summaryrefslogtreecommitdiffstats
path: root/meta/conf/layer.conf
diff options
context:
space:
mode:
authorRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-06 07:12:32 -1000
committerRichard Purdie <richard.purdie@linuxfoundation.org>2021-06-03 16:30:55 +0100
commit7e3dac47e093c0c1aaac7252885ae9bd9a13991b (patch)
treeb82abf5e827a321d47218015f5efe155b56f2bb2 /meta/conf/layer.conf
parent039c303bef8f7886f4b90ab91cb9ae9915719393 (diff)
downloadpoky-7e3dac47e093c0c1aaac7252885ae9bd9a13991b.tar.gz
cve-extra-exclusions.inc: add exclusion list for intractable CVE's
The preferred methods for CVE resolution are: 1. Version upgrades where possible 2. Patches where not possible 3. Database updates where version info is incorrect 4. Exclusion from checking where it is determined that the CVE does not apply to our environment In some cases none of these methods are possible. For example the CVE may be decades old with no apparent resolution, and with broken links that make further research impractical. Some CVEs are vauge with no specific action the project can take too. This patch creates a mechanism for users to remove this type of CVE from the cve-check results via an optional include file. Based on an initial patch from Steve Sakoman <steve@sakoman.com> but extended heavily by RP. (From OE-Core rev: c93d541a84ce4f9ed52b7aee0a59857957ea0380) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit cf282ae03db3f09df42dcd110d7086c2d854642c) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/conf/layer.conf')
0 files changed, 0 insertions, 0 deletions