linux/poky.git/meta/recipes-devtools/qemu, branch hardknott-next Mirror of git.yoctoproject.org/poky https://git.enea.com/cgit/linux/poky.git/atom?h=hardknott-next 2021-06-02T22:32:44+00:00 qemu: Exclude CVE-2020-3550[4/5/6] from cve-check 2021-06-02T22:32:44+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-05-30T23:23:19+00:00 urn:sha1:e86a1ca689b80355dd852ae9a7a4511b14b929de CVE's affect ESP (NCR53C90) part of chip STP2000 (Master I/O). On Sparc32 it is the NCR89C100 part of the chip. On Macintosh Quadra it is NCR53C96. Both are not supported by yocto. (From OE-Core rev: e3ded54f9fd089382e6304604ca02d2305f16f21) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: Exclude CVE-2018-18438 from cve-check 2021-05-22T09:01:02+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2021-05-10T12:36:02+00:00 urn:sha1:0501beda3dd3b5e3e55922996444d37f7bb8754d The issues were investigated and found not to be an issue therefore exclude from checks. (From OE-Core rev: 7c7c3f3dd3bf7dc34f26d931acf562e93c45e807) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: Exclude CVE-2007-0998 from cve-check 2021-05-22T09:01:02+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2021-05-10T11:42:25+00:00 urn:sha1:228acdd221374aa6597cf92c2a6211c06cb3a0db The CVE applies to the built-in VNC server but we don't enable this by default. (From OE-Core rev: 9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: Exclude CVE-2017-5957 from cve-check 2021-05-22T09:01:02+00:00 Richard Purdie richard.purdie@linuxfoundation.org 2021-05-10T11:17:15+00:00 urn:sha1:d6573b33aaa6cb31c9dafb64a26cc44261d367cc The CVE applies to virglrender before 0.6.0 which we don't have. (From OE-Core rev: d8df88018fc90b2ff039ef58249f8581d22b1cc6) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 9b5355375d028577de0b98e05992de6a088cb972) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2021-3392 2021-05-11T11:02:29+00:00 Anuj Mittal anuj.mittal@intel.com 2021-05-05T02:37:44+00:00 urn:sha1:1cbca26e04364bf6f1a2804acf37119a84f6c2c7 (From OE-Core rev: 147bed3b6c591c2b20b4ac31f806ee153cc23322) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit a0257aee7d80fc67c92877e2de1e4b98ece54174) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2021-20263 2021-05-11T11:02:29+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-05-03T14:10:13+00:00 urn:sha1:b75787562e59b3f6fd54cdf668e5665dd708f2e1 virtiofs: drop remapped security.capability xattr as needed (From OE-Core rev: 56f948329e2780ce8845646b0bb499d82e197d85) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 7ad71de89dd60700cbaad2df1937bc3d743112da) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2020-27821 2021-05-11T11:02:29+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-05-03T14:10:12+00:00 urn:sha1:44de79f8f53aa13d1356bc30efe09d84833b8937 memory: clamp cached translation in case it points to an MMIO region (From OE-Core rev: 5240cce285d3baea513da0fc577b69e6f078a527) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit df92b3359743ed1837fa57df8035d121f5c5676b) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2021-20257 2021-04-30T13:37:26+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-04-23T04:45:05+00:00 urn:sha1:5c1a29e6deec8f92ac43363bd72439aec7e27721 (From OE-Core rev: 5b66ff7972951db973d12f3dae6ccecf3bc29e56) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 547ac986a74cfcae39b691ebb92aadc8436443ea) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2021-3416 2021-04-30T13:37:26+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-04-23T04:45:04+00:00 urn:sha1:381aebe82f1f6fcc26b47966bc8520dbb1476961 (From OE-Core rev: 7a3ce8a79a6c682e1b38f757eb68534e0ce5589d) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit e2b5bc11d1b26b73b62e1a63cb75572793282dcb) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> qemu: fix CVE-2021-3409 2021-04-30T13:37:26+00:00 Sakib Sajal sakib.sajal@windriver.com 2021-04-23T04:45:03+00:00 urn:sha1:4de4010f3fe57afca7c702a7eafa51c6aa8ceb47 (From OE-Core rev: e6fd06544018f37943d4758ea57206f994cd04d3) Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit e2fb8c15a64e1f5db678e8e95924da8c88a188c0) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>