projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: ff299cf)
package/bind: ignore CVE-2017-3139
authorMatt Weber <matthew.weber@rockwellcollins.com>
Wed, 21 Apr 2021 20:42:26 +0000 (15:42 -0500)
committerYann E. MORIN <yann.morin.1998@free.fr>
Sat, 24 Apr 2021 09:25:26 +0000 (11:25 +0200)
This CVE is only relevant to the configuration of a specific
RHEL release (6.x).

https://bugzilla.redhat.com/show_bug.cgi?id=1447743

Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
package/bind/bind.mk patch | blob | history

diff --git a/package/bind/bind.mk b/package/bind/bind.mk
index 8e8896f3cc2deae99d57c7433604cead34d4ea7b..d1a992b66e01e93bac2d018daa27f5892bec158a 100644 (file)
--- a/package/bind/bind.mk
+++ b/package/bind/bind.mk
@@ -13,6 +13,8 @@ BIND_CONFIG_SCRIPTS = bind9-config isc-config.sh
 BIND_LICENSE = MPL-2.0
 BIND_LICENSE_FILES = COPYRIGHT
 BIND_CPE_ID_VENDOR = isc
+# Only applies to RHEL6.x with DNSSEC validation on
+BIND_IGNORE_CVES = CVE-2017-3139
 BIND_TARGET_SERVER_SBIN = arpaname ddns-confgen dnssec-checkds dnssec-coverage
 BIND_TARGET_SERVER_SBIN += dnssec-importkey dnssec-keygen dnssec-revoke
 BIND_TARGET_SERVER_SBIN += dnssec-settime dnssec-verify genrandom