diff options
author | Steve Sakoman <steve@sakoman.com> | 2024-02-21 03:44:24 -1000 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2024-02-27 05:42:55 -1000 |
commit | 9ba6ff627834c70a298f1547ba31aae6018fd810 (patch) | |
tree | 9af9aab29268a047c7b7c3916035f675fa4e4f31 /meta | |
parent | 34ae49293455457a4628c202a1ed850afa219f02 (diff) | |
download | poky-9ba6ff627834c70a298f1547ba31aae6018fd810.tar.gz |
cve-exclusion_5.4.inc: update for 5.4.268
(From OE-Core rev: 7360603c50ca61ec9d6a49798ec6b67a80e93c69)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta')
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_5.4.inc | 199 |
1 files changed, 188 insertions, 11 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_5.4.inc b/meta/recipes-kernel/linux/cve-exclusion_5.4.inc index 983424d427..79caff7c6c 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_5.4.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_5.4.inc | |||
@@ -1,9 +1,9 @@ | |||
1 | 1 | ||
2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
3 | # Generated at 2023-12-05 04:45:42.561193 for version 5.4.262 | 3 | # Generated at 2024-02-21 03:40:25.997343 for version 5.4.268 |
4 | 4 | ||
5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
6 | this_version = "5.4.262" | 6 | this_version = "5.4.268" |
7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
@@ -5281,6 +5281,12 @@ CVE_CHECK_WHITELIST += "CVE-2021-3348" | |||
5281 | # cpe-stable-backport: Backported in 5.4.139 | 5281 | # cpe-stable-backport: Backported in 5.4.139 |
5282 | CVE_CHECK_WHITELIST += "CVE-2021-33624" | 5282 | CVE_CHECK_WHITELIST += "CVE-2021-33624" |
5283 | 5283 | ||
5284 | # fixed-version: Fixed after version 5.4rc1 | ||
5285 | CVE_CHECK_WHITELIST += "CVE-2021-33630" | ||
5286 | |||
5287 | # cpe-stable-backport: Backported in 5.4.240 | ||
5288 | CVE_CHECK_WHITELIST += "CVE-2021-33631" | ||
5289 | |||
5284 | # cpe-stable-backport: Backported in 5.4.205 | 5290 | # cpe-stable-backport: Backported in 5.4.205 |
5285 | CVE_CHECK_WHITELIST += "CVE-2021-33655" | 5291 | CVE_CHECK_WHITELIST += "CVE-2021-33655" |
5286 | 5292 | ||
@@ -5810,7 +5816,8 @@ CVE_CHECK_WHITELIST += "CVE-2022-1419" | |||
5810 | # cpe-stable-backport: Backported in 5.4.208 | 5816 | # cpe-stable-backport: Backported in 5.4.208 |
5811 | CVE_CHECK_WHITELIST += "CVE-2022-1462" | 5817 | CVE_CHECK_WHITELIST += "CVE-2022-1462" |
5812 | 5818 | ||
5813 | # CVE-2022-1508 needs backporting (fixed from 5.15rc1) | 5819 | # fixed-version: only affects 5.11rc1 onwards |
5820 | CVE_CHECK_WHITELIST += "CVE-2022-1508" | ||
5814 | 5821 | ||
5815 | # fixed-version: only affects 5.7rc5 onwards | 5822 | # fixed-version: only affects 5.7rc5 onwards |
5816 | CVE_CHECK_WHITELIST += "CVE-2022-1516" | 5823 | CVE_CHECK_WHITELIST += "CVE-2022-1516" |
@@ -6356,7 +6363,7 @@ CVE_CHECK_WHITELIST += "CVE-2022-3635" | |||
6356 | # fixed-version: only affects 5.19 onwards | 6363 | # fixed-version: only affects 5.19 onwards |
6357 | CVE_CHECK_WHITELIST += "CVE-2022-3640" | 6364 | CVE_CHECK_WHITELIST += "CVE-2022-3640" |
6358 | 6365 | ||
6359 | # CVE-2022-36402 has no known resolution | 6366 | # CVE-2022-36402 needs backporting (fixed from 6.5) |
6360 | 6367 | ||
6361 | # CVE-2022-3642 has no known resolution | 6368 | # CVE-2022-3642 has no known resolution |
6362 | 6369 | ||
@@ -6585,6 +6592,9 @@ CVE_CHECK_WHITELIST += "CVE-2022-48425" | |||
6585 | # fixed-version: only affects 5.15rc1 onwards | 6592 | # fixed-version: only affects 5.15rc1 onwards |
6586 | CVE_CHECK_WHITELIST += "CVE-2022-48502" | 6593 | CVE_CHECK_WHITELIST += "CVE-2022-48502" |
6587 | 6594 | ||
6595 | # cpe-stable-backport: Backported in 5.4.196 | ||
6596 | CVE_CHECK_WHITELIST += "CVE-2022-48619" | ||
6597 | |||
6588 | # fixed-version: Fixed after version 5.0rc1 | 6598 | # fixed-version: Fixed after version 5.0rc1 |
6589 | CVE_CHECK_WHITELIST += "CVE-2023-0030" | 6599 | CVE_CHECK_WHITELIST += "CVE-2023-0030" |
6590 | 6600 | ||
@@ -6702,6 +6712,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-1382" | |||
6702 | # cpe-stable-backport: Backported in 5.4.92 | 6712 | # cpe-stable-backport: Backported in 5.4.92 |
6703 | CVE_CHECK_WHITELIST += "CVE-2023-1390" | 6713 | CVE_CHECK_WHITELIST += "CVE-2023-1390" |
6704 | 6714 | ||
6715 | # CVE-2023-1476 has no known resolution | ||
6716 | |||
6705 | # cpe-stable-backport: Backported in 5.4.232 | 6717 | # cpe-stable-backport: Backported in 5.4.232 |
6706 | CVE_CHECK_WHITELIST += "CVE-2023-1513" | 6718 | CVE_CHECK_WHITELIST += "CVE-2023-1513" |
6707 | 6719 | ||
@@ -6873,7 +6885,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-23559" | |||
6873 | # fixed-version: only affects 5.10rc1 onwards | 6885 | # fixed-version: only affects 5.10rc1 onwards |
6874 | CVE_CHECK_WHITELIST += "CVE-2023-23586" | 6886 | CVE_CHECK_WHITELIST += "CVE-2023-23586" |
6875 | 6887 | ||
6876 | # CVE-2023-2430 needs backporting (fixed from 6.2rc5) | 6888 | # fixed-version: only affects 5.18rc1 onwards |
6889 | CVE_CHECK_WHITELIST += "CVE-2023-2430" | ||
6877 | 6890 | ||
6878 | # cpe-stable-backport: Backported in 5.4.240 | 6891 | # cpe-stable-backport: Backported in 5.4.240 |
6879 | CVE_CHECK_WHITELIST += "CVE-2023-2483" | 6892 | CVE_CHECK_WHITELIST += "CVE-2023-2483" |
@@ -7303,7 +7316,8 @@ CVE_CHECK_WHITELIST += "CVE-2023-45871" | |||
7303 | # fixed-version: only affects 6.5rc1 onwards | 7316 | # fixed-version: only affects 6.5rc1 onwards |
7304 | CVE_CHECK_WHITELIST += "CVE-2023-45898" | 7317 | CVE_CHECK_WHITELIST += "CVE-2023-45898" |
7305 | 7318 | ||
7306 | # CVE-2023-4610 needs backporting (fixed from 6.4) | 7319 | # fixed-version: only affects 6.4rc1 onwards |
7320 | CVE_CHECK_WHITELIST += "CVE-2023-4610" | ||
7307 | 7321 | ||
7308 | # fixed-version: only affects 6.4rc1 onwards | 7322 | # fixed-version: only affects 6.4rc1 onwards |
7309 | CVE_CHECK_WHITELIST += "CVE-2023-4611" | 7323 | CVE_CHECK_WHITELIST += "CVE-2023-4611" |
@@ -7313,32 +7327,62 @@ CVE_CHECK_WHITELIST += "CVE-2023-4611" | |||
7313 | # cpe-stable-backport: Backported in 5.4.257 | 7327 | # cpe-stable-backport: Backported in 5.4.257 |
7314 | CVE_CHECK_WHITELIST += "CVE-2023-4623" | 7328 | CVE_CHECK_WHITELIST += "CVE-2023-4623" |
7315 | 7329 | ||
7330 | # cpe-stable-backport: Backported in 5.4.259 | ||
7331 | CVE_CHECK_WHITELIST += "CVE-2023-46343" | ||
7332 | |||
7316 | # fixed-version: only affects 5.10rc1 onwards | 7333 | # fixed-version: only affects 5.10rc1 onwards |
7317 | CVE_CHECK_WHITELIST += "CVE-2023-46813" | 7334 | CVE_CHECK_WHITELIST += "CVE-2023-46813" |
7318 | 7335 | ||
7319 | # CVE-2023-46862 needs backporting (fixed from 6.6) | 7336 | # cpe-stable-backport: Backported in 5.4.268 |
7337 | CVE_CHECK_WHITELIST += "CVE-2023-46838" | ||
7338 | |||
7339 | # fixed-version: only affects 5.10rc1 onwards | ||
7340 | CVE_CHECK_WHITELIST += "CVE-2023-46862" | ||
7320 | 7341 | ||
7321 | # CVE-2023-47233 has no known resolution | 7342 | # CVE-2023-47233 has no known resolution |
7322 | 7343 | ||
7323 | # CVE-2023-4732 needs backporting (fixed from 5.14rc1) | 7344 | # fixed-version: only affects 5.7rc1 onwards |
7345 | CVE_CHECK_WHITELIST += "CVE-2023-4732" | ||
7324 | 7346 | ||
7325 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) | 7347 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) |
7326 | 7348 | ||
7327 | # cpe-stable-backport: Backported in 5.4.257 | 7349 | # cpe-stable-backport: Backported in 5.4.257 |
7328 | CVE_CHECK_WHITELIST += "CVE-2023-4921" | 7350 | CVE_CHECK_WHITELIST += "CVE-2023-4921" |
7329 | 7351 | ||
7352 | # CVE-2023-50431 needs backporting (fixed from 6.8rc1) | ||
7353 | |||
7330 | # fixed-version: only affects 6.0rc1 onwards | 7354 | # fixed-version: only affects 6.0rc1 onwards |
7331 | CVE_CHECK_WHITELIST += "CVE-2023-5090" | 7355 | CVE_CHECK_WHITELIST += "CVE-2023-5090" |
7332 | 7356 | ||
7357 | # cpe-stable-backport: Backported in 5.4.255 | ||
7358 | CVE_CHECK_WHITELIST += "CVE-2023-51042" | ||
7359 | |||
7360 | # cpe-stable-backport: Backported in 5.4.251 | ||
7361 | CVE_CHECK_WHITELIST += "CVE-2023-51043" | ||
7362 | |||
7333 | # fixed-version: only affects 5.13rc1 onwards | 7363 | # fixed-version: only affects 5.13rc1 onwards |
7334 | CVE_CHECK_WHITELIST += "CVE-2023-5158" | 7364 | CVE_CHECK_WHITELIST += "CVE-2023-5158" |
7335 | 7365 | ||
7366 | # CVE-2023-51779 needs backporting (fixed from 6.7rc7) | ||
7367 | |||
7336 | # cpe-stable-backport: Backported in 5.4.260 | 7368 | # cpe-stable-backport: Backported in 5.4.260 |
7337 | CVE_CHECK_WHITELIST += "CVE-2023-5178" | 7369 | CVE_CHECK_WHITELIST += "CVE-2023-5178" |
7338 | 7370 | ||
7371 | # cpe-stable-backport: Backported in 5.4.265 | ||
7372 | CVE_CHECK_WHITELIST += "CVE-2023-51780" | ||
7373 | |||
7374 | # cpe-stable-backport: Backported in 5.4.265 | ||
7375 | CVE_CHECK_WHITELIST += "CVE-2023-51781" | ||
7376 | |||
7377 | # cpe-stable-backport: Backported in 5.4.265 | ||
7378 | CVE_CHECK_WHITELIST += "CVE-2023-51782" | ||
7379 | |||
7339 | # fixed-version: only affects 5.9rc1 onwards | 7380 | # fixed-version: only affects 5.9rc1 onwards |
7340 | CVE_CHECK_WHITELIST += "CVE-2023-5197" | 7381 | CVE_CHECK_WHITELIST += "CVE-2023-5197" |
7341 | 7382 | ||
7383 | # cpe-stable-backport: Backported in 5.4.267 | ||
7384 | CVE_CHECK_WHITELIST += "CVE-2023-52340" | ||
7385 | |||
7342 | # fixed-version: only affects 6.1rc1 onwards | 7386 | # fixed-version: only affects 6.1rc1 onwards |
7343 | CVE_CHECK_WHITELIST += "CVE-2023-5345" | 7387 | CVE_CHECK_WHITELIST += "CVE-2023-5345" |
7344 | 7388 | ||
@@ -7348,17 +7392,150 @@ CVE_CHECK_WHITELIST += "CVE-2023-5633" | |||
7348 | # cpe-stable-backport: Backported in 5.4.259 | 7392 | # cpe-stable-backport: Backported in 5.4.259 |
7349 | CVE_CHECK_WHITELIST += "CVE-2023-5717" | 7393 | CVE_CHECK_WHITELIST += "CVE-2023-5717" |
7350 | 7394 | ||
7351 | # CVE-2023-5972 needs backporting (fixed from 6.6rc7) | 7395 | # fixed-version: only affects 6.2rc1 onwards |
7396 | CVE_CHECK_WHITELIST += "CVE-2023-5972" | ||
7397 | |||
7398 | # fixed-version: only affects 5.15rc1 onwards | ||
7399 | CVE_CHECK_WHITELIST += "CVE-2023-6039" | ||
7352 | 7400 | ||
7353 | # CVE-2023-6039 needs backporting (fixed from 6.5rc5) | 7401 | # cpe-stable-backport: Backported in 5.4.267 |
7402 | CVE_CHECK_WHITELIST += "CVE-2023-6040" | ||
7354 | 7403 | ||
7355 | # fixed-version: only affects 6.6rc3 onwards | 7404 | # fixed-version: only affects 6.6rc3 onwards |
7356 | CVE_CHECK_WHITELIST += "CVE-2023-6111" | 7405 | CVE_CHECK_WHITELIST += "CVE-2023-6111" |
7357 | 7406 | ||
7358 | # CVE-2023-6121 needs backporting (fixed from 6.7rc3) | 7407 | # cpe-stable-backport: Backported in 5.4.263 |
7408 | CVE_CHECK_WHITELIST += "CVE-2023-6121" | ||
7359 | 7409 | ||
7360 | # fixed-version: only affects 5.7rc7 onwards | 7410 | # fixed-version: only affects 5.7rc7 onwards |
7361 | CVE_CHECK_WHITELIST += "CVE-2023-6176" | 7411 | CVE_CHECK_WHITELIST += "CVE-2023-6176" |
7362 | 7412 | ||
7413 | # fixed-version: only affects 6.6rc1 onwards | ||
7414 | CVE_CHECK_WHITELIST += "CVE-2023-6200" | ||
7415 | |||
7363 | # CVE-2023-6238 has no known resolution | 7416 | # CVE-2023-6238 has no known resolution |
7364 | 7417 | ||
7418 | # CVE-2023-6240 has no known resolution | ||
7419 | |||
7420 | # CVE-2023-6270 has no known resolution | ||
7421 | |||
7422 | # CVE-2023-6356 has no known resolution | ||
7423 | |||
7424 | # fixed-version: only affects 6.1rc1 onwards | ||
7425 | CVE_CHECK_WHITELIST += "CVE-2023-6531" | ||
7426 | |||
7427 | # CVE-2023-6535 has no known resolution | ||
7428 | |||
7429 | # CVE-2023-6536 has no known resolution | ||
7430 | |||
7431 | # CVE-2023-6546 needs backporting (fixed from 6.5rc7) | ||
7432 | |||
7433 | # CVE-2023-6560 needs backporting (fixed from 6.7rc4) | ||
7434 | |||
7435 | # cpe-stable-backport: Backported in 5.4.266 | ||
7436 | CVE_CHECK_WHITELIST += "CVE-2023-6606" | ||
7437 | |||
7438 | # CVE-2023-6610 needs backporting (fixed from 6.7rc7) | ||
7439 | |||
7440 | # fixed-version: only affects 5.11rc1 onwards | ||
7441 | CVE_CHECK_WHITELIST += "CVE-2023-6622" | ||
7442 | |||
7443 | # fixed-version: only affects 6.7rc1 onwards | ||
7444 | CVE_CHECK_WHITELIST += "CVE-2023-6679" | ||
7445 | |||
7446 | # fixed-version: only affects 5.6rc1 onwards | ||
7447 | CVE_CHECK_WHITELIST += "CVE-2023-6817" | ||
7448 | |||
7449 | # cpe-stable-backport: Backported in 5.4.268 | ||
7450 | CVE_CHECK_WHITELIST += "CVE-2023-6915" | ||
7451 | |||
7452 | # cpe-stable-backport: Backported in 5.4.264 | ||
7453 | CVE_CHECK_WHITELIST += "CVE-2023-6931" | ||
7454 | |||
7455 | # cpe-stable-backport: Backported in 5.4.263 | ||
7456 | CVE_CHECK_WHITELIST += "CVE-2023-6932" | ||
7457 | |||
7458 | # CVE-2023-7042 has no known resolution | ||
7459 | |||
7460 | # cpe-stable-backport: Backported in 5.4.235 | ||
7461 | CVE_CHECK_WHITELIST += "CVE-2023-7192" | ||
7462 | |||
7463 | # fixed-version: only affects 6.5rc6 onwards | ||
7464 | CVE_CHECK_WHITELIST += "CVE-2024-0193" | ||
7465 | |||
7466 | # CVE-2024-0340 needs backporting (fixed from 6.4rc6) | ||
7467 | |||
7468 | # fixed-version: only affects 6.2rc1 onwards | ||
7469 | CVE_CHECK_WHITELIST += "CVE-2024-0443" | ||
7470 | |||
7471 | # fixed-version: only affects 5.15rc1 onwards | ||
7472 | CVE_CHECK_WHITELIST += "CVE-2024-0562" | ||
7473 | |||
7474 | # CVE-2024-0564 has no known resolution | ||
7475 | |||
7476 | # CVE-2024-0565 needs backporting (fixed from 6.7rc6) | ||
7477 | |||
7478 | # fixed-version: only affects 6.4rc1 onwards | ||
7479 | CVE_CHECK_WHITELIST += "CVE-2024-0582" | ||
7480 | |||
7481 | # cpe-stable-backport: Backported in 5.4.263 | ||
7482 | CVE_CHECK_WHITELIST += "CVE-2024-0584" | ||
7483 | |||
7484 | # CVE-2024-0607 needs backporting (fixed from 6.7rc2) | ||
7485 | |||
7486 | # fixed-version: only affects 5.13rc1 onwards | ||
7487 | CVE_CHECK_WHITELIST += "CVE-2024-0639" | ||
7488 | |||
7489 | # fixed-version: only affects 5.5rc1 onwards | ||
7490 | CVE_CHECK_WHITELIST += "CVE-2024-0641" | ||
7491 | |||
7492 | # cpe-stable-backport: Backported in 5.4.267 | ||
7493 | CVE_CHECK_WHITELIST += "CVE-2024-0646" | ||
7494 | |||
7495 | # cpe-stable-backport: Backported in 5.4.243 | ||
7496 | CVE_CHECK_WHITELIST += "CVE-2024-0775" | ||
7497 | |||
7498 | # CVE-2024-0841 has no known resolution | ||
7499 | |||
7500 | # fixed-version: only affects 5.13rc1 onwards | ||
7501 | CVE_CHECK_WHITELIST += "CVE-2024-1085" | ||
7502 | |||
7503 | # CVE-2024-1086 needs backporting (fixed from 6.8rc2) | ||
7504 | |||
7505 | # CVE-2024-1312 needs backporting (fixed from 6.5rc4) | ||
7506 | |||
7507 | # CVE-2024-21803 has no known resolution | ||
7508 | |||
7509 | # CVE-2024-22099 has no known resolution | ||
7510 | |||
7511 | # CVE-2024-22386 has no known resolution | ||
7512 | |||
7513 | # fixed-version: only affects 5.15rc1 onwards | ||
7514 | CVE_CHECK_WHITELIST += "CVE-2024-22705" | ||
7515 | |||
7516 | # CVE-2024-23196 has no known resolution | ||
7517 | |||
7518 | # CVE-2024-23307 has no known resolution | ||
7519 | |||
7520 | # CVE-2024-23848 has no known resolution | ||
7521 | |||
7522 | # CVE-2024-23849 needs backporting (fixed from 6.8rc2) | ||
7523 | |||
7524 | # CVE-2024-23850 has no known resolution | ||
7525 | |||
7526 | # CVE-2024-23851 has no known resolution | ||
7527 | |||
7528 | # CVE-2024-24855 has no known resolution | ||
7529 | |||
7530 | # CVE-2024-24857 has no known resolution | ||
7531 | |||
7532 | # CVE-2024-24858 has no known resolution | ||
7533 | |||
7534 | # CVE-2024-24859 has no known resolution | ||
7535 | |||
7536 | # CVE-2024-24860 has no known resolution | ||
7537 | |||
7538 | # CVE-2024-24861 has no known resolution | ||
7539 | |||
7540 | # CVE-2024-24864 has no known resolution | ||
7541 | |||