1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
index 41ac303d38..c6de519884 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
@@ -34,6 +34,9 @@ CVE_CHECK_WHITELIST += "CVE-2007-2768"
 # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
 CVE_CHECK_WHITELIST += "CVE-2014-9278"
+# CVE only applies to some distributed RHEL binaries
+CVE_CHECK_WHITELIST += "CVE-2008-3844"
 PAM_SRC_URI = "file://sshd"
 inherit manpages useradd update-rc.d update-alternatives systemd

diff --git a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb index 41ac303d38..c6de519884 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.5p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.5p1.bb
@@ -34,6 +34,9 @@ CVE_CHECK_WHITELIST += "CVE-2007-2768"
34	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded	34	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
35	CVE_CHECK_WHITELIST += "CVE-2014-9278"	35	CVE_CHECK_WHITELIST += "CVE-2014-9278"
36		36
		37	# CVE only applies to some distributed RHEL binaries
		38	CVE_CHECK_WHITELIST += "CVE-2008-3844"
		39
37	PAM_SRC_URI = "file://sshd"	40	PAM_SRC_URI = "file://sshd"
38		41
39	inherit manpages useradd update-rc.d update-alternatives systemd	42	inherit manpages useradd update-rc.d update-alternatives systemd