summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBruce Ashfield <bruce.ashfield@gmail.com>2025-08-13 16:49:16 -0400
committerSteve Sakoman <steve@sakoman.com>2025-09-22 12:21:23 -0700
commit22b561673c6c36bfa08176b1f5e8d005159b0821 (patch)
treeb19e11da3e34fb4c69c7688f333c979807ea863a
parent6694328818bb730b1e32dafb58f8c83d67e622e8 (diff)
downloadpoky-22b561673c6c36bfa08176b1f5e8d005159b0821.tar.gz
linux-yocto/6.12: update CVE exclusions (6.12.39)
Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 4 changes (1 new | 3 updated): - 1 new CVEs: CVE-2025-46002 - 3 updated CVEs: CVE-2025-5752, CVE-2025-6717, CVE-2025-7397 Date: Fri, 18 Jul 2025 14:11:28 +0000 ] (From OE-Core rev: 6cc4b2e6ded0a717a060a9101baf9b8bdf6dc3e0) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit a58b2c6f20ad6257036e144bee2eec1375e1a799) Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat
-rw-r--r--meta/recipes-kernel/linux/cve-exclusion_6.12.inc16
1 files changed, 8 insertions, 8 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
index 924e3b90ca..b408071a67 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
@@ -1,12 +1,12 @@
1 1
2# Auto-generated CVE metadata, DO NOT EDIT BY HAND. 2# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3# Generated at 2025-07-15 14:54:42.649263+00:00 for kernel version 6.12.38 3# Generated at 2025-07-18 14:17:49.367230+00:00 for kernel version 6.12.39
4# From linux_kernel_cves cve_2025-07-15_1400Z-4-gc77733e1fe6 4# From linux_kernel_cves cve_2025-07-18_1400Z
5 5
6 6
7 7
8python check_kernel_cve_status_version() { 8python check_kernel_cve_status_version() {
9 this_version = "6.12.38" 9 this_version = "6.12.39"
10 kernel_version = d.getVar("LINUX_VERSION") 10 kernel_version = d.getVar("LINUX_VERSION")
11 if kernel_version != this_version: 11 if kernel_version != this_version:
12 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) 12 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -4133,7 +4133,7 @@ CVE_STATUS[CVE-2022-49962] = "fixed-version: Fixed from version 6.0"
4133 4133
4134CVE_STATUS[CVE-2022-49963] = "fixed-version: Fixed from version 6.0" 4134CVE_STATUS[CVE-2022-49963] = "fixed-version: Fixed from version 6.0"
4135 4135
4136CVE_STATUS[CVE-2022-49964] = "fixed-version: Fixed from version 6.0" 4136CVE_STATUS[CVE-2022-49964] = "fixed-version: Fixed from version 5.19.7"
4137 4137
4138CVE_STATUS[CVE-2022-49965] = "fixed-version: Fixed from version 6.0" 4138CVE_STATUS[CVE-2022-49965] = "fixed-version: Fixed from version 6.0"
4139 4139
@@ -5583,8 +5583,6 @@ CVE_STATUS[CVE-2023-52999] = "fixed-version: Fixed from version 6.2"
5583 5583
5584CVE_STATUS[CVE-2023-53000] = "fixed-version: Fixed from version 6.2" 5584CVE_STATUS[CVE-2023-53000] = "fixed-version: Fixed from version 6.2"
5585 5585
5586CVE_STATUS[CVE-2023-53001] = "fixed-version: Fixed from version 6.2"
5587
5588CVE_STATUS[CVE-2023-53002] = "fixed-version: Fixed from version 6.2" 5586CVE_STATUS[CVE-2023-53002] = "fixed-version: Fixed from version 6.2"
5589 5587
5590CVE_STATUS[CVE-2023-53003] = "fixed-version: Fixed from version 6.2" 5588CVE_STATUS[CVE-2023-53003] = "fixed-version: Fixed from version 6.2"
@@ -13673,7 +13671,7 @@ CVE_STATUS[CVE-2025-38065] = "cpe-stable-backport: Backported in 6.12.31"
13673 13671
13674CVE_STATUS[CVE-2025-38066] = "cpe-stable-backport: Backported in 6.12.31" 13672CVE_STATUS[CVE-2025-38066] = "cpe-stable-backport: Backported in 6.12.31"
13675 13673
13676# CVE-2025-38067 needs backporting (fixed from 6.15) 13674CVE_STATUS[CVE-2025-38067] = "cpe-stable-backport: Backported in 6.12.39"
13677 13675
13678CVE_STATUS[CVE-2025-38068] = "cpe-stable-backport: Backported in 6.12.31" 13676CVE_STATUS[CVE-2025-38068] = "cpe-stable-backport: Backported in 6.12.31"
13679 13677
@@ -13747,7 +13745,7 @@ CVE_STATUS[CVE-2025-38102] = "cpe-stable-backport: Backported in 6.12.34"
13747 13745
13748CVE_STATUS[CVE-2025-38103] = "cpe-stable-backport: Backported in 6.12.34" 13746CVE_STATUS[CVE-2025-38103] = "cpe-stable-backport: Backported in 6.12.34"
13749 13747
13750# CVE-2025-38104 needs backporting (fixed from 6.15) 13748CVE_STATUS[CVE-2025-38104] = "cpe-stable-backport: Backported in 6.12.39"
13751 13749
13752# CVE-2025-38105 needs backporting (fixed from 6.16rc1) 13750# CVE-2025-38105 needs backporting (fixed from 6.16rc1)
13753 13751
@@ -14237,6 +14235,8 @@ CVE_STATUS[CVE-2025-38347] = "cpe-stable-backport: Backported in 6.12.35"
14237 14235
14238CVE_STATUS[CVE-2025-38348] = "cpe-stable-backport: Backported in 6.12.35" 14236CVE_STATUS[CVE-2025-38348] = "cpe-stable-backport: Backported in 6.12.35"
14239 14237
14238CVE_STATUS[CVE-2025-38349] = "cpe-stable-backport: Backported in 6.12.39"
14239
14240CVE_STATUS[CVE-2025-38479] = "cpe-stable-backport: Backported in 6.12.23" 14240CVE_STATUS[CVE-2025-38479] = "cpe-stable-backport: Backported in 6.12.23"
14241 14241
14242CVE_STATUS[CVE-2025-38575] = "cpe-stable-backport: Backported in 6.12.23" 14242CVE_STATUS[CVE-2025-38575] = "cpe-stable-backport: Backported in 6.12.23"
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-10-04 09:30:09 +0000