linux-yocto/6.16: update CVE exclusions (6.16.9)

Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 1 changes (1 new | 0 updated): - 1 new CVEs: CVE-2025-11135 - 0 updated CVEs: Date: Mon, 29 Sep 2025 01:40:51 +0000 ] (From OE-Core rev: c764baf02d9a0291acb5f4a70a2f86a56dc308be) Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Bruce Ashfield <bruce.ashfield@gmail.com> 2025-09-29 14:59:28 -0400
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2025-10-01 10:52:54 +0100
commit: 07ec78711a3409cf035468edb37e1b32b5daa16f (patch)
tree: 2a52cf89c2dabe9c173d1aa5877db1aeb3752614
parent: 1d37a5e4e98e96f6207eee3267affe6d50f92c87 (diff)
download: poky-07ec78711a3409cf035468edb37e1b32b5daa16f.tar.gz
1 files changed, 53 insertions, 5 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.16.inc b/meta/recipes-kernel/linux/cve-exclusion_6.16.inc
index a6d72242e2..17776b59a0 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.16.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.16.inc
@@ -1,11 +1,11 @@
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2025-09-22 03:24:59.110083+00:00 for kernel version 6.16.8
+# Generated at 2025-09-29 01:46:30.994598+00:00 for kernel version 6.16.9
-# From linux_kernel_cves cve_2025-09-22_0200Z-2-gd662e5ed470
+# From linux_kernel_cves cve_2025-09-29_0100Z
 python check_kernel_cve_status_version() {
-    this_version = "6.16.8"
+    this_version = "6.16.9"
    kernel_version = d.getVar("LINUX_VERSION")
    if kernel_version != this_version:
        bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -4984,8 +4984,6 @@ CVE_STATUS[CVE-2022-50401] = "fixed-version: Fixed from version 6.2"
 CVE_STATUS[CVE-2022-50402] = "fixed-version: Fixed from version 6.2"
-CVE_STATUS[CVE-2022-50403] = "fixed-version: Fixed from version 6.2"
 CVE_STATUS[CVE-2022-50404] = "fixed-version: Fixed from version 6.2"
 CVE_STATUS[CVE-2022-50405] = "fixed-version: Fixed from version 6.2"
@@ -12944,6 +12942,8 @@ CVE_STATUS[CVE-2024-58239] = "fixed-version: Fixed from version 6.8"
 CVE_STATUS[CVE-2024-58240] = "fixed-version: Fixed from version 6.8"
+CVE_STATUS[CVE-2024-58241] = "fixed-version: Fixed from version 6.12"
 CVE_STATUS[CVE-2025-21629] = "fixed-version: Fixed from version 6.13"
 CVE_STATUS[CVE-2025-21631] = "fixed-version: Fixed from version 6.13"
@@ -16348,6 +16348,54 @@ CVE_STATUS[CVE-2025-39865] = "cpe-stable-backport: Backported in 6.16.6"
 CVE_STATUS[CVE-2025-39866] = "cpe-stable-backport: Backported in 6.16.6"
+CVE_STATUS[CVE-2025-39867] = "fixed-version: only affects 6.17rc1 onwards"
+CVE_STATUS[CVE-2025-39868] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39869] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39870] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39871] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39872] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39873] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39874] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39875] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39876] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39877] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39878] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39879] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39880] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39881] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39882] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39883] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39884] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39885] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39886] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39887] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39888] = "cpe-stable-backport: Backported in 6.16.8"
+CVE_STATUS[CVE-2025-39889] = "fixed-version: Fixed from version 6.15"
+CVE_STATUS[CVE-2025-39890] = "fixed-version: Fixed from version 6.16"
 CVE_STATUS[CVE-2025-39930] = "fixed-version: Fixed from version 6.15"
 CVE_STATUS[CVE-2025-39989] = "fixed-version: Fixed from version 6.15"
author	Bruce Ashfield <bruce.ashfield@gmail.com>	2025-09-29 14:59:28 -0400
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2025-10-01 10:52:54 +0100
commit	07ec78711a3409cf035468edb37e1b32b5daa16f (patch)
tree	2a52cf89c2dabe9c173d1aa5877db1aeb3752614
parent	1d37a5e4e98e96f6207eee3267affe6d50f92c87 (diff)
download	poky-07ec78711a3409cf035468edb37e1b32b5daa16f.tar.gz

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.16.inc b/meta/recipes-kernel/linux/cve-exclusion_6.16.inc index a6d72242e2..17776b59a0 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.16.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.16.inc
@@ -1,11 +1,11 @@
1		1
2	# Auto-generated CVE metadata, DO NOT EDIT BY HAND.	2	# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3	# Generated at 2025-09-22 03:24:59.110083+00:00 for kernel version 6.16.8	3	# Generated at 2025-09-29 01:46:30.994598+00:00 for kernel version 6.16.9
4	# From linux_kernel_cves cve_2025-09-22_0200Z-2-gd662e5ed470	4	# From linux_kernel_cves cve_2025-09-29_0100Z
5		5
6		6
7	python check_kernel_cve_status_version() {	7	python check_kernel_cve_status_version() {
8	this_version = "6.16.8"	8	this_version = "6.16.9"
9	kernel_version = d.getVar("LINUX_VERSION")	9	kernel_version = d.getVar("LINUX_VERSION")
10	if kernel_version != this_version:	10	if kernel_version != this_version:
11	bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))	11	bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -4984,8 +4984,6 @@ CVE_STATUS[CVE-2022-50401] = "fixed-version: Fixed from version 6.2"
4984		4984
4985	CVE_STATUS[CVE-2022-50402] = "fixed-version: Fixed from version 6.2"	4985	CVE_STATUS[CVE-2022-50402] = "fixed-version: Fixed from version 6.2"
4986		4986
4987	CVE_STATUS[CVE-2022-50403] = "fixed-version: Fixed from version 6.2"
4988
4989	CVE_STATUS[CVE-2022-50404] = "fixed-version: Fixed from version 6.2"	4987	CVE_STATUS[CVE-2022-50404] = "fixed-version: Fixed from version 6.2"
4990		4988
4991	CVE_STATUS[CVE-2022-50405] = "fixed-version: Fixed from version 6.2"	4989	CVE_STATUS[CVE-2022-50405] = "fixed-version: Fixed from version 6.2"
@@ -12944,6 +12942,8 @@ CVE_STATUS[CVE-2024-58239] = "fixed-version: Fixed from version 6.8"
12944		12942
12945	CVE_STATUS[CVE-2024-58240] = "fixed-version: Fixed from version 6.8"	12943	CVE_STATUS[CVE-2024-58240] = "fixed-version: Fixed from version 6.8"
12946		12944
		12945	CVE_STATUS[CVE-2024-58241] = "fixed-version: Fixed from version 6.12"
		12946
12947	CVE_STATUS[CVE-2025-21629] = "fixed-version: Fixed from version 6.13"	12947	CVE_STATUS[CVE-2025-21629] = "fixed-version: Fixed from version 6.13"
12948		12948
12949	CVE_STATUS[CVE-2025-21631] = "fixed-version: Fixed from version 6.13"	12949	CVE_STATUS[CVE-2025-21631] = "fixed-version: Fixed from version 6.13"
@@ -16348,6 +16348,54 @@ CVE_STATUS[CVE-2025-39865] = "cpe-stable-backport: Backported in 6.16.6"
16348		16348
16349	CVE_STATUS[CVE-2025-39866] = "cpe-stable-backport: Backported in 6.16.6"	16349	CVE_STATUS[CVE-2025-39866] = "cpe-stable-backport: Backported in 6.16.6"
16350		16350
		16351	CVE_STATUS[CVE-2025-39867] = "fixed-version: only affects 6.17rc1 onwards"
		16352
		16353	CVE_STATUS[CVE-2025-39868] = "cpe-stable-backport: Backported in 6.16.8"
		16354
		16355	CVE_STATUS[CVE-2025-39869] = "cpe-stable-backport: Backported in 6.16.8"
		16356
		16357	CVE_STATUS[CVE-2025-39870] = "cpe-stable-backport: Backported in 6.16.8"
		16358
		16359	CVE_STATUS[CVE-2025-39871] = "cpe-stable-backport: Backported in 6.16.8"
		16360
		16361	CVE_STATUS[CVE-2025-39872] = "cpe-stable-backport: Backported in 6.16.8"
		16362
		16363	CVE_STATUS[CVE-2025-39873] = "cpe-stable-backport: Backported in 6.16.8"
		16364
		16365	CVE_STATUS[CVE-2025-39874] = "cpe-stable-backport: Backported in 6.16.8"
		16366
		16367	CVE_STATUS[CVE-2025-39875] = "cpe-stable-backport: Backported in 6.16.8"
		16368
		16369	CVE_STATUS[CVE-2025-39876] = "cpe-stable-backport: Backported in 6.16.8"
		16370
		16371	CVE_STATUS[CVE-2025-39877] = "cpe-stable-backport: Backported in 6.16.8"
		16372
		16373	CVE_STATUS[CVE-2025-39878] = "cpe-stable-backport: Backported in 6.16.8"
		16374
		16375	CVE_STATUS[CVE-2025-39879] = "cpe-stable-backport: Backported in 6.16.8"
		16376
		16377	CVE_STATUS[CVE-2025-39880] = "cpe-stable-backport: Backported in 6.16.8"
		16378
		16379	CVE_STATUS[CVE-2025-39881] = "cpe-stable-backport: Backported in 6.16.8"
		16380
		16381	CVE_STATUS[CVE-2025-39882] = "cpe-stable-backport: Backported in 6.16.8"
		16382
		16383	CVE_STATUS[CVE-2025-39883] = "cpe-stable-backport: Backported in 6.16.8"
		16384
		16385	CVE_STATUS[CVE-2025-39884] = "cpe-stable-backport: Backported in 6.16.8"
		16386
		16387	CVE_STATUS[CVE-2025-39885] = "cpe-stable-backport: Backported in 6.16.8"
		16388
		16389	CVE_STATUS[CVE-2025-39886] = "cpe-stable-backport: Backported in 6.16.8"
		16390
		16391	CVE_STATUS[CVE-2025-39887] = "cpe-stable-backport: Backported in 6.16.8"
		16392
		16393	CVE_STATUS[CVE-2025-39888] = "cpe-stable-backport: Backported in 6.16.8"
		16394
		16395	CVE_STATUS[CVE-2025-39889] = "fixed-version: Fixed from version 6.15"
		16396
		16397	CVE_STATUS[CVE-2025-39890] = "fixed-version: Fixed from version 6.16"
		16398
16351	CVE_STATUS[CVE-2025-39930] = "fixed-version: Fixed from version 6.15"	16399	CVE_STATUS[CVE-2025-39930] = "fixed-version: Fixed from version 6.15"
16352		16400
16353	CVE_STATUS[CVE-2025-39989] = "fixed-version: Fixed from version 6.15"	16401	CVE_STATUS[CVE-2025-39989] = "fixed-version: Fixed from version 6.15"