diff --git a/meta-oniro-staging/recipes-connectivity/openthread/wpantund_git.bb b/meta-oniro-staging/recipes-connectivity/openthread/wpantund_git.bb
index fda223a841b561cdd2ee153fd3e31b46eccd92f4..bb444d04f527f44c1bc5b85553d6bffdce4c0d26 100644
--- a/meta-oniro-staging/recipes-connectivity/openthread/wpantund_git.bb
+++ b/meta-oniro-staging/recipes-connectivity/openthread/wpantund_git.bb
@@ -1,7 +1,6 @@
 # SPDX-FileCopyrightText: Huawei Inc.
 #
 # SPDX-License-Identifier: Apache-2.0
-
 SUMMARY = "wpantund, Userspace WPAN Network Daemon"
 SECTION = "net"
 LICENSE = "Apache-2.0 & MIT & BSL-1.0 & BSD-3-Clause"
@@ -12,18 +11,22 @@ LIC_FILES_CHKSUM = "file://LICENSE;md5=e7820bc7f7d1638a6b54fc2e8d7fb103 \
                     file://third_party/openthread/LICENSE;md5=543b6fe90ec5901a683320a36390c65f \
                     file://third_party/pt/LICENSE;md5=dcd598b69cad786beea33da7b1ae14b7 \
                     "
+DEPENDS = "autoconf-archive dbus readline"
+SRCREV = "0fb1f57e4224e2df3e630e146702bfcf63fbf07a"
+PV = "0.07.01+git${SRCPV}"
 
 SRC_URI = "gitsm://github.com/openthread/wpantund.git;protocol=https;branch=master \
            "
-# CVE-2020-8916 has been fixed in commit
-# 3f108441e23e033b936e85be5b6877dd0a1fbf1c which is included in the SRCREV
-CVE_CHECK_IGNORE = "CVE-2020-8916"
-
-PV = "0.07.01+git${SRCPV}"
-SRCREV = "0fb1f57e4224e2df3e630e146702bfcf63fbf07a"
 
 S = "${WORKDIR}/git"
 
-DEPENDS = "autoconf-archive dbus readline"
-
 inherit pkgconfig perlnative autotools
+
+# CVE-2020-8916 has been fixed in commit
+# 3f108441e23e033b936e85be5b6877dd0a1fbf1c which is included in the SRCREV
+# CVE-2021-33889 has been fixed in commit
+# a8f3f761f6753b567d1e5ad22cbe6b0ceb6f2649 which is included in the SRCREV
+# There has not been a wpantund release as of yet that includes these fixes.
+# That means cve-check can not match them. Once a new release comes we can
+# remove the ignore statement.
+CVE_CHECK_IGNORE = "CVE-2020-8916 CVE-2021-33889"