wireshark: ignore CVE-2024-24476, CVE-2024-24478 and CVE-2024-24479

Details: https://nvd.nist.gov/vuln/detail/CVE-2024-24476 https://nvd.nist.gov/vuln/detail/CVE-2024-24478 https://nvd.nist.gov/vuln/detail/CVE-2024-24479 Upstream disputes all three vulnerabilities[1]. Looking at the history, even though they were valid issues for some period of time, none of them made it to an actual stable release: the vulnerabilities were caused, caught and fixed in the same development cycle between two releases. CVE-2024-24476: vulnerability introduced with[2], fixed with[3] CVE-2024-24478: vulnerability introduced with[4], fixed with[5] CVE-2024-24479: vulnerability introduced with[6], fixed with[7] Ignore all three of these vulnerabilities, as they are not present in the used recipe version. [1]: https://www.wireshark.org/docs/relnotes/wireshark-4.2.4.html [2]: 395e3b6cb5 [3]: 108217f4bb [4]: a9a62ff576 [5]: 80a4dc55f4 [6]: 53ec634ac2 [7]: c3720cff15 Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2026-05-17 18:07:05 +00:00 · 2026-01-09 14:04:16 +01:00 · 2026-01-09 14:04:16 +01:00 · be06039718
commit be06039718
parent bca7f71ca2
1 changed files with 3 additions and 0 deletions
--- a/meta-networking/recipes-support/wireshark/wireshark_3.4.16.bb
+++ b/meta-networking/recipes-support/wireshark/wireshark_3.4.16.bb
@ -102,4 +102,7 @@ FILES:${PN} += "${datadir}*"

 RDEPENDS:tshark = "wireshark"

+# disputed, vulnerabilities didn't appear in any releases
+CVE_CHECK_IGNORE = "CVE-2024-24476 CVE-2024-24478 CVE-2024-24479"
+
 BBCLASSEXTEND = "native"