aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-10 16:55:50 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-11 11:53:23 +0100
commit3670be602f2ace24dc49e196407efec577164050 (patch)
tree86d8a98cd2c1c78ab25418e132be90dbb1ffc134
parent23643016f3b8794db772e333ff0b8f598571b628 (diff)
downloadopenembedded-core-contrib-3670be602f2ace24dc49e196407efec577164050.tar.gz
openembedded-core-contrib-3670be602f2ace24dc49e196407efec577164050.tar.bz2
openembedded-core-contrib-3670be602f2ace24dc49e196407efec577164050.zip
openssh: Exclude CVE-2007-2768 from cve-check
We don't build/use the OPIE PAM module, exclude the CVE from this recipe. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-connectivity/openssh/openssh_8.6p1.bb3
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
index be56fe43b9..57ad5e841c 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
@@ -27,6 +27,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
"
SRC_URI[sha256sum] = "c3e6e4da1621762c850d03b47eed1e48dff4cc9608ddeb547202a234df8ed7ae"
+# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
+CVE_CHECK_WHITELIST += "CVE-2007-2768"
+
# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
CVE_CHECK_WHITELIST += "CVE-2014-9278"