libvips:libvips is a better CPE ID than vips:vips as this CPE ID has the
latest CVEs (whereas vips only has an old CVE from 2010):
https://nvd.nist.gov/products/cpe/search/results?keyword=cpe:2.3:a:libvips:libvips
Fix:
299e5b0a9bce19d6e96cb9ff217028b36ee2dd36
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
PKG_MAINTAINER:=W. Michael Petullo <mike@flyn.org>
PKG_LICENSE:=LGPL-2.1-or-later
PKG_LICENSE_FILES:=COPYING
-PKG_CPE_ID:=cpe:/a:vips:vips
+PKG_CPE_ID:=cpe:/a:libvips:libvips
PKG_BUILD_DEPENDS:=glib2/host
projects / feed / packages.git / commitdiff