openssh: Exclude CVE-2007-2768 from cve-check

We don't build/use the OPIE PAM module, exclude the CVE from this recipe. (From OE-Core rev: a7aba0f1226411f44f316cdced6b2b47621d1d3f) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-10 16:55:50 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-22 10:01:02 +0100
commit: a82e96f87eacc341fc38169b5d5fcb56619777fd (patch)
tree: 5a35fe584fb98f3f05140a9b61f33d3d691d211b /meta/recipes-connectivity/openssh/openssh_8.5p1.bb
parent: 96b3e8b2599aefa6696313015c5dc82f4012a816 (diff)
download: poky-a82e96f87eacc341fc38169b5d5fcb56619777fd.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
index 6a49cf71cc..41ac303d38 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
@@ -27,6 +27,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
           "
 SRC_URI[sha256sum] = "f52f3f41d429aa9918e38cf200af225ccdd8e66f052da572870c89737646ec25"
+# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
+CVE_CHECK_WHITELIST += "CVE-2007-2768"
 # This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
 # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
 CVE_CHECK_WHITELIST += "CVE-2014-9278"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-10 16:55:50 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-22 10:01:02 +0100
commit	a82e96f87eacc341fc38169b5d5fcb56619777fd (patch)
tree	5a35fe584fb98f3f05140a9b61f33d3d691d211b /meta/recipes-connectivity/openssh/openssh_8.5p1.bb
parent	96b3e8b2599aefa6696313015c5dc82f4012a816 (diff)
download	poky-a82e96f87eacc341fc38169b5d5fcb56619777fd.tar.gz

diff --git a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb index 6a49cf71cc..41ac303d38 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
@@ -27,6 +27,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
27	"	27	"
28	SRC_URI[sha256sum] = "f52f3f41d429aa9918e38cf200af225ccdd8e66f052da572870c89737646ec25"	28	SRC_URI[sha256sum] = "f52f3f41d429aa9918e38cf200af225ccdd8e66f052da572870c89737646ec25"
29		29
		30	# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
		31	CVE_CHECK_WHITELIST += "CVE-2007-2768"
		32
30	# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7	33	# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
31	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded	34	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
32	CVE_CHECK_WHITELIST += "CVE-2014-9278"	35	CVE_CHECK_WHITELIST += "CVE-2014-9278"