diff options
author | Steve Sakoman <steve@sakoman.com> | 2023-10-24 06:17:27 -1000 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2023-11-01 05:01:25 -1000 |
commit | 6f022adb5c7e3588812d20da5b91832496bbfe2b (patch) | |
tree | e283f9c16834576bf5d36fba69716d5b3de95cd9 | |
parent | 59077aa77b17ca6fdcc4e66d9d8b0c18dc89ecce (diff) | |
download | poky-6f022adb5c7e3588812d20da5b91832496bbfe2b.tar.gz |
cve-exclusion_5.10.inc: update for 5.10.197
(From OE-Core rev: effa2f7a7424e0f25eaf3680326164e859378332)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_5.10.inc | 123 |
1 files changed, 100 insertions, 23 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_5.10.inc b/meta/recipes-kernel/linux/cve-exclusion_5.10.inc index 2f58117d6f..7b4f68c428 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_5.10.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_5.10.inc | |||
@@ -1,9 +1,9 @@ | |||
1 | 1 | ||
2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
3 | # Generated at 2023-09-23 10:42:09.595192 for version 5.10.188 | 3 | # Generated at 2023-10-24 06:17:08.900468 for version 5.10.197 |
4 | 4 | ||
5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
6 | this_version = "5.10.188" | 6 | this_version = "5.10.197" |
7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
@@ -4834,7 +4834,8 @@ CVE_CHECK_IGNORE += "CVE-2020-27194" | |||
4834 | # fixed-version: Fixed after version 5.6rc4 | 4834 | # fixed-version: Fixed after version 5.6rc4 |
4835 | CVE_CHECK_IGNORE += "CVE-2020-2732" | 4835 | CVE_CHECK_IGNORE += "CVE-2020-2732" |
4836 | 4836 | ||
4837 | # CVE-2020-27418 has no known resolution | 4837 | # fixed-version: Fixed after version 5.6rc5 |
4838 | CVE_CHECK_IGNORE += "CVE-2020-27418" | ||
4838 | 4839 | ||
4839 | # fixed-version: Fixed after version 5.10rc1 | 4840 | # fixed-version: Fixed after version 5.10rc1 |
4840 | CVE_CHECK_IGNORE += "CVE-2020-27673" | 4841 | CVE_CHECK_IGNORE += "CVE-2020-27673" |
@@ -4976,6 +4977,9 @@ CVE_CHECK_IGNORE += "CVE-2020-36691" | |||
4976 | # fixed-version: Fixed after version 5.10 | 4977 | # fixed-version: Fixed after version 5.10 |
4977 | CVE_CHECK_IGNORE += "CVE-2020-36694" | 4978 | CVE_CHECK_IGNORE += "CVE-2020-36694" |
4978 | 4979 | ||
4980 | # fixed-version: Fixed after version 5.9rc1 | ||
4981 | CVE_CHECK_IGNORE += "CVE-2020-36766" | ||
4982 | |||
4979 | # cpe-stable-backport: Backported in 5.10.61 | 4983 | # cpe-stable-backport: Backported in 5.10.61 |
4980 | CVE_CHECK_IGNORE += "CVE-2020-3702" | 4984 | CVE_CHECK_IGNORE += "CVE-2020-3702" |
4981 | 4985 | ||
@@ -6424,7 +6428,8 @@ CVE_CHECK_IGNORE += "CVE-2022-40768" | |||
6424 | # cpe-stable-backport: Backported in 5.10.142 | 6428 | # cpe-stable-backport: Backported in 5.10.142 |
6425 | CVE_CHECK_IGNORE += "CVE-2022-4095" | 6429 | CVE_CHECK_IGNORE += "CVE-2022-4095" |
6426 | 6430 | ||
6427 | # CVE-2022-40982 needs backporting (fixed from 5.10.189) | 6431 | # cpe-stable-backport: Backported in 5.10.189 |
6432 | CVE_CHECK_IGNORE += "CVE-2022-40982" | ||
6428 | 6433 | ||
6429 | # cpe-stable-backport: Backported in 5.10.163 | 6434 | # cpe-stable-backport: Backported in 5.10.163 |
6430 | CVE_CHECK_IGNORE += "CVE-2022-41218" | 6435 | CVE_CHECK_IGNORE += "CVE-2022-41218" |
@@ -6683,12 +6688,14 @@ CVE_CHECK_IGNORE += "CVE-2023-1192" | |||
6683 | 6688 | ||
6684 | # CVE-2023-1193 has no known resolution | 6689 | # CVE-2023-1193 has no known resolution |
6685 | 6690 | ||
6686 | # CVE-2023-1194 has no known resolution | 6691 | # fixed-version: only affects 5.15rc1 onwards |
6692 | CVE_CHECK_IGNORE += "CVE-2023-1194" | ||
6687 | 6693 | ||
6688 | # fixed-version: only affects 5.16rc1 onwards | 6694 | # fixed-version: only affects 5.16rc1 onwards |
6689 | CVE_CHECK_IGNORE += "CVE-2023-1195" | 6695 | CVE_CHECK_IGNORE += "CVE-2023-1195" |
6690 | 6696 | ||
6691 | # CVE-2023-1206 needs backporting (fixed from 5.10.190) | 6697 | # cpe-stable-backport: Backported in 5.10.190 |
6698 | CVE_CHECK_IGNORE += "CVE-2023-1206" | ||
6692 | 6699 | ||
6693 | # cpe-stable-backport: Backported in 5.10.110 | 6700 | # cpe-stable-backport: Backported in 5.10.110 |
6694 | CVE_CHECK_IGNORE += "CVE-2023-1249" | 6701 | CVE_CHECK_IGNORE += "CVE-2023-1249" |
@@ -6768,9 +6775,11 @@ CVE_CHECK_IGNORE += "CVE-2023-2008" | |||
6768 | # fixed-version: only affects 5.12rc1 onwards | 6775 | # fixed-version: only affects 5.12rc1 onwards |
6769 | CVE_CHECK_IGNORE += "CVE-2023-2019" | 6776 | CVE_CHECK_IGNORE += "CVE-2023-2019" |
6770 | 6777 | ||
6771 | # CVE-2023-20569 needs backporting (fixed from 5.10.189) | 6778 | # cpe-stable-backport: Backported in 5.10.189 |
6779 | CVE_CHECK_IGNORE += "CVE-2023-20569" | ||
6772 | 6780 | ||
6773 | # CVE-2023-20588 needs backporting (fixed from 5.10.190) | 6781 | # cpe-stable-backport: Backported in 5.10.190 |
6782 | CVE_CHECK_IGNORE += "CVE-2023-20588" | ||
6774 | 6783 | ||
6775 | # cpe-stable-backport: Backported in 5.10.187 | 6784 | # cpe-stable-backport: Backported in 5.10.187 |
6776 | CVE_CHECK_IGNORE += "CVE-2023-20593" | 6785 | CVE_CHECK_IGNORE += "CVE-2023-20593" |
@@ -6973,7 +6982,7 @@ CVE_CHECK_IGNORE += "CVE-2023-3106" | |||
6973 | 6982 | ||
6974 | # CVE-2023-31084 needs backporting (fixed from 6.4rc3) | 6983 | # CVE-2023-31084 needs backporting (fixed from 6.4rc3) |
6975 | 6984 | ||
6976 | # CVE-2023-31085 has no known resolution | 6985 | # CVE-2023-31085 needs backporting (fixed from 5.10.198) |
6977 | 6986 | ||
6978 | # cpe-stable-backport: Backported in 5.10.184 | 6987 | # cpe-stable-backport: Backported in 5.10.184 |
6979 | CVE_CHECK_IGNORE += "CVE-2023-3111" | 6988 | CVE_CHECK_IGNORE += "CVE-2023-3111" |
@@ -7089,6 +7098,8 @@ CVE_CHECK_IGNORE += "CVE-2023-34256" | |||
7089 | # fixed-version: only affects 6.1 onwards | 7098 | # fixed-version: only affects 6.1 onwards |
7090 | CVE_CHECK_IGNORE += "CVE-2023-34319" | 7099 | CVE_CHECK_IGNORE += "CVE-2023-34319" |
7091 | 7100 | ||
7101 | # CVE-2023-34324 needs backporting (fixed from 5.10.198) | ||
7102 | |||
7092 | # fixed-version: only affects 5.15rc1 onwards | 7103 | # fixed-version: only affects 5.15rc1 onwards |
7093 | CVE_CHECK_IGNORE += "CVE-2023-3439" | 7104 | CVE_CHECK_IGNORE += "CVE-2023-3439" |
7094 | 7105 | ||
@@ -7136,7 +7147,8 @@ CVE_CHECK_IGNORE += "CVE-2023-37453" | |||
7136 | 7147 | ||
7137 | # CVE-2023-37454 has no known resolution | 7148 | # CVE-2023-37454 has no known resolution |
7138 | 7149 | ||
7139 | # CVE-2023-3772 needs backporting (fixed from 5.10.192) | 7150 | # cpe-stable-backport: Backported in 5.10.192 |
7151 | CVE_CHECK_IGNORE += "CVE-2023-3772" | ||
7140 | 7152 | ||
7141 | # fixed-version: only affects 5.17rc1 onwards | 7153 | # fixed-version: only affects 5.17rc1 onwards |
7142 | CVE_CHECK_IGNORE += "CVE-2023-3773" | 7154 | CVE_CHECK_IGNORE += "CVE-2023-3773" |
@@ -7186,16 +7198,35 @@ CVE_CHECK_IGNORE += "CVE-2023-3866" | |||
7186 | # fixed-version: only affects 5.15rc1 onwards | 7198 | # fixed-version: only affects 5.15rc1 onwards |
7187 | CVE_CHECK_IGNORE += "CVE-2023-3867" | 7199 | CVE_CHECK_IGNORE += "CVE-2023-3867" |
7188 | 7200 | ||
7201 | # cpe-stable-backport: Backported in 5.10.195 | ||
7202 | CVE_CHECK_IGNORE += "CVE-2023-39189" | ||
7203 | |||
7204 | # CVE-2023-39191 needs backporting (fixed from 6.3rc1) | ||
7205 | |||
7206 | # cpe-stable-backport: Backported in 5.10.195 | ||
7207 | CVE_CHECK_IGNORE += "CVE-2023-39192" | ||
7208 | |||
7209 | # cpe-stable-backport: Backported in 5.10.195 | ||
7210 | CVE_CHECK_IGNORE += "CVE-2023-39193" | ||
7211 | |||
7212 | # cpe-stable-backport: Backported in 5.10.192 | ||
7213 | CVE_CHECK_IGNORE += "CVE-2023-39194" | ||
7214 | |||
7189 | # cpe-stable-backport: Backported in 5.10.188 | 7215 | # cpe-stable-backport: Backported in 5.10.188 |
7190 | CVE_CHECK_IGNORE += "CVE-2023-4004" | 7216 | CVE_CHECK_IGNORE += "CVE-2023-4004" |
7191 | 7217 | ||
7192 | # CVE-2023-4010 has no known resolution | 7218 | # CVE-2023-4010 has no known resolution |
7193 | 7219 | ||
7194 | # CVE-2023-4015 needs backporting (fixed from 5.10.190) | 7220 | # cpe-stable-backport: Backported in 5.10.190 |
7221 | CVE_CHECK_IGNORE += "CVE-2023-4015" | ||
7195 | 7222 | ||
7196 | # CVE-2023-40283 needs backporting (fixed from 5.10.190) | 7223 | # cpe-stable-backport: Backported in 5.10.190 |
7224 | CVE_CHECK_IGNORE += "CVE-2023-40283" | ||
7197 | 7225 | ||
7198 | # CVE-2023-4128 needs backporting (fixed from 5.10.190) | 7226 | # CVE-2023-40791 needs backporting (fixed from 6.5rc6) |
7227 | |||
7228 | # cpe-stable-backport: Backported in 5.10.190 | ||
7229 | CVE_CHECK_IGNORE += "CVE-2023-4128" | ||
7199 | 7230 | ||
7200 | # cpe-stable-backport: Backported in 5.10.188 | 7231 | # cpe-stable-backport: Backported in 5.10.188 |
7201 | CVE_CHECK_IGNORE += "CVE-2023-4132" | 7232 | CVE_CHECK_IGNORE += "CVE-2023-4132" |
@@ -7204,7 +7235,8 @@ CVE_CHECK_IGNORE += "CVE-2023-4132" | |||
7204 | 7235 | ||
7205 | # CVE-2023-4134 needs backporting (fixed from 6.5rc1) | 7236 | # CVE-2023-4134 needs backporting (fixed from 6.5rc1) |
7206 | 7237 | ||
7207 | # CVE-2023-4147 needs backporting (fixed from 5.10.190) | 7238 | # cpe-stable-backport: Backported in 5.10.190 |
7239 | CVE_CHECK_IGNORE += "CVE-2023-4147" | ||
7208 | 7240 | ||
7209 | # fixed-version: only affects 5.11rc1 onwards | 7241 | # fixed-version: only affects 5.11rc1 onwards |
7210 | CVE_CHECK_IGNORE += "CVE-2023-4155" | 7242 | CVE_CHECK_IGNORE += "CVE-2023-4155" |
@@ -7212,15 +7244,33 @@ CVE_CHECK_IGNORE += "CVE-2023-4155" | |||
7212 | # fixed-version: only affects 6.3rc1 onwards | 7244 | # fixed-version: only affects 6.3rc1 onwards |
7213 | CVE_CHECK_IGNORE += "CVE-2023-4194" | 7245 | CVE_CHECK_IGNORE += "CVE-2023-4194" |
7214 | 7246 | ||
7215 | # CVE-2023-4206 needs backporting (fixed from 5.10.190) | 7247 | # cpe-stable-backport: Backported in 5.10.190 |
7248 | CVE_CHECK_IGNORE += "CVE-2023-4206" | ||
7249 | |||
7250 | # cpe-stable-backport: Backported in 5.10.190 | ||
7251 | CVE_CHECK_IGNORE += "CVE-2023-4207" | ||
7252 | |||
7253 | # cpe-stable-backport: Backported in 5.10.190 | ||
7254 | CVE_CHECK_IGNORE += "CVE-2023-4208" | ||
7255 | |||
7256 | # CVE-2023-4244 needs backporting (fixed from 5.10.198) | ||
7257 | |||
7258 | # cpe-stable-backport: Backported in 5.10.190 | ||
7259 | CVE_CHECK_IGNORE += "CVE-2023-4273" | ||
7216 | 7260 | ||
7217 | # CVE-2023-4207 needs backporting (fixed from 5.10.190) | 7261 | # cpe-stable-backport: Backported in 5.10.195 |
7262 | CVE_CHECK_IGNORE += "CVE-2023-42752" | ||
7218 | 7263 | ||
7219 | # CVE-2023-4208 needs backporting (fixed from 5.10.190) | 7264 | # cpe-stable-backport: Backported in 5.10.195 |
7265 | CVE_CHECK_IGNORE += "CVE-2023-42753" | ||
7220 | 7266 | ||
7221 | # CVE-2023-4244 needs backporting (fixed from 6.5rc7) | 7267 | # CVE-2023-42754 needs backporting (fixed from 5.10.198) |
7222 | 7268 | ||
7223 | # CVE-2023-4273 needs backporting (fixed from 5.10.190) | 7269 | # cpe-stable-backport: Backported in 5.10.197 |
7270 | CVE_CHECK_IGNORE += "CVE-2023-42755" | ||
7271 | |||
7272 | # fixed-version: only affects 6.4rc6 onwards | ||
7273 | CVE_CHECK_IGNORE += "CVE-2023-42756" | ||
7224 | 7274 | ||
7225 | # cpe-stable-backport: Backported in 5.10.121 | 7275 | # cpe-stable-backport: Backported in 5.10.121 |
7226 | CVE_CHECK_IGNORE += "CVE-2023-4385" | 7276 | CVE_CHECK_IGNORE += "CVE-2023-4385" |
@@ -7234,22 +7284,49 @@ CVE_CHECK_IGNORE += "CVE-2023-4389" | |||
7234 | # fixed-version: only affects 5.16rc1 onwards | 7284 | # fixed-version: only affects 5.16rc1 onwards |
7235 | CVE_CHECK_IGNORE += "CVE-2023-4394" | 7285 | CVE_CHECK_IGNORE += "CVE-2023-4394" |
7236 | 7286 | ||
7287 | # fixed-version: only affects 5.11rc1 onwards | ||
7288 | CVE_CHECK_IGNORE += "CVE-2023-44466" | ||
7289 | |||
7237 | # cpe-stable-backport: Backported in 5.10.118 | 7290 | # cpe-stable-backport: Backported in 5.10.118 |
7238 | CVE_CHECK_IGNORE += "CVE-2023-4459" | 7291 | CVE_CHECK_IGNORE += "CVE-2023-4459" |
7239 | 7292 | ||
7240 | # CVE-2023-4563 needs backporting (fixed from 6.5rc6) | 7293 | # CVE-2023-4563 needs backporting (fixed from 5.10.198) |
7241 | 7294 | ||
7242 | # fixed-version: only affects 5.13rc1 onwards | 7295 | # fixed-version: only affects 5.13rc1 onwards |
7243 | CVE_CHECK_IGNORE += "CVE-2023-4569" | 7296 | CVE_CHECK_IGNORE += "CVE-2023-4569" |
7244 | 7297 | ||
7298 | # cpe-stable-backport: Backported in 5.10.173 | ||
7299 | CVE_CHECK_IGNORE += "CVE-2023-45862" | ||
7300 | |||
7301 | # CVE-2023-45863 needs backporting (fixed from 6.3rc1) | ||
7302 | |||
7303 | # cpe-stable-backport: Backported in 5.10.195 | ||
7304 | CVE_CHECK_IGNORE += "CVE-2023-45871" | ||
7305 | |||
7306 | # CVE-2023-45898 needs backporting (fixed from 6.6rc1) | ||
7307 | |||
7308 | # CVE-2023-4610 has no known resolution | ||
7309 | |||
7245 | # fixed-version: only affects 6.4rc1 onwards | 7310 | # fixed-version: only affects 6.4rc1 onwards |
7246 | CVE_CHECK_IGNORE += "CVE-2023-4611" | 7311 | CVE_CHECK_IGNORE += "CVE-2023-4611" |
7247 | 7312 | ||
7248 | # CVE-2023-4622 needs backporting (fixed from 6.5rc1) | 7313 | # CVE-2023-4622 needs backporting (fixed from 6.5rc1) |
7249 | 7314 | ||
7250 | # CVE-2023-4623 needs backporting (fixed from 6.6rc1) | 7315 | # cpe-stable-backport: Backported in 5.10.195 |
7316 | CVE_CHECK_IGNORE += "CVE-2023-4623" | ||
7317 | |||
7318 | # cpe-stable-backport: Backported in 5.10.53 | ||
7319 | CVE_CHECK_IGNORE += "CVE-2023-4732" | ||
7320 | |||
7321 | # CVE-2023-4881 needs backporting (fixed from 5.10.198) | ||
7251 | 7322 | ||
7252 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) | 7323 | # cpe-stable-backport: Backported in 5.10.195 |
7324 | CVE_CHECK_IGNORE += "CVE-2023-4921" | ||
7253 | 7325 | ||
7254 | # CVE-2023-4921 needs backporting (fixed from 6.6rc1) | 7326 | # CVE-2023-5158 has no known resolution |
7327 | |||
7328 | # CVE-2023-5197 needs backporting (fixed from 5.10.198) | ||
7329 | |||
7330 | # fixed-version: only affects 6.1rc1 onwards | ||
7331 | CVE_CHECK_IGNORE += "CVE-2023-5345" | ||
7255 | 7332 | ||