From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <davidcorbe@outlook.com>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1])
	by smtp.lore.kernel.org (Postfix) with ESMTP id C10BFC6FA99
	for <webhook@archiver.kernel.org>; Fri, 10 Mar 2023 07:29:47 +0000 (UTC)
Subject: [kirkstone][dunfell] CVE-2023-25193 fix request
To: openembedded-core@lists.openembedded.org
From: "DC" <davidcorbe@outlook.com>
X-Originating-Location: Ahmedabad, Gujarat, IN (49.34.95.216)
X-Originating-Platform: Linux Chrome 110
User-Agent: GROUPS.IO Web Poster
MIME-Version: 1.0
Date: Thu, 09 Mar 2023 23:29:37 -0800
Message-ID: <xthe.1678433377646255789.WG7C@lists.openembedded.org>
Content-Type: multipart/alternative; boundary="9RvvOzHfzfwxfvRm2BIN"
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Fri, 10 Mar 2023 07:29:47 -0000
X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/178308

--9RvvOzHfzfwxfvRm2BIN
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hi Team,

We are working on CVE-2023-25193 for kirkstone and dunfell branch as it is =
causing errors in our applications.
There have been previous threads pointing to the issues that backporting is=
 difficult due to code changes and new files being added and there are no s=
econd thoughts for the same.

Could you please suggest how can we proceed to fix it ? Version updates is =
out of scope due to various internal reasons. If anyone can help, it would =
be great help.

Thanks,

DC

--9RvvOzHfzfwxfvRm2BIN
Content-Type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

<p>Hi Team,<br /><br />We are working on CVE-2023-25193 for kirkstone and d=
unfell branch as it is causing errors in our applications.<br />There have =
been previous threads pointing to the issues that backporting is difficult =
due to code changes and new files being added and there are no second thoug=
hts for the same.<br /><br /></p>
<p>Could you please suggest how can we proceed to fix it ? Version updates =
is out of scope due to various internal reasons. If anyone can help, it wou=
ld be great help.<br /><br /></p>
<p>Thanks,</p>
<p>DC</p>

--9RvvOzHfzfwxfvRm2BIN--