mirror of
https://github.com/espressif/esp-idf.git
synced 2024-10-05 20:47:46 -04:00
fix(newlib): sbom: add CVE-2024-30949 to cve-exclude-list
This commit is contained in:
parent
50abf54d0f
commit
13ec7d2b24
@ -4,3 +4,6 @@ cpe: cpe:2.3:a:newlib_project:newlib:{}:*:*:*:*:*:*:*
|
||||
supplier: 'Organization: Espressif Systems (Shanghai) CO LTD'
|
||||
originator: 'Organization: Red Hat Incorporated'
|
||||
description: An open-source C standard library implementation with additional features and patches from Espressif.
|
||||
cve-exclude-list:
|
||||
- cve: CVE-2024-30949
|
||||
reason: May affect RISCV binaries that are linked with libgloss. IDF does not link against this library.
|
||||
|
Loading…
Reference in New Issue
Block a user