[Buildroot] [git commit branch/2021.02.x] package/putty: Ignore CVE-2021-33500
Peter Korsgaard
peter at korsgaard.com
Fri Jun 11 08:16:35 UTC 2021
commit: https://git.buildroot.net/buildroot/commit/?id=01063c4291a7300285ad9ec044b94968dd6c2d09
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/2021.02.x
Since putty is only affected by this CVE on Windows, ignore it in the
stable branch. Branch master is not affected anymore already, due to
newer version which got fixed.
Signed-off-by: Alexander Dahl <post at lespocky.de>
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
---
package/putty/putty.mk | 3 +++
1 file changed, 3 insertions(+)
diff --git a/package/putty/putty.mk b/package/putty/putty.mk
index c40cac9dc5..8a494d4e54 100644
--- a/package/putty/putty.mk
+++ b/package/putty/putty.mk
@@ -12,6 +12,9 @@ PUTTY_CPE_ID_VENDOR = putty
PUTTY_CONF_OPTS = --disable-gtktest
PUTTY_CONF_ENV = CFLAGS="$(TARGET_CFLAGS) -Wno-error"
+# Windows only, fixed for Windows with 0.75
+PUTTY_IGNORE_CVES += CVE-2021-33500
+
ifeq ($(BR2_PACKAGE_LIBGTK2),y)
PUTTY_CONF_OPTS += --with-gtk=2
PUTTY_DEPENDENCIES += libgtk2
More information about the buildroot
mailing list