cve-extra-exclusions: ignore inapplicable linux-yocto CVEs - linux/poky.git

diff options

author	Geoffrey GIRY <geoffrey.giry@smile.fr>	2023-04-05 12:34:54 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-04-05 17:26:11 +0100
commit	b8bfd3b01b660d0536a272fafa0157aac2aaab0b (patch)
tree	7a4516ff900d89fbb0f6bc974595e0271623f7d4 /meta/recipes-devtools/qemu/qemu.inc
parent	0e5bdb623b0f3ca4d71eba56b54915905acbc7d9 (diff)
download	poky-b8bfd3b01b660d0536a272fafa0157aac2aaab0b.tar.gz

cve-extra-exclusions: ignore inapplicable linux-yocto CVEs

Multiple CVEs are patched in kernel but appear as active because the NVD database is not up to date. In common file cve-extra-exclusion.inc, CVEs are ignored if and only if all versions of kernel used are patched. In cve-exclusion_6.1.inc, only ignore CVEs that are patched in v6.1, and not patched in v5.15. Recipes of version 6.1 should include this file. Reviewed-by: Yoann Congal <yoann.congal@smile.fr> (From OE-Core rev: 5feb065f1b1aaf218f71cc9d31a9251b139b9442) Signed-off-by: Geoffrey GIRY <geoffrey.giry@smile.fr> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-devtools/qemu/qemu.inc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: