diff options
author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-20 18:44:24 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-20 18:44:24 +0100 |
commit | d2ba6d58e77430cceeca9db61fdb06882a92e1e7 (patch) | |
tree | aba7ee89ad07ebe891a7c0d04e23352d0d7d05bb /meta/conf/distro | |
parent | 8cfc3ebe50facb7e34e778f3e264b26cfae20a04 (diff) | |
download | openembedded-core-d2ba6d58e77430cceeca9db61fdb06882a92e1e7.tar.gz |
cve-extra-exclusions.inc: Clean up merged CPE updates
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/conf/distro')
-rw-r--r-- | meta/conf/distro/include/cve-extra-exclusions.inc | 15 |
1 files changed, 0 insertions, 15 deletions
diff --git a/meta/conf/distro/include/cve-extra-exclusions.inc b/meta/conf/distro/include/cve-extra-exclusions.inc index b2816c3dd5..cf07acce1d 100644 --- a/meta/conf/distro/include/cve-extra-exclusions.inc +++ b/meta/conf/distro/include/cve-extra-exclusions.inc @@ -53,21 +53,6 @@ CVE_CHECK_WHITELIST += "CVE-2020-29509 CVE-2020-29511" # so from 1.17 onwards. Reported to the database for update by RP 2021/5/9. Update accepted 2021/5/10. #CVE_CHECK_WHITELIST += "CVE-2000-0803" -# grub:grub-efi:grub-native https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-14865 -# Looks like grub-set-bootflag is patched in by Fedora/RHEL: -# https://src.fedoraproject.org/rpms/grub2/blob/498ea7003b4dd8079fc075fad7e19e0b190d0f97/f/0133-Add-grub-set-bootflag-utility.patch -# Does not exist in upstream grub2: -# https://git.savannah.gnu.org/cgit/grub.git/tree/util -# Reported to the database for update by RP 2021/5/9 Update accepted 2021/5/12 -#CVE_CHECK_WHITELIST += "CVE-2019-14865" - -# tar https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-4476 * -# https://bugzilla.redhat.com/show_bug.cgi?id=280961 - issue affects paxutils included in tar -# http://cvs.savannah.gnu.org/viewvc/paxutils/paxutils/paxlib/names.c?r1=1.2&r2=1.4 was the fix -# included in tar 1.19 and later -# CPE update sent, may or may not exclude for us -#CVE_CHECK_WHITELIST += "CVE-2007-4476" - #### Upstream still working on #### |