mirror of
https://git.yoctoproject.org/poky
synced 2026-02-28 04:19:40 +01:00
Multiple CVE are patched in kernel but appears as active because the NVD database is not up to date In common file cve-extra-exclusion.inc, CVE are ignored if and only if all versions of kernel used by langdale are patched Also ignore CVEs with wrong CPE (applied to kernel but actually are for another package) In cve-exclusion_5.15.inc, only ignore CVE that are patched in v5.15, and not patched in v5.19 Recipes of version 5.15 include this file Reviewed-by: Yoann CONGAL <yoann.congal@smile.fr> (From OE-Core rev: 58d99257bc5b417c518049c6a79144aecc4e9224) Signed-off-by: Geoffrey GIRY <geoffrey.giry@smile.fr> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>