1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb b/meta/recipes-connectivity/openssh/openssh_8.4p1.bb
index 720b238e71..676a8a6533 100644
--- a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.4p1.bb
@@ -27,6 +27,10 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
           "
 SRC_URI[sha256sum] = "5a01d22e407eb1c05ba8a8f7c654d388a13e9f226e4ed33bd38748dafa1d2b24"
+# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
+# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
+CVE_CHECK_WHITELIST += "CVE-2014-9278"
 PAM_SRC_URI = "file://sshd"
 inherit manpages useradd update-rc.d update-alternatives systemd

diff --git a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb b/meta/recipes-connectivity/openssh/openssh_8.4p1.bb index 720b238e71..676a8a6533 100644 --- a/meta/recipes-connectivity/openssh/openssh_8.4p1.bb +++ b/meta/recipes-connectivity/openssh/openssh_8.4p1.bb
@@ -27,6 +27,10 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
27	"	27	"
28	SRC_URI[sha256sum] = "5a01d22e407eb1c05ba8a8f7c654d388a13e9f226e4ed33bd38748dafa1d2b24"	28	SRC_URI[sha256sum] = "5a01d22e407eb1c05ba8a8f7c654d388a13e9f226e4ed33bd38748dafa1d2b24"
29		29
		30	# This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
		31	# and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
		32	CVE_CHECK_WHITELIST += "CVE-2014-9278"
		33
30	PAM_SRC_URI = "file://sshd"	34	PAM_SRC_URI = "file://sshd"
31		35
32	inherit manpages useradd update-rc.d update-alternatives systemd	36	inherit manpages useradd update-rc.d update-alternatives systemd