mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-20 08:29:42 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
3c1c56ec07d6f507077458faf5818ff4a88dce98
poky/meta/recipes-kernel/linux/cve-exclusion.inc
Ross Burton d2b17a0db7 cve-exclusion: review the last of the historical kernel CVEs 
Review the last of the historical kernel CVEs.  Issues which are
specific to other platforms or distributions are ignored in the kernel
recipe itself, whereas general security concerns like "ICMP leaks
information" and "USB has flaws" are ignored with more details in the
extra-exclusions file as before.

(From OE-Core rev: fe1c0b9725f88d15ba48b02b5fef01f2cf2e9d78)

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
2023-09-07 14:42:37 +01:00

35 lines
1.6 KiB
PHP
Raw Blame History

CVE_STATUS[CVE-1999-0656] = "not-applicable-config: specific to ugidd, part of the old user-mode NFS server"
CVE_STATUS[CVE-2006-2932] = "not-applicable-platform: specific to RHEL"
CVE_STATUS[CVE-2007-2764] = "not-applicable-platform: specific to Sun/Brocade SilkWorm switches"
CVE_STATUS[CVE-2007-4998] = "cpe-incorrect: a historic cp bug, no longer an issue as per https://bugzilla.redhat.com/show_bug.cgi?id=356471#c5"
CVE_STATUS[CVE-2008-2544] = "disputed: not an issue as per https://bugzilla.redhat.com/show_bug.cgi?id=449089#c22"
CVE_STATUS[CVE-2010-0298] = "fixed-version: 2.6.34 (1871c6)"
CVE_STATUS[CVE-2014-2648] = "cpe-incorrect: not Linux"
CVE_STATUS[CVE-2016-0774] = "ignored: result of incomplete backport"
CVE_STATUS[CVE-2016-3695] = "not-applicable-platform: specific to RHEL with securelevel patches"
CVE_STATUS[CVE-2016-3699] = "not-applicable-platform: specific to RHEL with securelevel patches"
CVE_STATUS[CVE-2017-6264] = "not-applicable-platform: Android specific"
CVE_STATUS[CVE-2017-1000377] = "not-applicable-platform: GRSecurity specific"
CVE_STATUS[CVE-2018-6559] = "not-applicable-platform: Issue only affects Ubuntu"
CVE_STATUS[CVE-2020-11935] = "not-applicable-config: Issue only affects aufs, which is not in linux-yocto"
# Introduced in version v6.1 7b88bda3761b95856cf97822efe8281c8100067b
# Patched in kernel since v6.2 4a625ceee8a0ab0273534cb6b432ce6b331db5ee
# But, the CVE is disputed:
CVE_STATUS[CVE-2023-23005] = "disputed: There are no realistic cases \
in which a user can cause the alloc_memory_type error case to be reached. \
See: https://bugzilla.suse.com/show_bug.cgi?id=1208844#c2"
Reference in New Issue View Git Blame Copy Permalink