3 files changed, 5 insertions, 5 deletions
diff --git a/meta/recipes-core/coreutils/coreutils_9.0.bb b/meta/recipes-core/coreutils/coreutils_9.0.bb
index 8b904fd56e..6a97c4d5cc 100644
--- a/meta/recipes-core/coreutils/coreutils_9.0.bb
+++ b/meta/recipes-core/coreutils/coreutils_9.0.bb
@@ -26,7 +26,7 @@ SRC_URI[sha256sum] = "ce30acdf4a41bc5bb30dd955e9eaa75fa216b4e3deb08889ed32433c7b
 # http://git.savannah.gnu.org/cgit/coreutils.git/commit/?id=v8.27-101-gf5d7c0842
 # runcon is not really a sandbox command, use `runcon ... setsid ...` to avoid this particular issue.
-CVE_CHECK_WHITELIST += "CVE-2016-2781"
+CVE_CHECK_IGNORE += "CVE-2016-2781"
 EXTRA_OECONF:class-target = "--enable-install-program=arch,hostname --libexecdir=${libdir}"
 EXTRA_OECONF:class-nativesdk = "--enable-install-program=arch,hostname"
diff --git a/meta/recipes-core/glibc/glibc_2.35.bb b/meta/recipes-core/glibc/glibc_2.35.bb
index b785b61154..6ea5b1efb5 100644
--- a/meta/recipes-core/glibc/glibc_2.35.bb
+++ b/meta/recipes-core/glibc/glibc_2.35.bb
@@ -1,20 +1,20 @@
 require glibc.inc
 require glibc-version.inc
-CVE_CHECK_WHITELIST += "CVE-2020-10029 CVE-2021-27645"
+CVE_CHECK_IGNORE += "CVE-2020-10029 CVE-2021-27645"
 # glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010022
 # glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010023
 # glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010024
 # Upstream glibc maintainers dispute there is any issue and have no plans to address it further.
 # "this is being treated as a non-security bug and no real threat."
-CVE_CHECK_WHITELIST += "CVE-2019-1010022 CVE-2019-1010023 CVE-2019-1010024"
+CVE_CHECK_IGNORE += "CVE-2019-1010022 CVE-2019-1010023 CVE-2019-1010024"
 # glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010025
 # Allows for ASLR bypass so can bypass some hardening, not an exploit in itself, may allow
 # easier access for another. "ASLR bypass itself is not a vulnerability."
 # Potential patch at https://sourceware.org/bugzilla/show_bug.cgi?id=22853
-CVE_CHECK_WHITELIST += "CVE-2019-1010025"
+CVE_CHECK_IGNORE += "CVE-2019-1010025"
 DEPENDS += "gperf-native bison-native make-native"
diff --git a/meta/recipes-core/meta/target-sdk-provides-dummy.bb b/meta/recipes-core/meta/target-sdk-provides-dummy.bb
index e3beeb796c..849407cca5 100644
--- a/meta/recipes-core/meta/target-sdk-provides-dummy.bb
+++ b/meta/recipes-core/meta/target-sdk-provides-dummy.bb
@@ -58,4 +58,4 @@ DUMMYPROVIDES = "\
 require dummy-sdk-package.inc
-SSTATE_DUPWHITELIST += "${PKGDATA_DIR}/${PN} ${PKGDATA_DIR}/runtime/${PN}"
+SSTATE_ALLOW_OVERLAP_FILES += "${PKGDATA_DIR}/${PN} ${PKGDATA_DIR}/runtime/${PN}"

diff --git a/meta/recipes-core/coreutils/coreutils_9.0.bb b/meta/recipes-core/coreutils/coreutils_9.0.bb index 8b904fd56e..6a97c4d5cc 100644 --- a/meta/recipes-core/coreutils/coreutils_9.0.bb +++ b/meta/recipes-core/coreutils/coreutils_9.0.bb
@@ -26,7 +26,7 @@ SRC_URI[sha256sum] = "ce30acdf4a41bc5bb30dd955e9eaa75fa216b4e3deb08889ed32433c7b
26		26
27	# http://git.savannah.gnu.org/cgit/coreutils.git/commit/?id=v8.27-101-gf5d7c0842	27	# http://git.savannah.gnu.org/cgit/coreutils.git/commit/?id=v8.27-101-gf5d7c0842
28	# runcon is not really a sandbox command, use `runcon ... setsid ...` to avoid this particular issue.	28	# runcon is not really a sandbox command, use `runcon ... setsid ...` to avoid this particular issue.
29	CVE_CHECK_WHITELIST += "CVE-2016-2781"	29	CVE_CHECK_IGNORE += "CVE-2016-2781"
30		30
31	EXTRA_OECONF:class-target = "--enable-install-program=arch,hostname --libexecdir=${libdir}"	31	EXTRA_OECONF:class-target = "--enable-install-program=arch,hostname --libexecdir=${libdir}"
32	EXTRA_OECONF:class-nativesdk = "--enable-install-program=arch,hostname"	32	EXTRA_OECONF:class-nativesdk = "--enable-install-program=arch,hostname"


diff --git a/meta/recipes-core/glibc/glibc_2.35.bb b/meta/recipes-core/glibc/glibc_2.35.bb index b785b61154..6ea5b1efb5 100644 --- a/meta/recipes-core/glibc/glibc_2.35.bb +++ b/meta/recipes-core/glibc/glibc_2.35.bb
@@ -1,20 +1,20 @@
1	require glibc.inc	1	require glibc.inc
2	require glibc-version.inc	2	require glibc-version.inc
3		3
4	CVE_CHECK_WHITELIST += "CVE-2020-10029 CVE-2021-27645"	4	CVE_CHECK_IGNORE += "CVE-2020-10029 CVE-2021-27645"
5		5
6	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010022	6	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010022
7	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010023	7	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010023
8	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010024	8	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010024
9	# Upstream glibc maintainers dispute there is any issue and have no plans to address it further.	9	# Upstream glibc maintainers dispute there is any issue and have no plans to address it further.
10	# "this is being treated as a non-security bug and no real threat."	10	# "this is being treated as a non-security bug and no real threat."
11	CVE_CHECK_WHITELIST += "CVE-2019-1010022 CVE-2019-1010023 CVE-2019-1010024"	11	CVE_CHECK_IGNORE += "CVE-2019-1010022 CVE-2019-1010023 CVE-2019-1010024"
12		12
13	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010025	13	# glibc https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1010025
14	# Allows for ASLR bypass so can bypass some hardening, not an exploit in itself, may allow	14	# Allows for ASLR bypass so can bypass some hardening, not an exploit in itself, may allow
15	# easier access for another. "ASLR bypass itself is not a vulnerability."	15	# easier access for another. "ASLR bypass itself is not a vulnerability."
16	# Potential patch at https://sourceware.org/bugzilla/show_bug.cgi?id=22853	16	# Potential patch at https://sourceware.org/bugzilla/show_bug.cgi?id=22853
17	CVE_CHECK_WHITELIST += "CVE-2019-1010025"	17	CVE_CHECK_IGNORE += "CVE-2019-1010025"
18		18
19	DEPENDS += "gperf-native bison-native make-native"	19	DEPENDS += "gperf-native bison-native make-native"
20		20


diff --git a/meta/recipes-core/meta/target-sdk-provides-dummy.bb b/meta/recipes-core/meta/target-sdk-provides-dummy.bb index e3beeb796c..849407cca5 100644 --- a/meta/recipes-core/meta/target-sdk-provides-dummy.bb +++ b/meta/recipes-core/meta/target-sdk-provides-dummy.bb
@@ -58,4 +58,4 @@ DUMMYPROVIDES = "\
58		58
59	require dummy-sdk-package.inc	59	require dummy-sdk-package.inc
60		60
61	SSTATE_DUPWHITELIST += "${PKGDATA_DIR}/${PN} ${PKGDATA_DIR}/runtime/${PN}"	61	SSTATE_ALLOW_OVERLAP_FILES += "${PKGDATA_DIR}/${PN} ${PKGDATA_DIR}/runtime/${PN}"