diff options
author | Ross Burton <ross.burton@arm.com> | 2023-06-05 17:25:46 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-06-06 23:40:20 +0100 |
commit | 73f03970f0aadfb053666a1e93f6f6d5b5156ca6 (patch) | |
tree | b43c8c9e4fb65c001a274e1241fd732808b1c81c | |
parent | 43505bcfc09c5951d333085f4cfdaadf2be0a1cf (diff) | |
download | openembedded-core-contrib-73f03970f0aadfb053666a1e93f6f6d5b5156ca6.tar.gz |
cve-extra-exclusions: add more linux-yocto CVE ignores
These CVEs have all been fixed <6.1.30, which is the default linux-yocto
kernel version.
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r-- | meta/conf/distro/include/cve-extra-exclusions.inc | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/meta/conf/distro/include/cve-extra-exclusions.inc b/meta/conf/distro/include/cve-extra-exclusions.inc index 0ca75bae3e..ff5d381523 100644 --- a/meta/conf/distro/include/cve-extra-exclusions.inc +++ b/meta/conf/distro/include/cve-extra-exclusions.inc @@ -555,5 +555,46 @@ CVE_CHECK_IGNORE += "CVE-2019-12067" # done about the bug, ignore from an OE perspective. CVE_CHECK_IGNORE += "CVE-2020-18974" +# https://www.linuxkernelcves.com/cves/CVE-2023-0459 +# Fixed in 6.1.14 onwards +CVE_CHECK_IGNORE += "CVE-2023-0459" +# https://www.linuxkernelcves.com/cves/CVE-2023-0615 +# Fixed in 6.1 onwards +CVE_CHECK_IGNORE += "CVE-2023-0615" +# https://www.linuxkernelcves.com/cves/CVE-2023-1380 +# Fixed in 6.1.27 +CVE_CHECK_IGNORE += "CVE-2023-1380" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1611 +# Fixed in 6.1.23 +CVE_CHECK_IGNORE += "CVE-2023-1611" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1855 +# Fixed in 6.1.21 +CVE_CHECK_IGNORE += "CVE-2023-1855" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1859 +# Fixed in 6.1.25 +CVE_CHECK_IGNORE += "CVE-2023-1859" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1989 +# Fixed in 6.1.22 +CVE_CHECK_IGNORE += "CVE-2023-1989" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1990 +# Fixed in 6.1.21 +CVE_CHECK_IGNORE += "CVE-2023-1990" + +# https://www.linuxkernelcves.com/cves/CVE-2023-1999 +# Fixed in 6.1.16 +CVE_CHECK_IGNORE += "CVE-2023-1998" + +# https://www.linuxkernelcves.com/cves/CVE-2023-2156 +# Fixed in 6.1.26 +CVE_CHECK_IGNORE += "CVE-2023-2156" + +# https://www.linuxkernelcves.com/cves/CVE-2023-2162 +# Fixed in 6.1.11 +CVE_CHECK_IGNORE += "CVE-2023-2162" |