jansson: whitelist CVE-2020-36325

According to the upstream [1], the bug happens only if the programmer does not follow the API definition. [1] akheron/jansson#548 Signed-off-by: Marta Rybczynska <[email protected]> Signed-off-by: Armin Kuster <[email protected]>
ni · Nov 30, 2021 · e0e79bb · e0e79bb
1 parent d9717de
commit e0e79bb
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb b/meta-oe/recipes-extended/jansson/jansson_2.13.1.bb
@@ -11,4 +11,7 @@ SRC_URI[sha256sum] = "f4f377da17b10201a60c1108613e78ee15df6b12016b116b6de42209f4
 
 inherit autotools pkgconfig
 
+# upstream considers it isn't a real bug https://github.com/akheron/jansson/issues/548
+CVE_CHECK_WHITELIST = "CVE-2020-36325 "
+
 BBCLASSEXTEND = "native"