qemu: Set CVE_STATUS for wrong CVEs

All are already fixed in 8.2.1, NVD was informed that cpes are wrong. (From OE-Core rev: a975960baffd341cd07cb093bef107c031c9b956) Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Simone Weiß <simone.p.weiss@posteo.com> 2024-02-18 18:42:59 +0000
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2024-02-19 11:34:33 +0000
commit: 378bc2f8e3ac393d89a6d2e52094478fb3879ef7 (patch)
tree: ad416c6b747e4c5981d7ca7f9d306e90885e68d8 /meta/recipes-devtools/qemu
parent: f25849c7689a76fda185dda6b81d997f9a5d7067 (diff)
download: poky-378bc2f8e3ac393d89a6d2e52094478fb3879ef7.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index 5d953e5ef5..d16d5e76c8 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -68,6 +68,12 @@ CVE_STATUS[CVE-2023-0664] = "not-applicable-platform: Issue only applies on Wind
 # As per https://bugzilla.redhat.com/show_bug.cgi?id=2203387
 CVE_STATUS[CVE-2023-2680] = "not-applicable-platform: RHEL specific issue."
+CVE_STATUS[CVE-2023-3019] = "cpe-incorrect: Applies only against versions before 8.2.0"
+CVE_STATUS[CVE-2023-5088] = "cpe-incorrect: Applies only against version 8.2.0 and earlier"
+CVE_STATUS[CVE-2023-6693] = "cpe-incorrect: Applies only against version 8.2.0 and earlier"
 COMPATIBLE_HOST:mipsarchn32 = "null"
 COMPATIBLE_HOST:mipsarchn64 = "null"
 COMPATIBLE_HOST:riscv32 = "null"
author	Simone Weiß <simone.p.weiss@posteo.com>	2024-02-18 18:42:59 +0000
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2024-02-19 11:34:33 +0000
commit	378bc2f8e3ac393d89a6d2e52094478fb3879ef7 (patch)
tree	ad416c6b747e4c5981d7ca7f9d306e90885e68d8 /meta/recipes-devtools/qemu
parent	f25849c7689a76fda185dda6b81d997f9a5d7067 (diff)
download	poky-378bc2f8e3ac393d89a6d2e52094478fb3879ef7.tar.gz