[Buildroot] [git commit branch/2021.02.x] package/putty: Ignore CVE-2021-33500

Peter Korsgaard peter at korsgaard.com
Fri Jun 11 08:16:35 UTC 2021

commit: https://git.buildroot.net/buildroot/commit/?id=01063c4291a7300285ad9ec044b94968dd6c2d09
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/2021.02.x

Since putty is only affected by this CVE on Windows, ignore it in the
stable branch.  Branch master is not affected anymore already, due to
newer version which got fixed.

Signed-off-by: Alexander Dahl <post at lespocky.de>
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
 package/putty/putty.mk | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/package/putty/putty.mk b/package/putty/putty.mk
index c40cac9dc5..8a494d4e54 100644
--- a/package/putty/putty.mk
+++ b/package/putty/putty.mk
@@ -12,6 +12,9 @@ PUTTY_CPE_ID_VENDOR = putty
 PUTTY_CONF_OPTS = --disable-gtktest
+# Windows only, fixed for Windows with 0.75
+PUTTY_IGNORE_CVES += CVE-2021-33500
 ifeq ($(BR2_PACKAGE_LIBGTK2),y)
 PUTTY_CONF_OPTS += --with-gtk=2

More information about the buildroot mailing list