linux: review some historic CVE_STATUS

Do manual review and disposition these CVEs as appropriate. (From OE-Core rev: a8db0735e228465715cf885d3b889fddfd68efc6) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Ross Burton <ross.burton@arm.com> 2023-09-04 22:33:22 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2023-09-06 17:52:45 +0100
commit: 0dd973297d9c260e7bb82a09159a5056f1de87de (patch)
tree: 30577e7ffd538ab6cb657339fa3162de40d7fe05 /meta/recipes-kernel/linux/cve-exclusion.inc
parent: 733afeffd19a2ae3af34abe95e514cb4b99cd366 (diff)
download: poky-0dd973297d9c260e7bb82a09159a5056f1de87de.tar.gz
1 files changed, 12 insertions, 0 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc
index 42f1c195c9..28f9c8ff2b 100644
--- a/meta/recipes-kernel/linux/cve-exclusion.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -1,3 +1,15 @@
+CVE_STATUS[CVE-2014-2648] = "cpe-incorrect: not Linux"
+CVE_STATUS[CVE-2016-0774] = "ignored: result of incomplete backport"
+CVE_STATUS[CVE-2016-3695] = "not-applicable-platform: specific to RHEL with securelevel patches"
+CVE_STATUS[CVE-2016-3699] = "not-applicable-platform: specific to RHEL with securelevel patches"
+CVE_STATUS[CVE-2017-6264] = "not-applicable-platform: Android specific"
+CVE_STATUS[CVE-2017-1000377] = "not-applicable-platform: GRSecurity specific"
 CVE_STATUS[CVE-2018-6559] = "not-applicable-platform: Issue only affects Ubuntu"
 CVE_STATUS[CVE-2020-11935] = "not-applicable-config: Issue only affects aufs, which is not in linux-yocto"
author	Ross Burton <ross.burton@arm.com>	2023-09-04 22:33:22 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-09-06 17:52:45 +0100
commit	0dd973297d9c260e7bb82a09159a5056f1de87de (patch)
tree	30577e7ffd538ab6cb657339fa3162de40d7fe05 /meta/recipes-kernel/linux/cve-exclusion.inc
parent	733afeffd19a2ae3af34abe95e514cb4b99cd366 (diff)
download	poky-0dd973297d9c260e7bb82a09159a5056f1de87de.tar.gz

diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc index 42f1c195c9..28f9c8ff2b 100644 --- a/meta/recipes-kernel/linux/cve-exclusion.inc +++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -1,3 +1,15 @@
		1	CVE_STATUS[CVE-2014-2648] = "cpe-incorrect: not Linux"
		2
		3	CVE_STATUS[CVE-2016-0774] = "ignored: result of incomplete backport"
		4
		5	CVE_STATUS[CVE-2016-3695] = "not-applicable-platform: specific to RHEL with securelevel patches"
		6
		7	CVE_STATUS[CVE-2016-3699] = "not-applicable-platform: specific to RHEL with securelevel patches"
		8
		9	CVE_STATUS[CVE-2017-6264] = "not-applicable-platform: Android specific"
		10
		11	CVE_STATUS[CVE-2017-1000377] = "not-applicable-platform: GRSecurity specific"
		12
1	CVE_STATUS[CVE-2018-6559] = "not-applicable-platform: Issue only affects Ubuntu"	13	CVE_STATUS[CVE-2018-6559] = "not-applicable-platform: Issue only affects Ubuntu"
2		14
3	CVE_STATUS[CVE-2020-11935] = "not-applicable-config: Issue only affects aufs, which is not in linux-yocto"	15	CVE_STATUS[CVE-2020-11935] = "not-applicable-config: Issue only affects aufs, which is not in linux-yocto"