From 3c4801b91ad36783e61816ff937bc56787fd556a Mon Sep 17 00:00:00 2001 From: Ross Burton Date: Mon, 18 Dec 2023 14:18:25 +0000 Subject: [PATCH] linux-yocto: update CVE exclusions (From OE-Core rev: d705c4071d0f829ad3348af9899e6a3a4ea3fa48) Signed-off-by: Ross Burton Signed-off-by: Richard Purdie (cherry picked from commit 4cfc4187ac90a4504b93a01ff6333d14928728a8) Signed-off-by: Steve Sakoman --- meta/recipes-kernel/linux/cve-exclusion_6.1.inc | 4 ++-- meta/recipes-kernel/linux/cve-exclusion_6.5.inc | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc index 650b83a900..bf23742d70 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc @@ -1,6 +1,6 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2023-12-05 13:22:34.961692+00:00 for version 6.1.65 +# Generated at 2023-12-18 14:15:17.069657+00:00 for version 6.1.65 python check_kernel_cve_status_version() { this_version = "6.1.65" @@ -5126,7 +5126,7 @@ CVE_STATUS[CVE-2023-5633] = "fixed-version: only affects 6.2 onwards" CVE_STATUS[CVE-2023-6111] = "fixed-version: only affects 6.6rc3 onwards" -# CVE-2023-6121 needs backporting (fixed from 6.7rc3) +CVE_STATUS[CVE-2023-6121] = "cpe-stable-backport: Backported in 6.1.65" CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.1.54" diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc index 046c3f95c3..7711bcb4d6 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc @@ -1,6 +1,6 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2023-12-05 13:22:43.339114+00:00 for version 6.5.13 +# Generated at 2023-12-18 14:15:23.952852+00:00 for version 6.5.13 python check_kernel_cve_status_version() { this_version = "6.5.13"