diff options
author | Steve Sakoman <steve@sakoman.com> | 2023-12-05 04:46:44 -1000 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2023-12-08 11:45:59 -1000 |
commit | 7dd1d3973e850f403922b46ba3a82781ce2e8426 (patch) | |
tree | 1fbacd7651bef7d236c9769eb823b5f7bf4e5855 /meta/recipes-kernel | |
parent | 9e0ebdc95f9fe9a61d97ff702b81d0a14b41a7ae (diff) | |
download | poky-7dd1d3973e850f403922b46ba3a82781ce2e8426.tar.gz |
cve-exclusion_5.4.inc: update for 5.4.262
(From OE-Core rev: fa5f8927e547da16588cf11dcf090f4ed53f3933)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta/recipes-kernel')
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_5.4.inc | 79 |
1 files changed, 64 insertions, 15 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_5.4.inc b/meta/recipes-kernel/linux/cve-exclusion_5.4.inc index 4c17b701df..983424d427 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_5.4.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_5.4.inc | |||
@@ -1,9 +1,9 @@ | |||
1 | 1 | ||
2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
3 | # Generated at 2023-10-24 06:03:05.289306 for version 5.4.257 | 3 | # Generated at 2023-12-05 04:45:42.561193 for version 5.4.262 |
4 | 4 | ||
5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
6 | this_version = "5.4.257" | 6 | this_version = "5.4.262" |
7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
@@ -5638,7 +5638,8 @@ CVE_CHECK_WHITELIST += "CVE-2021-43976" | |||
5638 | # cpe-stable-backport: Backported in 5.4.170 | 5638 | # cpe-stable-backport: Backported in 5.4.170 |
5639 | CVE_CHECK_WHITELIST += "CVE-2021-44733" | 5639 | CVE_CHECK_WHITELIST += "CVE-2021-44733" |
5640 | 5640 | ||
5641 | # CVE-2021-44879 needs backporting (fixed from 5.17rc1) | 5641 | # cpe-stable-backport: Backported in 5.4.260 |
5642 | CVE_CHECK_WHITELIST += "CVE-2021-44879" | ||
5642 | 5643 | ||
5643 | # cpe-stable-backport: Backported in 5.4.171 | 5644 | # cpe-stable-backport: Backported in 5.4.171 |
5644 | CVE_CHECK_WHITELIST += "CVE-2021-45095" | 5645 | CVE_CHECK_WHITELIST += "CVE-2021-45095" |
@@ -6500,7 +6501,7 @@ CVE_CHECK_WHITELIST += "CVE-2022-43945" | |||
6500 | 6501 | ||
6501 | # CVE-2022-44033 needs backporting (fixed from 6.4rc1) | 6502 | # CVE-2022-44033 needs backporting (fixed from 6.4rc1) |
6502 | 6503 | ||
6503 | # CVE-2022-44034 has no known resolution | 6504 | # CVE-2022-44034 needs backporting (fixed from 6.4rc1) |
6504 | 6505 | ||
6505 | # CVE-2022-4543 has no known resolution | 6506 | # CVE-2022-4543 has no known resolution |
6506 | 6507 | ||
@@ -6670,7 +6671,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-1118" | |||
6670 | # fixed-version: only affects 5.15rc1 onwards | 6671 | # fixed-version: only affects 5.15rc1 onwards |
6671 | CVE_CHECK_WHITELIST += "CVE-2023-1192" | 6672 | CVE_CHECK_WHITELIST += "CVE-2023-1192" |
6672 | 6673 | ||
6673 | # CVE-2023-1193 has no known resolution | 6674 | # fixed-version: only affects 5.15rc1 onwards |
6675 | CVE_CHECK_WHITELIST += "CVE-2023-1193" | ||
6674 | 6676 | ||
6675 | # fixed-version: only affects 5.15rc1 onwards | 6677 | # fixed-version: only affects 5.15rc1 onwards |
6676 | CVE_CHECK_WHITELIST += "CVE-2023-1194" | 6678 | CVE_CHECK_WHITELIST += "CVE-2023-1194" |
@@ -6964,7 +6966,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-3106" | |||
6964 | 6966 | ||
6965 | # CVE-2023-31084 needs backporting (fixed from 6.4rc3) | 6967 | # CVE-2023-31084 needs backporting (fixed from 6.4rc3) |
6966 | 6968 | ||
6967 | # CVE-2023-31085 needs backporting (fixed from 5.4.258) | 6969 | # cpe-stable-backport: Backported in 5.4.258 |
6970 | CVE_CHECK_WHITELIST += "CVE-2023-31085" | ||
6968 | 6971 | ||
6969 | # cpe-stable-backport: Backported in 5.4.247 | 6972 | # cpe-stable-backport: Backported in 5.4.247 |
6970 | CVE_CHECK_WHITELIST += "CVE-2023-3111" | 6973 | CVE_CHECK_WHITELIST += "CVE-2023-3111" |
@@ -7079,7 +7082,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-34256" | |||
7079 | # fixed-version: only affects 6.1 onwards | 7082 | # fixed-version: only affects 6.1 onwards |
7080 | CVE_CHECK_WHITELIST += "CVE-2023-34319" | 7083 | CVE_CHECK_WHITELIST += "CVE-2023-34319" |
7081 | 7084 | ||
7082 | # CVE-2023-34324 needs backporting (fixed from 5.4.258) | 7085 | # fixed-version: only affects 5.10rc1 onwards |
7086 | CVE_CHECK_WHITELIST += "CVE-2023-34324" | ||
7083 | 7087 | ||
7084 | # fixed-version: only affects 5.15rc1 onwards | 7088 | # fixed-version: only affects 5.15rc1 onwards |
7085 | CVE_CHECK_WHITELIST += "CVE-2023-3439" | 7089 | CVE_CHECK_WHITELIST += "CVE-2023-3439" |
@@ -7104,7 +7108,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-35824" | |||
7104 | # fixed-version: only affects 5.18rc1 onwards | 7108 | # fixed-version: only affects 5.18rc1 onwards |
7105 | CVE_CHECK_WHITELIST += "CVE-2023-35826" | 7109 | CVE_CHECK_WHITELIST += "CVE-2023-35826" |
7106 | 7110 | ||
7107 | # CVE-2023-35827 has no known resolution | 7111 | # cpe-stable-backport: Backported in 5.4.259 |
7112 | CVE_CHECK_WHITELIST += "CVE-2023-35827" | ||
7108 | 7113 | ||
7109 | # cpe-stable-backport: Backported in 5.4.243 | 7114 | # cpe-stable-backport: Backported in 5.4.243 |
7110 | CVE_CHECK_WHITELIST += "CVE-2023-35828" | 7115 | CVE_CHECK_WHITELIST += "CVE-2023-35828" |
@@ -7182,7 +7187,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-3867" | |||
7182 | # cpe-stable-backport: Backported in 5.4.257 | 7187 | # cpe-stable-backport: Backported in 5.4.257 |
7183 | CVE_CHECK_WHITELIST += "CVE-2023-39189" | 7188 | CVE_CHECK_WHITELIST += "CVE-2023-39189" |
7184 | 7189 | ||
7185 | # CVE-2023-39191 needs backporting (fixed from 6.3rc1) | 7190 | # fixed-version: only affects 5.19rc1 onwards |
7191 | CVE_CHECK_WHITELIST += "CVE-2023-39191" | ||
7186 | 7192 | ||
7187 | # cpe-stable-backport: Backported in 5.4.257 | 7193 | # cpe-stable-backport: Backported in 5.4.257 |
7188 | CVE_CHECK_WHITELIST += "CVE-2023-39192" | 7194 | CVE_CHECK_WHITELIST += "CVE-2023-39192" |
@@ -7193,6 +7199,11 @@ CVE_CHECK_WHITELIST += "CVE-2023-39193" | |||
7193 | # cpe-stable-backport: Backported in 5.4.255 | 7199 | # cpe-stable-backport: Backported in 5.4.255 |
7194 | CVE_CHECK_WHITELIST += "CVE-2023-39194" | 7200 | CVE_CHECK_WHITELIST += "CVE-2023-39194" |
7195 | 7201 | ||
7202 | # cpe-stable-backport: Backported in 5.4.251 | ||
7203 | CVE_CHECK_WHITELIST += "CVE-2023-39197" | ||
7204 | |||
7205 | # CVE-2023-39198 needs backporting (fixed from 6.5rc7) | ||
7206 | |||
7196 | # fixed-version: only affects 5.6rc1 onwards | 7207 | # fixed-version: only affects 5.6rc1 onwards |
7197 | CVE_CHECK_WHITELIST += "CVE-2023-4004" | 7208 | CVE_CHECK_WHITELIST += "CVE-2023-4004" |
7198 | 7209 | ||
@@ -7204,7 +7215,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-4015" | |||
7204 | # cpe-stable-backport: Backported in 5.4.253 | 7215 | # cpe-stable-backport: Backported in 5.4.253 |
7205 | CVE_CHECK_WHITELIST += "CVE-2023-40283" | 7216 | CVE_CHECK_WHITELIST += "CVE-2023-40283" |
7206 | 7217 | ||
7207 | # CVE-2023-40791 needs backporting (fixed from 6.5rc6) | 7218 | # fixed-version: only affects 6.3rc1 onwards |
7219 | CVE_CHECK_WHITELIST += "CVE-2023-40791" | ||
7208 | 7220 | ||
7209 | # cpe-stable-backport: Backported in 5.4.253 | 7221 | # cpe-stable-backport: Backported in 5.4.253 |
7210 | CVE_CHECK_WHITELIST += "CVE-2023-4128" | 7222 | CVE_CHECK_WHITELIST += "CVE-2023-4128" |
@@ -7246,7 +7258,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-42752" | |||
7246 | # cpe-stable-backport: Backported in 5.4.257 | 7258 | # cpe-stable-backport: Backported in 5.4.257 |
7247 | CVE_CHECK_WHITELIST += "CVE-2023-42753" | 7259 | CVE_CHECK_WHITELIST += "CVE-2023-42753" |
7248 | 7260 | ||
7249 | # CVE-2023-42754 needs backporting (fixed from 5.4.258) | 7261 | # cpe-stable-backport: Backported in 5.4.258 |
7262 | CVE_CHECK_WHITELIST += "CVE-2023-42754" | ||
7250 | 7263 | ||
7251 | # cpe-stable-backport: Backported in 5.4.257 | 7264 | # cpe-stable-backport: Backported in 5.4.257 |
7252 | CVE_CHECK_WHITELIST += "CVE-2023-42755" | 7265 | CVE_CHECK_WHITELIST += "CVE-2023-42755" |
@@ -7281,14 +7294,16 @@ CVE_CHECK_WHITELIST += "CVE-2023-4569" | |||
7281 | # cpe-stable-backport: Backported in 5.4.235 | 7294 | # cpe-stable-backport: Backported in 5.4.235 |
7282 | CVE_CHECK_WHITELIST += "CVE-2023-45862" | 7295 | CVE_CHECK_WHITELIST += "CVE-2023-45862" |
7283 | 7296 | ||
7284 | # CVE-2023-45863 needs backporting (fixed from 6.3rc1) | 7297 | # cpe-stable-backport: Backported in 5.4.260 |
7298 | CVE_CHECK_WHITELIST += "CVE-2023-45863" | ||
7285 | 7299 | ||
7286 | # cpe-stable-backport: Backported in 5.4.257 | 7300 | # cpe-stable-backport: Backported in 5.4.257 |
7287 | CVE_CHECK_WHITELIST += "CVE-2023-45871" | 7301 | CVE_CHECK_WHITELIST += "CVE-2023-45871" |
7288 | 7302 | ||
7289 | # CVE-2023-45898 needs backporting (fixed from 6.6rc1) | 7303 | # fixed-version: only affects 6.5rc1 onwards |
7304 | CVE_CHECK_WHITELIST += "CVE-2023-45898" | ||
7290 | 7305 | ||
7291 | # CVE-2023-4610 has no known resolution | 7306 | # CVE-2023-4610 needs backporting (fixed from 6.4) |
7292 | 7307 | ||
7293 | # fixed-version: only affects 6.4rc1 onwards | 7308 | # fixed-version: only affects 6.4rc1 onwards |
7294 | CVE_CHECK_WHITELIST += "CVE-2023-4611" | 7309 | CVE_CHECK_WHITELIST += "CVE-2023-4611" |
@@ -7298,6 +7313,13 @@ CVE_CHECK_WHITELIST += "CVE-2023-4611" | |||
7298 | # cpe-stable-backport: Backported in 5.4.257 | 7313 | # cpe-stable-backport: Backported in 5.4.257 |
7299 | CVE_CHECK_WHITELIST += "CVE-2023-4623" | 7314 | CVE_CHECK_WHITELIST += "CVE-2023-4623" |
7300 | 7315 | ||
7316 | # fixed-version: only affects 5.10rc1 onwards | ||
7317 | CVE_CHECK_WHITELIST += "CVE-2023-46813" | ||
7318 | |||
7319 | # CVE-2023-46862 needs backporting (fixed from 6.6) | ||
7320 | |||
7321 | # CVE-2023-47233 has no known resolution | ||
7322 | |||
7301 | # CVE-2023-4732 needs backporting (fixed from 5.14rc1) | 7323 | # CVE-2023-4732 needs backporting (fixed from 5.14rc1) |
7302 | 7324 | ||
7303 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) | 7325 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) |
@@ -7305,7 +7327,14 @@ CVE_CHECK_WHITELIST += "CVE-2023-4623" | |||
7305 | # cpe-stable-backport: Backported in 5.4.257 | 7327 | # cpe-stable-backport: Backported in 5.4.257 |
7306 | CVE_CHECK_WHITELIST += "CVE-2023-4921" | 7328 | CVE_CHECK_WHITELIST += "CVE-2023-4921" |
7307 | 7329 | ||
7308 | # CVE-2023-5158 has no known resolution | 7330 | # fixed-version: only affects 6.0rc1 onwards |
7331 | CVE_CHECK_WHITELIST += "CVE-2023-5090" | ||
7332 | |||
7333 | # fixed-version: only affects 5.13rc1 onwards | ||
7334 | CVE_CHECK_WHITELIST += "CVE-2023-5158" | ||
7335 | |||
7336 | # cpe-stable-backport: Backported in 5.4.260 | ||
7337 | CVE_CHECK_WHITELIST += "CVE-2023-5178" | ||
7309 | 7338 | ||
7310 | # fixed-version: only affects 5.9rc1 onwards | 7339 | # fixed-version: only affects 5.9rc1 onwards |
7311 | CVE_CHECK_WHITELIST += "CVE-2023-5197" | 7340 | CVE_CHECK_WHITELIST += "CVE-2023-5197" |
@@ -7313,3 +7342,23 @@ CVE_CHECK_WHITELIST += "CVE-2023-5197" | |||
7313 | # fixed-version: only affects 6.1rc1 onwards | 7342 | # fixed-version: only affects 6.1rc1 onwards |
7314 | CVE_CHECK_WHITELIST += "CVE-2023-5345" | 7343 | CVE_CHECK_WHITELIST += "CVE-2023-5345" |
7315 | 7344 | ||
7345 | # fixed-version: only affects 6.2 onwards | ||
7346 | CVE_CHECK_WHITELIST += "CVE-2023-5633" | ||
7347 | |||
7348 | # cpe-stable-backport: Backported in 5.4.259 | ||
7349 | CVE_CHECK_WHITELIST += "CVE-2023-5717" | ||
7350 | |||
7351 | # CVE-2023-5972 needs backporting (fixed from 6.6rc7) | ||
7352 | |||
7353 | # CVE-2023-6039 needs backporting (fixed from 6.5rc5) | ||
7354 | |||
7355 | # fixed-version: only affects 6.6rc3 onwards | ||
7356 | CVE_CHECK_WHITELIST += "CVE-2023-6111" | ||
7357 | |||
7358 | # CVE-2023-6121 needs backporting (fixed from 6.7rc3) | ||
7359 | |||
7360 | # fixed-version: only affects 5.7rc7 onwards | ||
7361 | CVE_CHECK_WHITELIST += "CVE-2023-6176" | ||
7362 | |||
7363 | # CVE-2023-6238 has no known resolution | ||
7364 | |||