[Buildroot] [PATCH 1/1] package/postgresql: ignore CVE-2017-8806
Peter Korsgaard
peter at korsgaard.com
Tue May 2 06:26:54 UTC 2023
>>>>> "Yann" == Yann E MORIN <yann.morin.1998 at free.fr> writes:
> Maxim, All,
> On 2023-03-13 09:13 +0300, Maxim Kochetkov via buildroot spake thusly:
>> CVE-2017-8806 is related to postgresql-common package.
> I've reworded that sentence to explain that postgresql-common is a
> package in Debian-like distros, not available in Buildroot.
>> It is false positive for postgresql, so ignore it.
> I also added a blurb that the similar CVE that did apply to postgresql
> was fixed a while ago, to avoid vonfusion.
> Applied to master, thanks.
Committed to 2023.02.x and 2022.02.x, thanks.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list