summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBruce Ashfield <bruce.ashfield@gmail.com>2024-02-20 21:40:35 -0500
committerSteve Sakoman <steve@sakoman.com>2024-03-13 03:59:26 -1000
commited74dbe0c745ccb6d4a71b49462ccfc397100cab (patch)
tree46e5e0b11eacbecabcc1149a0ad2dde4846b945b
parentcbc50de8c7f5abd9aa185b2ae13927e4d6538b92 (diff)
downloadpoky-ed74dbe0c745ccb6d4a71b49462ccfc397100cab.tar.gz
linux-yocto/6.1: update CVE exclusions
Data pulled from: https://github.com/nluedtke/linux_kernel_cves 1/1 [ Author: Nicholas Luedtke Email: nicholas.luedtke@uwalumni.com Subject: Update 9Feb24 Date: Fri, 9 Feb 2024 18:02:45 -0500 ] (From OE-Core rev: 7b490b890f2bc54c76ae551e92a11fefec4ffec1) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat
-rw-r--r--meta/recipes-kernel/linux/cve-exclusion_6.1.inc104
1 files changed, 93 insertions, 11 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
index 45fcc7b260..cb48e4d88d 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
@@ -1,9 +1,9 @@
1 1
2# Auto-generated CVE metadata, DO NOT EDIT BY HAND. 2# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3# Generated at 2024-01-18 21:10:06.148505+00:00 for version 6.1.73 3# Generated at 2024-02-21 02:22:41.710563+00:00 for version 6.1.78
4 4
5python check_kernel_cve_status_version() { 5python check_kernel_cve_status_version() {
6 this_version = "6.1.73" 6 this_version = "6.1.78"
7 kernel_version = d.getVar("LINUX_VERSION") 7 kernel_version = d.getVar("LINUX_VERSION")
8 if kernel_version != this_version: 8 if kernel_version != this_version:
9 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) 9 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -3668,6 +3668,10 @@ CVE_STATUS[CVE-2021-3348] = "fixed-version: Fixed from version 5.11rc6"
3668 3668
3669CVE_STATUS[CVE-2021-33624] = "fixed-version: Fixed from version 5.13rc7" 3669CVE_STATUS[CVE-2021-33624] = "fixed-version: Fixed from version 5.13rc7"
3670 3670
3671CVE_STATUS[CVE-2021-33630] = "fixed-version: Fixed from version 5.4rc1"
3672
3673CVE_STATUS[CVE-2021-33631] = "cpe-stable-backport: Backported in 6.1.4"
3674
3671CVE_STATUS[CVE-2021-33655] = "fixed-version: Fixed from version 5.19rc6" 3675CVE_STATUS[CVE-2021-33655] = "fixed-version: Fixed from version 5.19rc6"
3672 3676
3673CVE_STATUS[CVE-2021-33656] = "fixed-version: Fixed from version 5.12rc1" 3677CVE_STATUS[CVE-2021-33656] = "fixed-version: Fixed from version 5.12rc1"
@@ -4420,7 +4424,7 @@ CVE_STATUS[CVE-2022-3636] = "fixed-version: Fixed from version 5.19rc1"
4420 4424
4421CVE_STATUS[CVE-2022-3640] = "fixed-version: Fixed from version 6.1rc4" 4425CVE_STATUS[CVE-2022-3640] = "fixed-version: Fixed from version 6.1rc4"
4422 4426
4423# CVE-2022-36402 has no known resolution 4427CVE_STATUS[CVE-2022-36402] = "cpe-stable-backport: Backported in 6.1.50"
4424 4428
4425# CVE-2022-3642 has no known resolution 4429# CVE-2022-3642 has no known resolution
4426 4430
@@ -4958,7 +4962,7 @@ CVE_STATUS[CVE-2023-35824] = "cpe-stable-backport: Backported in 6.1.28"
4958 4962
4959CVE_STATUS[CVE-2023-35826] = "cpe-stable-backport: Backported in 6.1.28" 4963CVE_STATUS[CVE-2023-35826] = "cpe-stable-backport: Backported in 6.1.28"
4960 4964
4961# CVE-2023-35827 needs backporting (fixed from 6.1.59) 4965CVE_STATUS[CVE-2023-35827] = "cpe-stable-backport: Backported in 6.1.59"
4962 4966
4963CVE_STATUS[CVE-2023-35828] = "cpe-stable-backport: Backported in 6.1.28" 4967CVE_STATUS[CVE-2023-35828] = "cpe-stable-backport: Backported in 6.1.28"
4964 4968
@@ -5032,7 +5036,7 @@ CVE_STATUS[CVE-2023-4015] = "cpe-stable-backport: Backported in 6.1.43"
5032 5036
5033CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45" 5037CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45"
5034 5038
5035# CVE-2023-40791 needs backporting (fixed from 6.5rc6) 5039CVE_STATUS[CVE-2023-40791] = "fixed-version: only affects 6.3rc1 onwards"
5036 5040
5037CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45" 5041CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45"
5038 5042
@@ -5100,9 +5104,15 @@ CVE_STATUS[CVE-2023-4611] = "fixed-version: only affects 6.4rc1 onwards"
5100 5104
5101CVE_STATUS[CVE-2023-4623] = "cpe-stable-backport: Backported in 6.1.53" 5105CVE_STATUS[CVE-2023-4623] = "cpe-stable-backport: Backported in 6.1.53"
5102 5106
5103# CVE-2023-46813 needs backporting (fixed from 6.1.60) 5107CVE_STATUS[CVE-2023-46343] = "cpe-stable-backport: Backported in 6.1.60"
5108
5109CVE_STATUS[CVE-2023-46813] = "cpe-stable-backport: Backported in 6.1.60"
5104 5110
5105# CVE-2023-46862 needs backporting (fixed from 6.6) 5111CVE_STATUS[CVE-2023-46838] = "cpe-stable-backport: Backported in 6.1.75"
5112
5113CVE_STATUS[CVE-2023-46862] = "cpe-stable-backport: Backported in 6.1.61"
5114
5115# CVE-2023-47233 has no known resolution
5106 5116
5107CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" 5117CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1"
5108 5118
@@ -5110,10 +5120,14 @@ CVE_STATUS[CVE-2023-4881] = "cpe-stable-backport: Backported in 6.1.54"
5110 5120
5111CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54" 5121CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54"
5112 5122
5113# CVE-2023-50431 has no known resolution 5123CVE_STATUS[CVE-2023-50431] = "cpe-stable-backport: Backported in 6.1.75"
5114 5124
5115CVE_STATUS[CVE-2023-5090] = "cpe-stable-backport: Backported in 6.1.62" 5125CVE_STATUS[CVE-2023-5090] = "cpe-stable-backport: Backported in 6.1.62"
5116 5126
5127CVE_STATUS[CVE-2023-51042] = "cpe-stable-backport: Backported in 6.1.47"
5128
5129CVE_STATUS[CVE-2023-51043] = "cpe-stable-backport: Backported in 6.1.40"
5130
5117CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.1.57" 5131CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.1.57"
5118 5132
5119CVE_STATUS[CVE-2023-51779] = "cpe-stable-backport: Backported in 6.1.70" 5133CVE_STATUS[CVE-2023-51779] = "cpe-stable-backport: Backported in 6.1.70"
@@ -5128,11 +5142,13 @@ CVE_STATUS[CVE-2023-51782] = "cpe-stable-backport: Backported in 6.1.69"
5128 5142
5129CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.1.56" 5143CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.1.56"
5130 5144
5145CVE_STATUS[CVE-2023-52340] = "cpe-stable-backport: Backported in 6.1.73"
5146
5131CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56" 5147CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56"
5132 5148
5133CVE_STATUS[CVE-2023-5633] = "fixed-version: only affects 6.2 onwards" 5149CVE_STATUS[CVE-2023-5633] = "fixed-version: only affects 6.2 onwards"
5134 5150
5135# CVE-2023-5717 needs backporting (fixed from 6.1.60) 5151CVE_STATUS[CVE-2023-5717] = "cpe-stable-backport: Backported in 6.1.60"
5136 5152
5137CVE_STATUS[CVE-2023-5972] = "fixed-version: only affects 6.2rc1 onwards" 5153CVE_STATUS[CVE-2023-5972] = "fixed-version: only affects 6.2rc1 onwards"
5138 5154
@@ -5146,8 +5162,12 @@ CVE_STATUS[CVE-2023-6121] = "cpe-stable-backport: Backported in 6.1.65"
5146 5162
5147CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.1.54" 5163CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.1.54"
5148 5164
5165CVE_STATUS[CVE-2023-6200] = "fixed-version: only affects 6.6rc1 onwards"
5166
5149# CVE-2023-6238 has no known resolution 5167# CVE-2023-6238 has no known resolution
5150 5168
5169# CVE-2023-6240 has no known resolution
5170
5151# CVE-2023-6270 has no known resolution 5171# CVE-2023-6270 has no known resolution
5152 5172
5153# CVE-2023-6356 has no known resolution 5173# CVE-2023-6356 has no known resolution
@@ -5164,7 +5184,7 @@ CVE_STATUS[CVE-2023-6546] = "cpe-stable-backport: Backported in 6.1.47"
5164 5184
5165CVE_STATUS[CVE-2023-6606] = "cpe-stable-backport: Backported in 6.1.70" 5185CVE_STATUS[CVE-2023-6606] = "cpe-stable-backport: Backported in 6.1.70"
5166 5186
5167# CVE-2023-6610 needs backporting (fixed from 6.7rc7) 5187CVE_STATUS[CVE-2023-6610] = "cpe-stable-backport: Backported in 6.1.74"
5168 5188
5169CVE_STATUS[CVE-2023-6622] = "cpe-stable-backport: Backported in 6.1.68" 5189CVE_STATUS[CVE-2023-6622] = "cpe-stable-backport: Backported in 6.1.68"
5170 5190
@@ -5172,6 +5192,8 @@ CVE_STATUS[CVE-2023-6679] = "fixed-version: only affects 6.7rc1 onwards"
5172 5192
5173CVE_STATUS[CVE-2023-6817] = "cpe-stable-backport: Backported in 6.1.68" 5193CVE_STATUS[CVE-2023-6817] = "cpe-stable-backport: Backported in 6.1.68"
5174 5194
5195CVE_STATUS[CVE-2023-6915] = "cpe-stable-backport: Backported in 6.1.74"
5196
5175CVE_STATUS[CVE-2023-6931] = "cpe-stable-backport: Backported in 6.1.68" 5197CVE_STATUS[CVE-2023-6931] = "cpe-stable-backport: Backported in 6.1.68"
5176 5198
5177CVE_STATUS[CVE-2023-6932] = "cpe-stable-backport: Backported in 6.1.66" 5199CVE_STATUS[CVE-2023-6932] = "cpe-stable-backport: Backported in 6.1.66"
@@ -5186,5 +5208,65 @@ CVE_STATUS[CVE-2024-0193] = "fixed-version: only affects 6.5rc6 onwards"
5186 5208
5187CVE_STATUS[CVE-2024-0443] = "fixed-version: only affects 6.2rc1 onwards" 5209CVE_STATUS[CVE-2024-0443] = "fixed-version: only affects 6.2rc1 onwards"
5188 5210
5189# Skipping dd=CVE-2023-1476, no affected_versions 5211CVE_STATUS[CVE-2024-0562] = "fixed-version: Fixed from version 6.0rc3"
5212
5213# CVE-2024-0564 has no known resolution
5214
5215CVE_STATUS[CVE-2024-0565] = "cpe-stable-backport: Backported in 6.1.69"
5216
5217CVE_STATUS[CVE-2024-0582] = "fixed-version: only affects 6.4rc1 onwards"
5218
5219CVE_STATUS[CVE-2024-0584] = "cpe-stable-backport: Backported in 6.1.66"
5220
5221CVE_STATUS[CVE-2024-0607] = "cpe-stable-backport: Backported in 6.1.64"
5222
5223CVE_STATUS[CVE-2024-0639] = "cpe-stable-backport: Backported in 6.1.39"
5224
5225CVE_STATUS[CVE-2024-0641] = "cpe-stable-backport: Backported in 6.1.57"
5226
5227CVE_STATUS[CVE-2024-0646] = "cpe-stable-backport: Backported in 6.1.69"
5228
5229CVE_STATUS[CVE-2024-0775] = "cpe-stable-backport: Backported in 6.1.29"
5230
5231# CVE-2024-0841 has no known resolution
5232
5233CVE_STATUS[CVE-2024-1085] = "cpe-stable-backport: Backported in 6.1.75"
5234
5235CVE_STATUS[CVE-2024-1086] = "cpe-stable-backport: Backported in 6.1.76"
5236
5237# CVE-2024-1312 needs backporting (fixed from 6.5rc4)
5238
5239# CVE-2024-21803 has no known resolution
5240
5241# CVE-2024-22099 has no known resolution
5242
5243# CVE-2024-22386 has no known resolution
5244
5245CVE_STATUS[CVE-2024-22705] = "cpe-stable-backport: Backported in 6.1.71"
5246
5247# CVE-2024-23196 has no known resolution
5248
5249# CVE-2024-23307 has no known resolution
5250
5251# CVE-2024-23848 has no known resolution
5252
5253CVE_STATUS[CVE-2024-23849] = "cpe-stable-backport: Backported in 6.1.76"
5254
5255# CVE-2024-23850 has no known resolution
5256
5257# CVE-2024-23851 has no known resolution
5258
5259# CVE-2024-24855 has no known resolution
5260
5261# CVE-2024-24857 has no known resolution
5262
5263# CVE-2024-24858 has no known resolution
5264
5265# CVE-2024-24859 has no known resolution
5266
5267# CVE-2024-24860 has no known resolution
5268
5269# CVE-2024-24861 has no known resolution
5270
5271# CVE-2024-24864 has no known resolution
5190 5272
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-06-14 10:37:11 +0000