Skip to content

Commit

Permalink
podman: ignore CVE-2022-2989 and CVE-2023-0778
Browse files Browse the repository at this point in the history 
NVD shows only redhat links and does not mention fixed-in release
se these CVEs will show-up in reports indefinitely.
They are already fixed in current version, so ignore them.

CVE-2022-2989
* GHSA-4wjj-jwc9-2x96
* containers/podman#15618
* commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups

CVE-2023-0778
* GHSA-qwqv-rqgf-8qh8
* containers/podman#17528
* commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content

Signed-off-by: Peter Marko <peter.marko@siemens.com>
  • Loading branch information
@petermarko @zeddii
petermarko authored and zeddii committed Aug 1, 2023
1 parent 7332b59 commit 07a578d
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions recipes-containers/podman/podman_git.bb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,9 @@ S = "${WORKDIR}/git"

PV = "4.5.1+git${SRCPV}"

CVE_STATUS[CVE-2022-2989] = "fixed-version: fixed since v4.3.0"
CVE_STATUS[CVE-2023-0778] = "fixed-version: fixed since v4.5.0"

PACKAGES =+ "${PN}-contrib"

PODMAN_PKG = "github.com/containers/libpod"
Expand Down

0 comments on commit 07a578d

Please sign in to comment.