package/sqlite: ignore CVE-2025-3277

The CVE-2025-3277 as been marked as a duplicate of CVE-2025-29087 by the debian security tracker [1]. The CVE-2025-29087 has already been fixed in commit [2] so this patch adds CVE-2025-3277 to the ignored CVEs. [1] https://security-tracker.debian.org/tracker/CVE-2025-3277 [2] 835b5659ea package/sqlite: add patch to fix CVE-2025-29087 Signed-off-by: Thomas Perale <thomas.perale@mind.be> Signed-off-by: Julien Olivain <ju.o@free.fr>
2025-08-03 15:38:46 +02:00
parent d6d1beddbc
commit 014174f00d
1 changed files with 1 additions and 1 deletions
--- a/package/sqlite/sqlite.mk
+++ b/package/sqlite/sqlite.mk
@@ -14,7 +14,7 @@ SQLITE_CPE_ID_VENDOR = sqlite
 SQLITE_INSTALL_STAGING = YES

 # 0002-Add-a-typecast-to-avoid-32-bit-integer-overflow-in-t.patch
-SQLITE_IGNORE_CVES = CVE-2025-29087
+SQLITE_IGNORE_CVES = CVE-2025-29087 CVE-2025-3277

 ifeq ($(BR2_PACKAGE_SQLITE_STAT4),y)
 SQLITE_CFLAGS += -DSQLITE_ENABLE_STAT4