diff options
Diffstat (limited to 'meta/recipes-kernel/linux/cve-exclusion.inc')
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion.inc | 34 |
1 files changed, 34 insertions, 0 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc new file mode 100644 index 0000000000..7857633943 --- /dev/null +++ b/meta/recipes-kernel/linux/cve-exclusion.inc | |||
@@ -0,0 +1,34 @@ | |||
1 | CVE_STATUS[CVE-1999-0656] = "not-applicable-config: specific to ugidd, part of the old user-mode NFS server" | ||
2 | |||
3 | CVE_STATUS[CVE-2006-2932] = "not-applicable-platform: specific to RHEL" | ||
4 | |||
5 | CVE_STATUS[CVE-2007-2764] = "not-applicable-platform: specific to Sun/Brocade SilkWorm switches" | ||
6 | |||
7 | CVE_STATUS[CVE-2007-4998] = "cpe-incorrect: a historic cp bug, no longer an issue as per https://bugzilla.redhat.com/show_bug.cgi?id=356471#c5" | ||
8 | |||
9 | CVE_STATUS[CVE-2008-2544] = "disputed: not an issue as per https://bugzilla.redhat.com/show_bug.cgi?id=449089#c22" | ||
10 | |||
11 | CVE_STATUS[CVE-2010-0298] = "fixed-version: 2.6.34 (1871c6)" | ||
12 | |||
13 | CVE_STATUS[CVE-2014-2648] = "cpe-incorrect: not Linux" | ||
14 | |||
15 | CVE_STATUS[CVE-2016-0774] = "ignored: result of incomplete backport" | ||
16 | |||
17 | CVE_STATUS[CVE-2016-3695] = "not-applicable-platform: specific to RHEL with securelevel patches" | ||
18 | |||
19 | CVE_STATUS[CVE-2016-3699] = "not-applicable-platform: specific to RHEL with securelevel patches" | ||
20 | |||
21 | CVE_STATUS[CVE-2017-6264] = "not-applicable-platform: Android specific" | ||
22 | |||
23 | CVE_STATUS[CVE-2017-1000377] = "not-applicable-platform: GRSecurity specific" | ||
24 | |||
25 | CVE_STATUS[CVE-2018-6559] = "not-applicable-platform: Issue only affects Ubuntu" | ||
26 | |||
27 | CVE_STATUS[CVE-2020-11935] = "not-applicable-config: Issue only affects aufs, which is not in linux-yocto" | ||
28 | |||
29 | # Introduced in version v6.1 7b88bda3761b95856cf97822efe8281c8100067b | ||
30 | # Patched in kernel since v6.2 4a625ceee8a0ab0273534cb6b432ce6b331db5ee | ||
31 | # But, the CVE is disputed: | ||
32 | CVE_STATUS[CVE-2023-23005] = "disputed: There are no realistic cases \ | ||
33 | in which a user can cause the alloc_memory_type error case to be reached. \ | ||
34 | See: https://bugzilla.suse.com/show_bug.cgi?id=1208844#c2" | ||