diff options
author | sana kazi <sanakazisk19@gmail.com> | 2021-12-17 12:26:29 +0530 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-12-30 16:59:16 +0000 |
commit | bd0708041517517021110a5dd328dede123c1768 (patch) | |
tree | 74182f21cd415d7875e80ef1637001a3c54643ba /meta/recipes-connectivity/openssh | |
parent | f4a6761f471fd56a1bc1927c4bc0115aefac0d58 (diff) | |
download | poky-bd0708041517517021110a5dd328dede123c1768.tar.gz |
openssh: Whitelist CVE-2016-20012
Whitelist CVE-2016-20012 as the upstream OpenSSH developers
see this as an important security feature and do not intend to
'fix' it.
Link: https://security-tracker.debian.org/tracker/CVE-2016-20012
https://ubuntu.com/security/CVE-2016-20012
(From OE-Core rev: 79c677e994399611819e1e382b3e1b0be16eb6e1)
Signed-off-by: Sana Kazi <Sana.Kazi@kpit.com>
Signed-off-by: Sana Kazi <sanakazisk19@gmail.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-connectivity/openssh')
-rw-r--r-- | meta/recipes-connectivity/openssh/openssh_8.2p1.bb | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb index e903ec487d..ddc9ed0b32 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb | |||
@@ -51,6 +51,15 @@ CVE_CHECK_WHITELIST += "CVE-2020-15778" | |||
51 | # https://www.securityfocus.com/bid/30794 | 51 | # https://www.securityfocus.com/bid/30794 |
52 | CVE_CHECK_WHITELIST += "CVE-2008-3844" | 52 | CVE_CHECK_WHITELIST += "CVE-2008-3844" |
53 | 53 | ||
54 | # openssh-ssh1 is provided for compatibility with old devices that | ||
55 | # cannot be upgraded to modern protocols. Thus they may not provide security | ||
56 | # support for this package because doing so would prevent access to equipment. | ||
57 | # The upstream OpenSSH developers see this as an important | ||
58 | # security feature and do not intend to 'fix' it. | ||
59 | # https://security-tracker.debian.org/tracker/CVE-2016-20012 | ||
60 | # https://ubuntu.com/security/CVE-2016-20012 | ||
61 | CVE_CHECK_WHITELIST += "CVE-2016-20012" | ||
62 | |||
54 | PAM_SRC_URI = "file://sshd" | 63 | PAM_SRC_URI = "file://sshd" |
55 | 64 | ||
56 | inherit manpages useradd update-rc.d update-alternatives systemd | 65 | inherit manpages useradd update-rc.d update-alternatives systemd |