qemu: Exclude CVE-2007-0998 from cve-check

The CVE applies to the built-in VNC server but we don't enable this by default. (From OE-Core rev: d62b9974a5f3a0f462434ce2763c28a4b4bbcfc6) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-10 12:42:25 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-11 11:54:26 +0100
commit: ae3527372fac5cf1bfe823f26a064adad871ffa5 (patch)
tree: c7c6aebdce40a2a01a764c6e64791e1e2409e7e2 /meta/recipes-devtools/qemu/qemu.inc
parent: 458f5d026e8b67ec5b1bef3a6085398bc329f973 (diff)
download: poky-ae3527372fac5cf1bfe823f26a064adad871ffa5.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index e210f38cfe..32be057d0e 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -68,6 +68,10 @@ SRC_URI_append_class-nativesdk = " file://cross.patch"
 # Applies against virglrender < 0.6.0 and not qemu itself
 CVE_CHECK_WHITELIST += "CVE-2017-5957"
+# The VNC server can expose host files uder some circumstances. We don't
+# enable it by default.
+CVE_CHECK_WHITELIST += "CVE-2007-0998"
 COMPATIBLE_HOST_mipsarchn32 = "null"
 COMPATIBLE_HOST_mipsarchn64 = "null"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-10 12:42:25 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-11 11:54:26 +0100
commit	ae3527372fac5cf1bfe823f26a064adad871ffa5 (patch)
tree	c7c6aebdce40a2a01a764c6e64791e1e2409e7e2 /meta/recipes-devtools/qemu/qemu.inc
parent	458f5d026e8b67ec5b1bef3a6085398bc329f973 (diff)
download	poky-ae3527372fac5cf1bfe823f26a064adad871ffa5.tar.gz

diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc index e210f38cfe..32be057d0e 100644 --- a/meta/recipes-devtools/qemu/qemu.inc +++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -68,6 +68,10 @@ SRC_URI_append_class-nativesdk = " file://cross.patch"
68	# Applies against virglrender < 0.6.0 and not qemu itself	68	# Applies against virglrender < 0.6.0 and not qemu itself
69	CVE_CHECK_WHITELIST += "CVE-2017-5957"	69	CVE_CHECK_WHITELIST += "CVE-2017-5957"
70		70
		71	# The VNC server can expose host files uder some circumstances. We don't
		72	# enable it by default.
		73	CVE_CHECK_WHITELIST += "CVE-2007-0998"
		74
71	COMPATIBLE_HOST_mipsarchn32 = "null"	75	COMPATIBLE_HOST_mipsarchn32 = "null"
72	COMPATIBLE_HOST_mipsarchn64 = "null"	76	COMPATIBLE_HOST_mipsarchn64 = "null"
73		77