[PATCH v2] util-linux-libuuid: use util-linux's CVE

All of lore.kernel.org
 help / color / mirror / Atom feed

* [PATCH v2] util-linux-libuuid: use util-linux's CVE_PRODUCT value
       [not found] <181F354F7FEC52AE.31881@lists.openembedded.org>
@ 2025-01-29 16:26 ` Daniel McGregor
  2025-01-29 16:29 ` [PATCH v3] " Dan McGregor
       [not found] ` <181F36C8D7A37026.21193@lists.openembedded.org>
  2 siblings, 0 replies; 3+ messages in thread
From: Daniel McGregor @ 2025-01-29 16:26 UTC (permalink / raw)
  To: openembedded-core; +Cc: Daniel McGregor

util-linux and util-linux-libuuid should use the same CVE_PRODUCT
since they're the same product. They're just split off for package
dependency reasons.  Prior to this patch the libuuid recipe gave the
wrong CVE_PRODUCT value, causing some CVE check tools to fail on it.

Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com>
---
 meta/recipes-core/util-linux/util-linux.inc | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-core/util-linux/util-linux.inc b/meta/recipes-core/util-linux/util-linux.inc
index 56162ab1479..580ff488e42 100644
--- a/meta/recipes-core/util-linux/util-linux.inc
+++ b/meta/recipes-core/util-linux/util-linux.inc
@@ -43,3 +43,5 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/utils/util-linux/v${MAJOR_VERSION}/util-lin
            "
 
 SRC_URI[sha256sum] = "d78b37a66f5922d70edf3bdfb01a6b33d34ed3c3cafd6628203b2a2b67c8e8b3"
+
+CVE_PRODUCT = "util-linux"
-- 
2.47.0



^ permalink raw reply related	[flat|nested] 3+ messages in thread

* [PATCH v3] util-linux-libuuid: use util-linux's CVE_PRODUCT value
       [not found] <181F354F7FEC52AE.31881@lists.openembedded.org>
  2025-01-29 16:26 ` [PATCH v2] util-linux-libuuid: use util-linux's CVE_PRODUCT value Daniel McGregor
@ 2025-01-29 16:29 ` Dan McGregor
       [not found] ` <181F36C8D7A37026.21193@lists.openembedded.org>
  2 siblings, 0 replies; 3+ messages in thread
From: Dan McGregor @ 2025-01-29 16:29 UTC (permalink / raw)
  To: openembedded-core; +Cc: Daniel McGregor

From: Daniel McGregor <daniel.mcgregor@vecima.com>

util-linux and util-linux-libuuid should use the same CVE_PRODUCT
since they're the same product. They're just split off for package
dependency reasons.  Prior to this patch the libuuid recipe gave the
wrong CVE_PRODUCT value, causing some CVE check tools to fail on it.

Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com>
---
 meta/recipes-core/util-linux/util-linux.inc | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-core/util-linux/util-linux.inc b/meta/recipes-core/util-linux/util-linux.inc
index 56162ab1479..580ff488e42 100644
--- a/meta/recipes-core/util-linux/util-linux.inc
+++ b/meta/recipes-core/util-linux/util-linux.inc
@@ -43,3 +43,5 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/utils/util-linux/v${MAJOR_VERSION}/util-lin
            "
 
 SRC_URI[sha256sum] = "d78b37a66f5922d70edf3bdfb01a6b33d34ed3c3cafd6628203b2a2b67c8e8b3"
+
+CVE_PRODUCT = "util-linux"
-- 
2.47.0



^ permalink raw reply related	[flat|nested] 3+ messages in thread

[parent not found: <181F36C8D7A37026.21193@lists.openembedded.org>]

* Re: [OE-core] [PATCH v3] util-linux-libuuid: use util-linux's CVE_PRODUCT value
       [not found] ` <181F36C8D7A37026.21193@lists.openembedded.org>
@ 2025-01-30 20:27   ` Dan McGregor
  0 siblings, 0 replies; 3+ messages in thread
From: Dan McGregor @ 2025-01-30 20:27 UTC (permalink / raw)
  To: openembedded-core

The only difference between the various versions of this patch the 
authorship. v3 (daniel.mcgregor@vecima.com) is correct.

On Wed, 29 Jan 2025, Dan McGregor via lists.openembedded.org wrote:

> From: Daniel McGregor <daniel.mcgregor@vecima.com>
>
> util-linux and util-linux-libuuid should use the same CVE_PRODUCT
> since they're the same product. They're just split off for package
> dependency reasons.  Prior to this patch the libuuid recipe gave the
> wrong CVE_PRODUCT value, causing some CVE check tools to fail on it.
>
> Signed-off-by: Daniel McGregor <daniel.mcgregor@vecima.com>
> ---
> meta/recipes-core/util-linux/util-linux.inc | 2 ++
> 1 file changed, 2 insertions(+)
>
> diff --git a/meta/recipes-core/util-linux/util-linux.inc b/meta/recipes-core/util-linux/util-linux.inc
> index 56162ab1479..580ff488e42 100644
> --- a/meta/recipes-core/util-linux/util-linux.inc
> +++ b/meta/recipes-core/util-linux/util-linux.inc
> @@ -43,3 +43,5 @@ SRC_URI = "${KERNELORG_MIRROR}/linux/utils/util-linux/v${MAJOR_VERSION}/util-lin
>            "
>
> SRC_URI[sha256sum] = "d78b37a66f5922d70edf3bdfb01a6b33d34ed3c3cafd6628203b2a2b67c8e8b3"
> +
> +CVE_PRODUCT = "util-linux"
> -- 
> 2.47.0
>
>


^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2025-01-30 20:28 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <181F354F7FEC52AE.31881@lists.openembedded.org>
2025-01-29 16:26 ` [PATCH v2] util-linux-libuuid: use util-linux's CVE_PRODUCT value Daniel McGregor
2025-01-29 16:29 ` [PATCH v3] " Dan McGregor
     [not found] ` <181F36C8D7A37026.21193@lists.openembedded.org>
2025-01-30 20:27   ` [OE-core] " Dan McGregor

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.