[Buildroot] [git commit branch/2021.02.x] package/avahi: ignore CVE-2021-26720
Peter Korsgaard
peter at korsgaard.com
Thu Apr 8 07:31:28 UTC 2021
commit: https://git.buildroot.net/buildroot/commit/?id=df8a5a8eb18e99eae7302d89e3634828f7aa06fe
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/2021.02.x
CVE-2021-26720 is an issue in avahi-daemon-check-dns.sh, which is part of
the Debian packaging and not part of upstream avahi - So ignore the CVE.
https://security-tracker.debian.org/tracker/CVE-2021-26720
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout at mind.be>
(cherry picked from commit 3eadd7674061f6165b08ca0e99864e0cf26b090e)
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
---
package/avahi/avahi.mk | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/package/avahi/avahi.mk b/package/avahi/avahi.mk
index e2b27328cd..b71fc189a0 100644
--- a/package/avahi/avahi.mk
+++ b/package/avahi/avahi.mk
@@ -11,6 +11,10 @@ AVAHI_LICENSE_FILES = LICENSE
AVAHI_CPE_ID_VENDOR = avahi
AVAHI_INSTALL_STAGING = YES
+# CVE-2021-26720 is an issue in avahi-daemon-check-dns.sh, which is
+# part of the Debian packaging and not part of upstream avahi
+AVAHI_IGNORE_CVES += CVE-2021-26720
+
AVAHI_CONF_ENV = \
avahi_cv_sys_cxx_works=yes \
DATADIRNAME=share
More information about the buildroot
mailing list