[OE-core] [PATCH 06/23] flac_1.3.1.bb: set CVE_PRODUCT to libflac

Mikko Rapeli mikko.rapeli at bmw.de
Thu Jul 20 13:22:54 UTC 2017


NVD uses product name libflac for CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2014-8962

Signed-off-by: Mikko Rapeli <mikko.rapeli at bmw.de>
---
 meta/recipes-multimedia/flac/flac_1.3.2.bb | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-multimedia/flac/flac_1.3.2.bb b/meta/recipes-multimedia/flac/flac_1.3.2.bb
index 8a7fc5e..8315ab5 100644
--- a/meta/recipes-multimedia/flac/flac_1.3.2.bb
+++ b/meta/recipes-multimedia/flac/flac_1.3.2.bb
@@ -19,6 +19,8 @@ SRC_URI = "http://downloads.xiph.org/releases/flac/${BP}.tar.xz"
 SRC_URI[md5sum] = "454f1bfa3f93cc708098d7890d0499bd"
 SRC_URI[sha256sum] = "91cfc3ed61dc40f47f050a109b08610667d73477af6ef36dcad31c31a4a8d53f"
 
+CVE_PRODUCT = "libflac"
+
 inherit autotools gettext
 
 EXTRA_OECONF = "--disable-oggtest \
-- 
1.9.1




More information about the Openembedded-core mailing list