Merge branch 'change/exclude_cve-2025-57052_v5.1' into 'release/v5.1'

change(cjson): Update to v1.7.19 (v5.1) See merge request espressif/esp-idf!41841
2025-10-02 10:00:57 +02:00 · 2025-09-15 11:01:51 +05:30
parent f2f59fb268 39587b334d
commit b4afd60f0d
2 changed files with 3 additions and 6 deletions
--- a/.gitmodules
+++ b/.gitmodules
@@ -49,15 +49,12 @@
 [submodule "components/json/cJSON"]
 	path = components/json/cJSON
 	url = ../../DaveGamble/cJSON.git
-	sbom-version = 1.7.18
+	sbom-version = 1.7.19
 	sbom-cpe = cpe:2.3:a:cjson_project:cjson:{}:*:*:*:*:*:*:*
 	sbom-supplier = Person: Dave Gamble
 	sbom-url = https://github.com/DaveGamble/cJSON
 	sbom-description = Ultralightweight JSON parser in ANSI C
-	sbom-hash = 8f2beb57ddad1f94bed899790b00f46df893ccac
-	sbom-cve-exclude-list = CVE-2024-31755 Resolved in v1.7.18
-	sbom-cve-exclude-list = CVE-2023-26819 Resolved in commit a328d65ad490b64da8c87523cbbfe16050ba5bf6
-	sbom-cve-exclude-list = CVE-2023-53154 Resolved in v1.7.18
+	sbom-hash = c859b25da02955fef659d658b8f324b5cde87be3

 [submodule "components/mbedtls/mbedtls"]
 	path = components/mbedtls/mbedtls
--- a/components/json/cJSON
+++ b/components/json/cJSON