2989 * https://github.com/advisories/GHSA-4wjj-jwc9-2x96 * https://github.com/containers/podman/pull/15618 * commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups CVE-2023-0778 * https://github.com/advisories/GHSA-qwqv-rqgf-8qh8 * https://github.com/containers/podman/pull/17528 * commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content Signed-off-by: Peter Marko <peter.marko@siemens.com>	2023-08-01 14:41:46 -04:00
..
podman	podman: Add ptest support for system tests	2022-09-16 11:13:31 -04:00
podman_git.bb	podman: ignore CVE-2022-2989 and CVE-2023-0778	2023-08-01 14:41:46 -04:00

Peter Marko 07a578d49c podman: ignore CVE-2022-2989 and CVE-2023-0778

NVD shows only redhat links and does not mention fixed-in release
se these CVEs will show-up in reports indefinitely.
They are already fixed in current version, so ignore them.

CVE-2022-2989
* https://github.com/advisories/GHSA-4wjj-jwc9-2x96
* https://github.com/containers/podman/pull/15618
* commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups

CVE-2023-0778
* https://github.com/advisories/GHSA-qwqv-rqgf-8qh8
* https://github.com/containers/podman/pull/17528
* commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content

Signed-off-by: Peter Marko <peter.marko@siemens.com>

2023-08-01 14:41:46 -04:00

podman

podman: Add ptest support for system tests

2022-09-16 11:13:31 -04:00

podman_git.bb

podman: ignore CVE-2022-2989 and CVE-2023-0778

2023-08-01 14:41:46 -04:00