mirror of
https://git.yoctoproject.org/poky
synced 2026-04-27 12:32:13 +02:00
6c8662d11e
Amend the generate-cve-exclusions.py checking logic in part of the code responsible for iterating the "affected" defaultStatus part of the JSON structure in order to mitigate occurrences of false negatives in the generated output, as well as occurrences of wrong reason for negative result in case where the reason is actually that the checked kernel version is in backport fix scope. In tandem we regenerate the content of cve-exclusion_6.12.inc using https://github.com/CVEProject/cvelistV5.git repository main branch at git hash b20d0043711588b6409ae3118bc0510ab888c316 to keep the content in sync with the script. (From OE-Core rev: b1a5939535d67b9c0e6d8c2729cff9749a0ebaae) Signed-off-by: Niko Mauno <niko.mauno@vaisala.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>