bluez5: correct CVE status of ignored CVEs

Rewrite of CVE_CHECK_IGNORE to CVE_STATUS contained copy+paste problem changing CVE numbers. CVE-2020-12352 -> CVE-2022-3563 CVE-2020-24490 -> CVE-2022-3637 CVE-2020-12352 is now for kernel only in NVD BD, so remove it. CVE-2020-24490 is corrected in this commit. (From OE-Core rev: 150f81b764ccf1abfc69bd573d1fb997a6115884) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Peter Marko <peter.marko@siemens.com> 2023-07-31 09:02:32 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2023-07-31 14:48:59 +0100
commit: 4ddeb8ee8baf964dddf9cf9085d78aa0bf7b28eb (patch)
tree: 2899f5c703af91d654d6c1e94cbcfcb63471be04
parent: 9e7036f3a71183e0a3e8076f6a5445783a3f8129 (diff)
download: poky-4ddeb8ee8baf964dddf9cf9085d78aa0bf7b28eb.tar.gz
1 files changed, 1 insertions, 2 deletions
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.68.bb b/meta/recipes-connectivity/bluez5/bluez5_5.68.bb
index f8405ed091..7c7ad75ed8 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.68.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.68.bb
@@ -2,8 +2,7 @@ require bluez5.inc
 SRC_URI[sha256sum] = "fc505e6445cb579a55cacee6821fe70d633921522043d322b696de0a175ff933"
-CVE_STATUS[CVE-2022-3563] = "cpe-incorrect: This issues have kernel fixes rather than bluez fixes"
+CVE_STATUS[CVE-2020-24490] = "cpe-incorrect: This issue has kernel fixes rather than bluez fixes"
-CVE_STATUS[CVE-2022-3637] = "cpe-incorrect: This issues have kernel fixes rather than bluez fixes"
 # noinst programs in Makefile.tools that are conditional on READLINE
 # support
author	Peter Marko <peter.marko@siemens.com>	2023-07-31 09:02:32 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-07-31 14:48:59 +0100
commit	4ddeb8ee8baf964dddf9cf9085d78aa0bf7b28eb (patch)
tree	2899f5c703af91d654d6c1e94cbcfcb63471be04
parent	9e7036f3a71183e0a3e8076f6a5445783a3f8129 (diff)
download	poky-4ddeb8ee8baf964dddf9cf9085d78aa0bf7b28eb.tar.gz

diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.68.bb b/meta/recipes-connectivity/bluez5/bluez5_5.68.bb index f8405ed091..7c7ad75ed8 100644 --- a/meta/recipes-connectivity/bluez5/bluez5_5.68.bb +++ b/meta/recipes-connectivity/bluez5/bluez5_5.68.bb
@@ -2,8 +2,7 @@ require bluez5.inc
2		2
3	SRC_URI[sha256sum] = "fc505e6445cb579a55cacee6821fe70d633921522043d322b696de0a175ff933"	3	SRC_URI[sha256sum] = "fc505e6445cb579a55cacee6821fe70d633921522043d322b696de0a175ff933"
4		4
5	CVE_STATUS[CVE-2022-3563] = "cpe-incorrect: This issues have kernel fixes rather than bluez fixes"	5	CVE_STATUS[CVE-2020-24490] = "cpe-incorrect: This issue has kernel fixes rather than bluez fixes"
6	CVE_STATUS[CVE-2022-3637] = "cpe-incorrect: This issues have kernel fixes rather than bluez fixes"
7		6
8	# noinst programs in Makefile.tools that are conditional on READLINE	7	# noinst programs in Makefile.tools that are conditional on READLINE
9	# support	8	# support