mirror of
https://git.yoctoproject.org/poky
synced 2026-04-21 21:32:12 +02:00
linux-yocto/5.15: update CVE exclusions
Data pulled from: https://github.com/nluedtke/linux_kernel_cves 1/1 [ Author: Nicholas Luedtke Email: nicholas.luedtke@uwalumni.com Subject: Update 15Jan24 Date: Mon, 15 Jan 2024 12:48:45 -0500 ] (From OE-Core rev: c7c86d97f6a0e1d09eaca999ecec13656655f299) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
Bruce Ashfield
committed by
Steve Sakoman
Steve Sakoman
parent
4494d072cc
commit
1d6e0003ec
@@ -1,9 +1,9 @@
|
||||
|
||||
# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
|
||||
# Generated at 2024-01-11 21:16:55.956074 for version 5.15.146
|
||||
# Generated at 2024-01-18 18:47:24.084935 for version 5.15.147
|
||||
|
||||
python check_kernel_cve_status_version() {
|
||||
this_version = "5.15.146"
|
||||
this_version = "5.15.147"
|
||||
kernel_version = d.getVar("LINUX_VERSION")
|
||||
if kernel_version != this_version:
|
||||
bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
|
||||
@@ -6626,6 +6626,9 @@ CVE_CHECK_IGNORE += "CVE-2022-48425"
|
||||
# cpe-stable-backport: Backported in 5.15.121
|
||||
CVE_CHECK_IGNORE += "CVE-2022-48502"
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.42
|
||||
CVE_CHECK_IGNORE += "CVE-2022-48619"
|
||||
|
||||
# fixed-version: Fixed after version 5.0rc1
|
||||
CVE_CHECK_IGNORE += "CVE-2023-0030"
|
||||
|
||||
@@ -6747,6 +6750,8 @@ CVE_CHECK_IGNORE += "CVE-2023-1382"
|
||||
# fixed-version: Fixed after version 5.11rc4
|
||||
CVE_CHECK_IGNORE += "CVE-2023-1390"
|
||||
|
||||
# CVE-2023-1476 has no known resolution
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.95
|
||||
CVE_CHECK_IGNORE += "CVE-2023-1513"
|
||||
|
||||
@@ -6921,7 +6926,8 @@ CVE_CHECK_IGNORE += "CVE-2023-23559"
|
||||
# fixed-version: Fixed after version 5.12rc1
|
||||
CVE_CHECK_IGNORE += "CVE-2023-23586"
|
||||
|
||||
# CVE-2023-2430 needs backporting (fixed from 6.2rc5)
|
||||
# fixed-version: only affects 5.18rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-2430"
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.105
|
||||
CVE_CHECK_IGNORE += "CVE-2023-2483"
|
||||
@@ -7351,7 +7357,8 @@ CVE_CHECK_IGNORE += "CVE-2023-45871"
|
||||
# fixed-version: only affects 6.5rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-45898"
|
||||
|
||||
# CVE-2023-4610 needs backporting (fixed from 6.4)
|
||||
# fixed-version: only affects 6.4rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-4610"
|
||||
|
||||
# fixed-version: only affects 6.4rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-4611"
|
||||
@@ -7386,7 +7393,8 @@ CVE_CHECK_IGNORE += "CVE-2023-5090"
|
||||
# cpe-stable-backport: Backported in 5.15.135
|
||||
CVE_CHECK_IGNORE += "CVE-2023-5158"
|
||||
|
||||
# CVE-2023-51779 needs backporting (fixed from 6.7rc7)
|
||||
# cpe-stable-backport: Backported in 5.15.146
|
||||
CVE_CHECK_IGNORE += "CVE-2023-51779"
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.137
|
||||
CVE_CHECK_IGNORE += "CVE-2023-5178"
|
||||
@@ -7417,6 +7425,8 @@ CVE_CHECK_IGNORE += "CVE-2023-5972"
|
||||
|
||||
# CVE-2023-6039 needs backporting (fixed from 6.5rc5)
|
||||
|
||||
# CVE-2023-6040 needs backporting (fixed from 5.18rc1)
|
||||
|
||||
# fixed-version: only affects 6.6rc3 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6111"
|
||||
|
||||
@@ -7428,8 +7438,13 @@ CVE_CHECK_IGNORE += "CVE-2023-6176"
|
||||
|
||||
# CVE-2023-6238 has no known resolution
|
||||
|
||||
# CVE-2023-6270 has no known resolution
|
||||
|
||||
# CVE-2023-6356 has no known resolution
|
||||
|
||||
# fixed-version: only affects 6.1rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6531"
|
||||
|
||||
# CVE-2023-6535 has no known resolution
|
||||
|
||||
# CVE-2023-6536 has no known resolution
|
||||
@@ -7439,14 +7454,16 @@ CVE_CHECK_IGNORE += "CVE-2023-6546"
|
||||
|
||||
# CVE-2023-6560 needs backporting (fixed from 6.7rc4)
|
||||
|
||||
# CVE-2023-6606 needs backporting (fixed from 6.7rc7)
|
||||
# cpe-stable-backport: Backported in 5.15.146
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6606"
|
||||
|
||||
# CVE-2023-6610 needs backporting (fixed from 6.7rc7)
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.143
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6622"
|
||||
|
||||
# CVE-2023-6679 needs backporting (fixed from 6.7rc6)
|
||||
# fixed-version: only affects 6.7rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6679"
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.143
|
||||
CVE_CHECK_IGNORE += "CVE-2023-6817"
|
||||
@@ -7459,3 +7476,16 @@ CVE_CHECK_IGNORE += "CVE-2023-6932"
|
||||
|
||||
# CVE-2023-7042 has no known resolution
|
||||
|
||||
# cpe-stable-backport: Backported in 5.15.100
|
||||
CVE_CHECK_IGNORE += "CVE-2023-7192"
|
||||
|
||||
# fixed-version: only affects 6.5rc6 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2024-0193"
|
||||
|
||||
# CVE-2024-0340 needs backporting (fixed from 6.4rc6)
|
||||
|
||||
# fixed-version: only affects 6.2rc1 onwards
|
||||
CVE_CHECK_IGNORE += "CVE-2024-0443"
|
||||
|
||||
# Skipping dd=CVE-2023-1476, no affected_versions
|
||||
|
||||
|
||||
Reference in New Issue
Block a user