1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
index be56fe43b9..57ad5e841c 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
@@ -27,6 +27,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
           "
 SRC_URI[sha256sum] = "c3e6e4da1621762c850d03b47eed1e48dff4cc9608ddeb547202a234df8ed7ae"
+# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
+CVE_CHECK_WHITELIST += "CVE-2007-2768"
 # This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
 # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
 CVE_CHECK_WHITELIST += "CVE-2014-9278"

diff --git a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb index be56fe43b9..57ad5e841c 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.6p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.6p1.bb
@@ -27,6 +27,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
27	"	27	"
28	SRC_URI[sha256sum] = "c3e6e4da1621762c850d03b47eed1e48dff4cc9608ddeb547202a234df8ed7ae"	28	SRC_URI[sha256sum] = "c3e6e4da1621762c850d03b47eed1e48dff4cc9608ddeb547202a234df8ed7ae"
29		29
		30	# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
		31	CVE_CHECK_WHITELIST += "CVE-2007-2768"
		32
30	# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7	33	# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
31	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded	34	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
32	CVE_CHECK_WHITELIST += "CVE-2014-9278"	35	CVE_CHECK_WHITELIST += "CVE-2014-9278"