diff options
-rw-r--r-- | meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc index 497515a04a..d83cb94317 100644 --- a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc +++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc | |||
@@ -18,6 +18,14 @@ XORG_PN = "xorg-server" | |||
18 | SRC_URI = "${XORG_MIRROR}/individual/xserver/${XORG_PN}-${PV}.tar.bz2" | 18 | SRC_URI = "${XORG_MIRROR}/individual/xserver/${XORG_PN}-${PV}.tar.bz2" |
19 | 19 | ||
20 | CVE_PRODUCT = "xorg-server x_server" | 20 | CVE_PRODUCT = "xorg-server x_server" |
21 | # This is specific to Debian's xserver-wrapper.c | ||
22 | CVE_CHECK_WHITELIST += "CVE-2011-4613" | ||
23 | # As per upstream, exploiting this flaw is non-trivial and it requires exact | ||
24 | # timing on the behalf of the attacker. Many graphical applications exit if their | ||
25 | # connection to the X server is lost, so a typical desktop session is either | ||
26 | # impossible or difficult to exploit. There is currently no upstream patch | ||
27 | # available for this flaw. | ||
28 | CVE_CHECK_WHITELIST += "CVE-2020-25697" | ||
21 | 29 | ||
22 | S = "${WORKDIR}/${XORG_PN}-${PV}" | 30 | S = "${WORKDIR}/${XORG_PN}-${PV}" |
23 | 31 | ||