[Buildroot] [git commit branch/2023.08.x] package/e2fsprogs: drop CVE-2022-1304
Peter Korsgaard
peter at korsgaard.com
Mon Sep 25 06:39:20 UTC 2023
commit: https://git.buildroot.net/buildroot/commit/?id=cd75458a17aaafe623d9dc8da74569586a32e4e1
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/2023.08.x
CVE-2022-1304 only affects e2fsprogs 1.46.5.
The mentioned patch was removed in 6a21733f when bumping to 1.47.0.
Signed-off-by: Daniel Lang <dalang at gmx.at>
Signed-off-by: Yann E. MORIN <yann.morin.1998 at free.fr>
(cherry picked from commit dc0c7552735d299107385458c1889c7dc4633864)
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
---
package/e2fsprogs/e2fsprogs.mk | 3 ---
1 file changed, 3 deletions(-)
diff --git a/package/e2fsprogs/e2fsprogs.mk b/package/e2fsprogs/e2fsprogs.mk
index 80090621bf..7491f4c067 100644
--- a/package/e2fsprogs/e2fsprogs.mk
+++ b/package/e2fsprogs/e2fsprogs.mk
@@ -12,9 +12,6 @@ E2FSPROGS_LICENSE_FILES = NOTICE lib/ss/mit-sipb-copyright.h lib/et/internal.h
E2FSPROGS_CPE_ID_VENDOR = e2fsprogs_project
E2FSPROGS_INSTALL_STAGING = YES
-# 0001-libext2fs-add-sanity-check-to-extent-manipulation.patch
-E2FSPROGS_IGNORE_CVES += CVE-2022-1304
-
# Use libblkid and libuuid from util-linux for host and target packages.
# This prevents overriding them with e2fsprogs' ones, which may cause
# problems for other packages.
More information about the buildroot
mailing list