diff options
author | Bruce Ashfield <bruce.ashfield@gmail.com> | 2024-02-06 15:53:34 -0500 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2024-02-08 10:59:06 +0000 |
commit | ac5f12517e74b7eaceefd6d43d25b9612db17a02 (patch) | |
tree | f569f4840cb138b22b0a3375a5947823a62b4310 /meta/recipes-kernel/linux/cve-exclusion_6.6.inc | |
parent | 6b052ffde3a23e2c61778c531c9c904d01f018e2 (diff) | |
download | poky-ac5f12517e74b7eaceefd6d43d25b9612db17a02.tar.gz |
linux-yocto/6.6: update CVE exclusions
Data pulled from: https://github.com/nluedtke/linux_kernel_cves
1/1 [
Author: Nicholas Luedtke
Email: nicholas.luedtke@uwalumni.com
Subject: Update 3Feb24
Date: Sat, 3 Feb 2024 00:42:14 -0500
]
(From OE-Core rev: 20ceea5be17b64cbc95d36cc1afd5d41a2517500)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-kernel/linux/cve-exclusion_6.6.inc')
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.6.inc | 70 |
1 files changed, 64 insertions, 6 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.6.inc b/meta/recipes-kernel/linux/cve-exclusion_6.6.inc index 9398434082..f3b3f32736 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.6.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.6.inc | |||
@@ -1,9 +1,9 @@ | |||
1 | 1 | ||
2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
3 | # Generated at 2024-01-25 01:32:27.591716+00:00 for version 6.6.13 | 3 | # Generated at 2024-02-04 13:08:50.287438+00:00 for version 6.6.15 |
4 | 4 | ||
5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
6 | this_version = "6.6.13" | 6 | this_version = "6.6.15" |
7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
@@ -3668,6 +3668,10 @@ CVE_STATUS[CVE-2021-3348] = "fixed-version: Fixed from version 5.11rc6" | |||
3668 | 3668 | ||
3669 | CVE_STATUS[CVE-2021-33624] = "fixed-version: Fixed from version 5.13rc7" | 3669 | CVE_STATUS[CVE-2021-33624] = "fixed-version: Fixed from version 5.13rc7" |
3670 | 3670 | ||
3671 | CVE_STATUS[CVE-2021-33630] = "fixed-version: Fixed from version 5.4rc1" | ||
3672 | |||
3673 | CVE_STATUS[CVE-2021-33631] = "fixed-version: Fixed from version 6.2rc1" | ||
3674 | |||
3671 | CVE_STATUS[CVE-2021-33655] = "fixed-version: Fixed from version 5.19rc6" | 3675 | CVE_STATUS[CVE-2021-33655] = "fixed-version: Fixed from version 5.19rc6" |
3672 | 3676 | ||
3673 | CVE_STATUS[CVE-2021-33656] = "fixed-version: Fixed from version 5.12rc1" | 3677 | CVE_STATUS[CVE-2021-33656] = "fixed-version: Fixed from version 5.12rc1" |
@@ -4420,7 +4424,7 @@ CVE_STATUS[CVE-2022-3636] = "fixed-version: Fixed from version 5.19rc1" | |||
4420 | 4424 | ||
4421 | CVE_STATUS[CVE-2022-3640] = "fixed-version: Fixed from version 6.1rc4" | 4425 | CVE_STATUS[CVE-2022-3640] = "fixed-version: Fixed from version 6.1rc4" |
4422 | 4426 | ||
4423 | # CVE-2022-36402 has no known resolution | 4427 | CVE_STATUS[CVE-2022-36402] = "fixed-version: Fixed from version 6.5" |
4424 | 4428 | ||
4425 | # CVE-2022-3642 has no known resolution | 4429 | # CVE-2022-3642 has no known resolution |
4426 | 4430 | ||
@@ -5100,8 +5104,12 @@ CVE_STATUS[CVE-2023-4622] = "fixed-version: Fixed from version 6.5rc1" | |||
5100 | 5104 | ||
5101 | CVE_STATUS[CVE-2023-4623] = "fixed-version: Fixed from version 6.6rc1" | 5105 | CVE_STATUS[CVE-2023-4623] = "fixed-version: Fixed from version 6.6rc1" |
5102 | 5106 | ||
5107 | CVE_STATUS[CVE-2023-46343] = "fixed-version: Fixed from version 6.6rc7" | ||
5108 | |||
5103 | CVE_STATUS[CVE-2023-46813] = "fixed-version: Fixed from version 6.6rc7" | 5109 | CVE_STATUS[CVE-2023-46813] = "fixed-version: Fixed from version 6.6rc7" |
5104 | 5110 | ||
5111 | CVE_STATUS[CVE-2023-46838] = "cpe-stable-backport: Backported in 6.6.14" | ||
5112 | |||
5105 | CVE_STATUS[CVE-2023-46862] = "fixed-version: Fixed from version 6.6" | 5113 | CVE_STATUS[CVE-2023-46862] = "fixed-version: Fixed from version 6.6" |
5106 | 5114 | ||
5107 | # CVE-2023-47233 has no known resolution | 5115 | # CVE-2023-47233 has no known resolution |
@@ -5112,10 +5120,14 @@ CVE_STATUS[CVE-2023-4881] = "fixed-version: Fixed from version 6.6rc1" | |||
5112 | 5120 | ||
5113 | CVE_STATUS[CVE-2023-4921] = "fixed-version: Fixed from version 6.6rc1" | 5121 | CVE_STATUS[CVE-2023-4921] = "fixed-version: Fixed from version 6.6rc1" |
5114 | 5122 | ||
5115 | # CVE-2023-50431 has no known resolution | 5123 | CVE_STATUS[CVE-2023-50431] = "cpe-stable-backport: Backported in 6.6.14" |
5116 | 5124 | ||
5117 | CVE_STATUS[CVE-2023-5090] = "fixed-version: Fixed from version 6.6rc7" | 5125 | CVE_STATUS[CVE-2023-5090] = "fixed-version: Fixed from version 6.6rc7" |
5118 | 5126 | ||
5127 | CVE_STATUS[CVE-2023-51042] = "fixed-version: Fixed from version 6.5rc1" | ||
5128 | |||
5129 | CVE_STATUS[CVE-2023-51043] = "fixed-version: Fixed from version 6.5rc3" | ||
5130 | |||
5119 | CVE_STATUS[CVE-2023-5158] = "fixed-version: Fixed from version 6.6rc5" | 5131 | CVE_STATUS[CVE-2023-5158] = "fixed-version: Fixed from version 6.6rc5" |
5120 | 5132 | ||
5121 | CVE_STATUS[CVE-2023-51779] = "cpe-stable-backport: Backported in 6.6.9" | 5133 | CVE_STATUS[CVE-2023-51779] = "cpe-stable-backport: Backported in 6.6.9" |
@@ -5130,6 +5142,8 @@ CVE_STATUS[CVE-2023-51782] = "cpe-stable-backport: Backported in 6.6.8" | |||
5130 | 5142 | ||
5131 | CVE_STATUS[CVE-2023-5197] = "fixed-version: Fixed from version 6.6rc3" | 5143 | CVE_STATUS[CVE-2023-5197] = "fixed-version: Fixed from version 6.6rc3" |
5132 | 5144 | ||
5145 | CVE_STATUS[CVE-2023-52340] = "fixed-version: Fixed from version 6.3rc1" | ||
5146 | |||
5133 | CVE_STATUS[CVE-2023-5345] = "fixed-version: Fixed from version 6.6rc4" | 5147 | CVE_STATUS[CVE-2023-5345] = "fixed-version: Fixed from version 6.6rc4" |
5134 | 5148 | ||
5135 | CVE_STATUS[CVE-2023-5633] = "fixed-version: Fixed from version 6.6rc6" | 5149 | CVE_STATUS[CVE-2023-5633] = "fixed-version: Fixed from version 6.6rc6" |
@@ -5148,6 +5162,8 @@ CVE_STATUS[CVE-2023-6121] = "cpe-stable-backport: Backported in 6.6.4" | |||
5148 | 5162 | ||
5149 | CVE_STATUS[CVE-2023-6176] = "fixed-version: Fixed from version 6.6rc2" | 5163 | CVE_STATUS[CVE-2023-6176] = "fixed-version: Fixed from version 6.6rc2" |
5150 | 5164 | ||
5165 | CVE_STATUS[CVE-2023-6200] = "cpe-stable-backport: Backported in 6.6.9" | ||
5166 | |||
5151 | # CVE-2023-6238 has no known resolution | 5167 | # CVE-2023-6238 has no known resolution |
5152 | 5168 | ||
5153 | # CVE-2023-6270 has no known resolution | 5169 | # CVE-2023-6270 has no known resolution |
@@ -5166,7 +5182,7 @@ CVE_STATUS[CVE-2023-6560] = "cpe-stable-backport: Backported in 6.6.5" | |||
5166 | 5182 | ||
5167 | CVE_STATUS[CVE-2023-6606] = "cpe-stable-backport: Backported in 6.6.9" | 5183 | CVE_STATUS[CVE-2023-6606] = "cpe-stable-backport: Backported in 6.6.9" |
5168 | 5184 | ||
5169 | # CVE-2023-6610 needs backporting (fixed from 6.7rc7) | 5185 | CVE_STATUS[CVE-2023-6610] = "cpe-stable-backport: Backported in 6.6.13" |
5170 | 5186 | ||
5171 | CVE_STATUS[CVE-2023-6622] = "cpe-stable-backport: Backported in 6.6.7" | 5187 | CVE_STATUS[CVE-2023-6622] = "cpe-stable-backport: Backported in 6.6.7" |
5172 | 5188 | ||
@@ -5174,6 +5190,8 @@ CVE_STATUS[CVE-2023-6679] = "fixed-version: only affects 6.7rc1 onwards" | |||
5174 | 5190 | ||
5175 | CVE_STATUS[CVE-2023-6817] = "cpe-stable-backport: Backported in 6.6.7" | 5191 | CVE_STATUS[CVE-2023-6817] = "cpe-stable-backport: Backported in 6.6.7" |
5176 | 5192 | ||
5193 | CVE_STATUS[CVE-2023-6915] = "cpe-stable-backport: Backported in 6.6.13" | ||
5194 | |||
5177 | CVE_STATUS[CVE-2023-6931] = "cpe-stable-backport: Backported in 6.6.7" | 5195 | CVE_STATUS[CVE-2023-6931] = "cpe-stable-backport: Backported in 6.6.7" |
5178 | 5196 | ||
5179 | CVE_STATUS[CVE-2023-6932] = "cpe-stable-backport: Backported in 6.6.5" | 5197 | CVE_STATUS[CVE-2023-6932] = "cpe-stable-backport: Backported in 6.6.5" |
@@ -5188,5 +5206,45 @@ CVE_STATUS[CVE-2024-0340] = "fixed-version: Fixed from version 6.4rc6" | |||
5188 | 5206 | ||
5189 | CVE_STATUS[CVE-2024-0443] = "fixed-version: Fixed from version 6.4rc7" | 5207 | CVE_STATUS[CVE-2024-0443] = "fixed-version: Fixed from version 6.4rc7" |
5190 | 5208 | ||
5191 | # Skipping dd=CVE-2023-1476, no affected_versions | 5209 | CVE_STATUS[CVE-2024-0562] = "fixed-version: Fixed from version 6.0rc3" |
5210 | |||
5211 | # CVE-2024-0564 has no known resolution | ||
5212 | |||
5213 | CVE_STATUS[CVE-2024-0565] = "cpe-stable-backport: Backported in 6.6.8" | ||
5214 | |||
5215 | CVE_STATUS[CVE-2024-0582] = "cpe-stable-backport: Backported in 6.6.5" | ||
5216 | |||
5217 | CVE_STATUS[CVE-2024-0584] = "cpe-stable-backport: Backported in 6.6.5" | ||
5218 | |||
5219 | CVE_STATUS[CVE-2024-0607] = "cpe-stable-backport: Backported in 6.6.3" | ||
5220 | |||
5221 | CVE_STATUS[CVE-2024-0639] = "fixed-version: Fixed from version 6.5rc1" | ||
5222 | |||
5223 | CVE_STATUS[CVE-2024-0641] = "fixed-version: Fixed from version 6.6rc5" | ||
5224 | |||
5225 | CVE_STATUS[CVE-2024-0646] = "cpe-stable-backport: Backported in 6.6.7" | ||
5226 | |||
5227 | CVE_STATUS[CVE-2024-0775] = "fixed-version: Fixed from version 6.4rc2" | ||
5228 | |||
5229 | # CVE-2024-0841 has no known resolution | ||
5230 | |||
5231 | CVE_STATUS[CVE-2024-1085] = "cpe-stable-backport: Backported in 6.6.14" | ||
5232 | |||
5233 | CVE_STATUS[CVE-2024-1086] = "cpe-stable-backport: Backported in 6.6.15" | ||
5234 | |||
5235 | # CVE-2024-21803 has no known resolution | ||
5236 | |||
5237 | # CVE-2024-22099 has no known resolution | ||
5238 | |||
5239 | CVE_STATUS[CVE-2024-22705] = "cpe-stable-backport: Backported in 6.6.10" | ||
5240 | |||
5241 | # CVE-2024-23307 has no known resolution | ||
5242 | |||
5243 | # CVE-2024-23848 has no known resolution | ||
5244 | |||
5245 | # CVE-2024-23849 has no known resolution | ||
5246 | |||
5247 | # CVE-2024-23850 has no known resolution | ||
5248 | |||
5249 | # CVE-2024-23851 has no known resolution | ||
5192 | 5250 | ||