Commit 0cae5d7a authored Sep 06, 2021 by Richard Purdie

flex: Add CVE-2019-6293 to exclusions for checks

CVE is effectively disputed - yes there is stack exhaustion but no bug and it
is building the parser, not running it, effectively similar to a compiler ICE.
Upstream no plans to address and there is no security issue.

https://github.com/westes/flex/issues/414

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

parent d49ba024

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit b939b005
· Sep 15, 2021

mentioned in commit b939b005

mentioned in commit b939b005b06be58a276d565f755ee2d8f3e5dfc1

Toggle commit list
mirror @mirror
mentioned in commit e2de2e5e
· Sep 19, 2021

mentioned in commit e2de2e5e

mentioned in commit e2de2e5e977d84dab6cb1461800d4c29436da5c9

Toggle commit list

Please register or to comment