logcheck: ignore CVE-2017-20148

Details: https://nvd.nist.gov/vuln/detail/CVE-2017-20148 The issue is specific to the postinstall script that Gentoo packages with this application - we can ignore it. Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2026-01-04 16:10:10 +00:00 · 2025-11-22 20:31:21 +01:00 · 2025-11-22 20:31:21 +01:00 · 124826c549
commit 124826c549
parent 3bd62901b3
1 changed files with 3 additions and 0 deletions
--- a/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb
+++ b/meta-perl/recipes-extended/logcheck/logcheck_1.3.23.bb
@ -77,3 +77,6 @@ RDEPENDS:${PN} = "\
 "

 FILES:${PN} += "${datadir}/logtail"
+
+# This vulnerability is specific to the way Gentoo packages this application.
+CVE_CHECK_IGNORE += "CVE-2017-20148"