grub2: Add CVE whitelist entries for issues fixed in 2.06

We're using a pre-release version of 2.06 so these issues are fixed but continue to show up in the checks since it is pre-2.06 and the CPE entries are "before but excluding 2.06". Adding these will clean up CVE reports until the 2.06 release comes out. (From OE-Core rev: 2467ab1554bee3a431636046735e8e369e865bc6) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-09 18:44:27 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-11 11:54:26 +0100
commit: 1c926417e1ac08d10819e3eae32727a4654f3cab (patch)
tree: 7fa9b9d17fd2627978288e732fe5dd0f185fb01d /meta/recipes-bsp/grub
parent: 4638576d10e8a83dd7c35dc71c18c91af3eecc53 (diff)
download: poky-1c926417e1ac08d10819e3eae32727a4654f3cab.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/meta/recipes-bsp/grub/grub2.inc b/meta/recipes-bsp/grub/grub2.inc
index 6de683ee1c..f0fa86b182 100644
--- a/meta/recipes-bsp/grub/grub2.inc
+++ b/meta/recipes-bsp/grub/grub2.inc
@@ -27,6 +27,13 @@ SRC_URI[sha256sum] = "2c87f1f21e2ab50043e6cd9163c08f1b6c3a6171556bf23ff9ed65b074
 REALPV = "2.06~rc1"
 PV = "2.04+${REALPV}"
+# Fixed in 2.06~rc1, can be removed for 2.06 final
+CVE_CHECK_WHITELIST += "\
+    CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-10713 \
+    CVE-2020-14372 CVE-2020-15705 CVE-2020-15706 CVE-2020-15707 \
+    CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 \
+    CVE-2021-3418 CVE-2021-20225 CVE-2021-20233"
 S = "${WORKDIR}/grub-${REALPV}"
 UPSTREAM_CHECK_URI = "${GNU_MIRROR}/grub"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-09 18:44:27 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-11 11:54:26 +0100
commit	1c926417e1ac08d10819e3eae32727a4654f3cab (patch)
tree	7fa9b9d17fd2627978288e732fe5dd0f185fb01d /meta/recipes-bsp/grub
parent	4638576d10e8a83dd7c35dc71c18c91af3eecc53 (diff)
download	poky-1c926417e1ac08d10819e3eae32727a4654f3cab.tar.gz

diff --git a/meta/recipes-bsp/grub/grub2.inc b/meta/recipes-bsp/grub/grub2.inc index 6de683ee1c..f0fa86b182 100644 --- a/meta/recipes-bsp/grub/grub2.inc +++ b/meta/recipes-bsp/grub/grub2.inc
@@ -27,6 +27,13 @@ SRC_URI[sha256sum] = "2c87f1f21e2ab50043e6cd9163c08f1b6c3a6171556bf23ff9ed65b074
27	REALPV = "2.06~rc1"	27	REALPV = "2.06~rc1"
28	PV = "2.04+${REALPV}"	28	PV = "2.04+${REALPV}"
29		29
		30	# Fixed in 2.06~rc1, can be removed for 2.06 final
		31	CVE_CHECK_WHITELIST += "\
		32	CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-10713 \
		33	CVE-2020-14372 CVE-2020-15705 CVE-2020-15706 CVE-2020-15707 \
		34	CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 \
		35	CVE-2021-3418 CVE-2021-20225 CVE-2021-20233"
		36
30	S = "${WORKDIR}/grub-${REALPV}"	37	S = "${WORKDIR}/grub-${REALPV}"
31		38
32	UPSTREAM_CHECK_URI = "${GNU_MIRROR}/grub"	39	UPSTREAM_CHECK_URI = "${GNU_MIRROR}/grub"