diff options
author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-10 16:55:50 +0100 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2021-05-20 12:36:41 +0100 |
commit | 593eb7ab96ff8d9e2185082022f9012eb44ee086 (patch) | |
tree | 65144995498b56b9f86026f1e4c9a2c54665c9ec /meta | |
parent | 584f3a42c928fb910b573cb30a2fa0eb9204ea03 (diff) | |
download | poky-593eb7ab96ff8d9e2185082022f9012eb44ee086.tar.gz |
openssh: Exclude CVE-2007-2768 from cve-check
We don't build/use the OPIE PAM module, exclude the CVE from this recipe.
(From OE-Core rev: d55474025a4518c674d9781c4c3b1ce5d6389466)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 3670be602f2ace24dc49e196407efec577164050)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta')
-rw-r--r-- | meta/recipes-connectivity/openssh/openssh_8.2p1.bb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb index fe94f30503..b429fbe96d 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb | |||
@@ -28,6 +28,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar | |||
28 | SRC_URI[md5sum] = "3076e6413e8dbe56d33848c1054ac091" | 28 | SRC_URI[md5sum] = "3076e6413e8dbe56d33848c1054ac091" |
29 | SRC_URI[sha256sum] = "43925151e6cf6cee1450190c0e9af4dc36b41c12737619edff8bcebdff64e671" | 29 | SRC_URI[sha256sum] = "43925151e6cf6cee1450190c0e9af4dc36b41c12737619edff8bcebdff64e671" |
30 | 30 | ||
31 | # This CVE is specific to OpenSSH with the pam opie which we don't build/use here | ||
32 | CVE_CHECK_WHITELIST += "CVE-2007-2768" | ||
33 | |||
31 | # This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 | 34 | # This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 |
32 | # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded | 35 | # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded |
33 | CVE_CHECK_WHITELIST += "CVE-2014-9278" | 36 | CVE_CHECK_WHITELIST += "CVE-2014-9278" |