summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRoss Burton <ross.burton@arm.com>2023-09-23 10:46:49 +0100
committerSteve Sakoman <steve@sakoman.com>2023-09-29 04:33:43 -1000
commit75a96da5966e450f0f118371a20ada13e0c15362 (patch)
treed5a83a8265eeaac54d650d8b61fc3a21bfd41190
parent529fa41487797cf4773c6572bf772a72914da93d (diff)
downloadpoky-75a96da5966e450f0f118371a20ada13e0c15362.tar.gz
linux-yocto: update CVE exclusions
(From OE-Core rev: 51ce40e9f994bcce5cd484dff5346b4dd2bff1fc) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat
-rw-r--r--meta/recipes-kernel/linux/cve-exclusion_6.1.inc157
1 files changed, 123 insertions, 34 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
index 4e809940db..1656ffc8b5 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
@@ -1,9 +1,9 @@
1 1
2# Auto-generated CVE metadata, DO NOT EDIT BY HAND. 2# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3# Generated at 2023-08-25 16:54:59.886795 for version 6.1.38" 3# Generated at 2023-09-23 10:45:45.248445 for version 6.1.46
4 4
5python check_kernel_cve_status_version() { 5python check_kernel_cve_status_version() {
6 this_version = "6.1.38" 6 this_version = "6.1.46"
7 kernel_version = d.getVar("LINUX_VERSION") 7 kernel_version = d.getVar("LINUX_VERSION")
8 if kernel_version != this_version: 8 if kernel_version != this_version:
9 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) 9 bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -4839,6 +4839,8 @@ CVE_CHECK_IGNORE += "CVE-2020-27194"
4839# fixed-version: Fixed after version 5.6rc4 4839# fixed-version: Fixed after version 5.6rc4
4840CVE_CHECK_IGNORE += "CVE-2020-2732" 4840CVE_CHECK_IGNORE += "CVE-2020-2732"
4841 4841
4842# CVE-2020-27418 has no known resolution
4843
4842# fixed-version: Fixed after version 5.10rc1 4844# fixed-version: Fixed after version 5.10rc1
4843CVE_CHECK_IGNORE += "CVE-2020-27673" 4845CVE_CHECK_IGNORE += "CVE-2020-27673"
4844 4846
@@ -6464,7 +6466,8 @@ CVE_CHECK_IGNORE += "CVE-2022-40768"
6464# fixed-version: Fixed after version 6.0rc4 6466# fixed-version: Fixed after version 6.0rc4
6465CVE_CHECK_IGNORE += "CVE-2022-4095" 6467CVE_CHECK_IGNORE += "CVE-2022-4095"
6466 6468
6467# CVE-2022-40982 has no known resolution 6469# cpe-stable-backport: Backported in 6.1.44
6470CVE_CHECK_IGNORE += "CVE-2022-40982"
6468 6471
6469# cpe-stable-backport: Backported in 6.1.4 6472# cpe-stable-backport: Backported in 6.1.4
6470CVE_CHECK_IGNORE += "CVE-2022-41218" 6473CVE_CHECK_IGNORE += "CVE-2022-41218"
@@ -6546,9 +6549,9 @@ CVE_CHECK_IGNORE += "CVE-2022-4382"
6546# fixed-version: Fixed after version 6.1rc1 6549# fixed-version: Fixed after version 6.1rc1
6547CVE_CHECK_IGNORE += "CVE-2022-43945" 6550CVE_CHECK_IGNORE += "CVE-2022-43945"
6548 6551
6549# CVE-2022-44032 has no known resolution 6552# CVE-2022-44032 needs backporting (fixed from 6.4rc1)
6550 6553
6551# CVE-2022-44033 has no known resolution 6554# CVE-2022-44033 needs backporting (fixed from 6.4rc1)
6552 6555
6553# CVE-2022-44034 has no known resolution 6556# CVE-2022-44034 has no known resolution
6554 6557
@@ -6561,13 +6564,16 @@ CVE_CHECK_IGNORE += "CVE-2022-45869"
6561 6564
6562# CVE-2022-45885 has no known resolution 6565# CVE-2022-45885 has no known resolution
6563 6566
6564# CVE-2022-45886 has no known resolution 6567# cpe-stable-backport: Backported in 6.1.33
6568CVE_CHECK_IGNORE += "CVE-2022-45886"
6565 6569
6566# CVE-2022-45887 has no known resolution 6570# cpe-stable-backport: Backported in 6.1.33
6571CVE_CHECK_IGNORE += "CVE-2022-45887"
6567 6572
6568# CVE-2022-45888 needs backporting (fixed from 6.2rc1) 6573# CVE-2022-45888 needs backporting (fixed from 6.2rc1)
6569 6574
6570# CVE-2022-45919 has no known resolution 6575# cpe-stable-backport: Backported in 6.1.33
6576CVE_CHECK_IGNORE += "CVE-2022-45919"
6571 6577
6572# fixed-version: Fixed after version 6.1 6578# fixed-version: Fixed after version 6.1
6573CVE_CHECK_IGNORE += "CVE-2022-45934" 6579CVE_CHECK_IGNORE += "CVE-2022-45934"
@@ -6629,7 +6635,8 @@ CVE_CHECK_IGNORE += "CVE-2022-48424"
6629# cpe-stable-backport: Backported in 6.1.33 6635# cpe-stable-backport: Backported in 6.1.33
6630CVE_CHECK_IGNORE += "CVE-2022-48425" 6636CVE_CHECK_IGNORE += "CVE-2022-48425"
6631 6637
6632# CVE-2022-48502 needs backporting (fixed from 6.1.40) 6638# cpe-stable-backport: Backported in 6.1.40
6639CVE_CHECK_IGNORE += "CVE-2022-48502"
6633 6640
6634# fixed-version: Fixed after version 5.0rc1 6641# fixed-version: Fixed after version 5.0rc1
6635CVE_CHECK_IGNORE += "CVE-2023-0030" 6642CVE_CHECK_IGNORE += "CVE-2023-0030"
@@ -6643,7 +6650,8 @@ CVE_CHECK_IGNORE += "CVE-2023-0047"
6643# fixed-version: Fixed after version 6.0rc4 6650# fixed-version: Fixed after version 6.0rc4
6644CVE_CHECK_IGNORE += "CVE-2023-0122" 6651CVE_CHECK_IGNORE += "CVE-2023-0122"
6645 6652
6646# CVE-2023-0160 has no known resolution 6653# cpe-stable-backport: Backported in 6.1.28
6654CVE_CHECK_IGNORE += "CVE-2023-0160"
6647 6655
6648# cpe-stable-backport: Backported in 6.1.7 6656# cpe-stable-backport: Backported in 6.1.7
6649CVE_CHECK_IGNORE += "CVE-2023-0179" 6657CVE_CHECK_IGNORE += "CVE-2023-0179"
@@ -6726,7 +6734,8 @@ CVE_CHECK_IGNORE += "CVE-2023-1192"
6726# fixed-version: Fixed after version 6.1rc3 6734# fixed-version: Fixed after version 6.1rc3
6727CVE_CHECK_IGNORE += "CVE-2023-1195" 6735CVE_CHECK_IGNORE += "CVE-2023-1195"
6728 6736
6729# CVE-2023-1206 needs backporting (fixed from 6.1.43) 6737# cpe-stable-backport: Backported in 6.1.43
6738CVE_CHECK_IGNORE += "CVE-2023-1206"
6730 6739
6731# fixed-version: Fixed after version 5.18rc1 6740# fixed-version: Fixed after version 5.18rc1
6732CVE_CHECK_IGNORE += "CVE-2023-1249" 6741CVE_CHECK_IGNORE += "CVE-2023-1249"
@@ -6809,11 +6818,14 @@ CVE_CHECK_IGNORE += "CVE-2023-2008"
6809# fixed-version: Fixed after version 6.0rc1 6818# fixed-version: Fixed after version 6.0rc1
6810CVE_CHECK_IGNORE += "CVE-2023-2019" 6819CVE_CHECK_IGNORE += "CVE-2023-2019"
6811 6820
6812# CVE-2023-20569 has no known resolution 6821# cpe-stable-backport: Backported in 6.1.44
6822CVE_CHECK_IGNORE += "CVE-2023-20569"
6813 6823
6814# CVE-2023-20588 has no known resolution 6824# cpe-stable-backport: Backported in 6.1.45
6825CVE_CHECK_IGNORE += "CVE-2023-20588"
6815 6826
6816# CVE-2023-20593 needs backporting (fixed from 6.1.41) 6827# cpe-stable-backport: Backported in 6.1.41
6828CVE_CHECK_IGNORE += "CVE-2023-20593"
6817 6829
6818# fixed-version: Fixed after version 6.0rc1 6830# fixed-version: Fixed after version 6.0rc1
6819CVE_CHECK_IGNORE += "CVE-2023-20928" 6831CVE_CHECK_IGNORE += "CVE-2023-20928"
@@ -6922,7 +6934,7 @@ CVE_CHECK_IGNORE += "CVE-2023-23559"
6922# fixed-version: Fixed after version 5.12rc1 6934# fixed-version: Fixed after version 5.12rc1
6923CVE_CHECK_IGNORE += "CVE-2023-23586" 6935CVE_CHECK_IGNORE += "CVE-2023-23586"
6924 6936
6925# CVE-2023-2430 needs backporting (fixed from 6.2rc5) 6937# CVE-2023-2430 needs backporting (fixed from 6.1.50)
6926 6938
6927# cpe-stable-backport: Backported in 6.1.22 6939# cpe-stable-backport: Backported in 6.1.22
6928CVE_CHECK_IGNORE += "CVE-2023-2483" 6940CVE_CHECK_IGNORE += "CVE-2023-2483"
@@ -6933,6 +6945,8 @@ CVE_CHECK_IGNORE += "CVE-2023-25012"
6933# fixed-version: Fixed after version 6.0rc1 6945# fixed-version: Fixed after version 6.0rc1
6934CVE_CHECK_IGNORE += "CVE-2023-2513" 6946CVE_CHECK_IGNORE += "CVE-2023-2513"
6935 6947
6948# CVE-2023-25775 needs backporting (fixed from 6.1.53)
6949
6936# fixed-version: only affects 6.3rc1 onwards 6950# fixed-version: only affects 6.3rc1 onwards
6937CVE_CHECK_IGNORE += "CVE-2023-2598" 6951CVE_CHECK_IGNORE += "CVE-2023-2598"
6938 6952
@@ -6979,7 +6993,8 @@ CVE_CHECK_IGNORE += "CVE-2023-28772"
6979# cpe-stable-backport: Backported in 6.1.22 6993# cpe-stable-backport: Backported in 6.1.22
6980CVE_CHECK_IGNORE += "CVE-2023-28866" 6994CVE_CHECK_IGNORE += "CVE-2023-28866"
6981 6995
6982# CVE-2023-2898 needs backporting (fixed from 6.1.39) 6996# cpe-stable-backport: Backported in 6.1.39
6997CVE_CHECK_IGNORE += "CVE-2023-2898"
6983 6998
6984# cpe-stable-backport: Backported in 6.1.16 6999# cpe-stable-backport: Backported in 6.1.16
6985CVE_CHECK_IGNORE += "CVE-2023-2985" 7000CVE_CHECK_IGNORE += "CVE-2023-2985"
@@ -7007,7 +7022,7 @@ CVE_CHECK_IGNORE += "CVE-2023-3106"
7007 7022
7008# CVE-2023-31082 has no known resolution 7023# CVE-2023-31082 has no known resolution
7009 7024
7010# CVE-2023-31083 has no known resolution 7025# CVE-2023-31083 needs backporting (fixed from 6.6rc1)
7011 7026
7012# CVE-2023-31084 needs backporting (fixed from 6.4rc3) 7027# CVE-2023-31084 needs backporting (fixed from 6.4rc3)
7013 7028
@@ -7019,7 +7034,8 @@ CVE_CHECK_IGNORE += "CVE-2023-3111"
7019# cpe-stable-backport: Backported in 6.1.35 7034# cpe-stable-backport: Backported in 6.1.35
7020CVE_CHECK_IGNORE += "CVE-2023-3117" 7035CVE_CHECK_IGNORE += "CVE-2023-3117"
7021 7036
7022# CVE-2023-31248 needs backporting (fixed from 6.1.39) 7037# cpe-stable-backport: Backported in 6.1.39
7038CVE_CHECK_IGNORE += "CVE-2023-31248"
7023 7039
7024# cpe-stable-backport: Backported in 6.1.30 7040# cpe-stable-backport: Backported in 6.1.30
7025CVE_CHECK_IGNORE += "CVE-2023-3141" 7041CVE_CHECK_IGNORE += "CVE-2023-3141"
@@ -7083,7 +7099,8 @@ CVE_CHECK_IGNORE += "CVE-2023-3317"
7083# cpe-stable-backport: Backported in 6.1.22 7099# cpe-stable-backport: Backported in 6.1.22
7084CVE_CHECK_IGNORE += "CVE-2023-33203" 7100CVE_CHECK_IGNORE += "CVE-2023-33203"
7085 7101
7086# CVE-2023-33250 has no known resolution 7102# fixed-version: only affects 6.2rc1 onwards
7103CVE_CHECK_IGNORE += "CVE-2023-33250"
7087 7104
7088# cpe-stable-backport: Backported in 6.1.22 7105# cpe-stable-backport: Backported in 6.1.22
7089CVE_CHECK_IGNORE += "CVE-2023-33288" 7106CVE_CHECK_IGNORE += "CVE-2023-33288"
@@ -7123,12 +7140,14 @@ CVE_CHECK_IGNORE += "CVE-2023-34255"
7123# cpe-stable-backport: Backported in 6.1.29 7140# cpe-stable-backport: Backported in 6.1.29
7124CVE_CHECK_IGNORE += "CVE-2023-34256" 7141CVE_CHECK_IGNORE += "CVE-2023-34256"
7125 7142
7126# CVE-2023-34319 has no known resolution 7143# cpe-stable-backport: Backported in 6.1.44
7144CVE_CHECK_IGNORE += "CVE-2023-34319"
7127 7145
7128# fixed-version: Fixed after version 5.18rc5 7146# fixed-version: Fixed after version 5.18rc5
7129CVE_CHECK_IGNORE += "CVE-2023-3439" 7147CVE_CHECK_IGNORE += "CVE-2023-3439"
7130 7148
7131# CVE-2023-35001 needs backporting (fixed from 6.1.39) 7149# cpe-stable-backport: Backported in 6.1.39
7150CVE_CHECK_IGNORE += "CVE-2023-35001"
7132 7151
7133# cpe-stable-backport: Backported in 6.1.11 7152# cpe-stable-backport: Backported in 6.1.11
7134CVE_CHECK_IGNORE += "CVE-2023-3567" 7153CVE_CHECK_IGNORE += "CVE-2023-3567"
@@ -7161,19 +7180,25 @@ CVE_CHECK_IGNORE += "CVE-2023-3609"
7161# cpe-stable-backport: Backported in 6.1.36 7180# cpe-stable-backport: Backported in 6.1.36
7162CVE_CHECK_IGNORE += "CVE-2023-3610" 7181CVE_CHECK_IGNORE += "CVE-2023-3610"
7163 7182
7164# CVE-2023-3611 needs backporting (fixed from 6.1.40) 7183# cpe-stable-backport: Backported in 6.1.40
7184CVE_CHECK_IGNORE += "CVE-2023-3611"
7165 7185
7166# CVE-2023-3640 has no known resolution 7186# CVE-2023-3640 has no known resolution
7167 7187
7168# CVE-2023-37453 has no known resolution 7188# fixed-version: only affects 6.3rc1 onwards
7189CVE_CHECK_IGNORE += "CVE-2023-37453"
7169 7190
7170# CVE-2023-37454 has no known resolution 7191# CVE-2023-37454 has no known resolution
7171 7192
7172# CVE-2023-3772 has no known resolution 7193# CVE-2023-3772 needs backporting (fixed from 6.1.47)
7173 7194
7174# CVE-2023-3773 has no known resolution 7195# CVE-2023-3773 needs backporting (fixed from 6.1.47)
7175 7196
7176# CVE-2023-3776 needs backporting (fixed from 6.1.40) 7197# cpe-stable-backport: Backported in 6.1.40
7198CVE_CHECK_IGNORE += "CVE-2023-3776"
7199
7200# cpe-stable-backport: Backported in 6.1.42
7201CVE_CHECK_IGNORE += "CVE-2023-3777"
7177 7202
7178# fixed-version: Fixed after version 6.1rc4 7203# fixed-version: Fixed after version 6.1rc4
7179CVE_CHECK_IGNORE += "CVE-2023-3812" 7204CVE_CHECK_IGNORE += "CVE-2023-3812"
@@ -7202,25 +7227,89 @@ CVE_CHECK_IGNORE += "CVE-2023-38431"
7202# cpe-stable-backport: Backported in 6.1.36 7227# cpe-stable-backport: Backported in 6.1.36
7203CVE_CHECK_IGNORE += "CVE-2023-38432" 7228CVE_CHECK_IGNORE += "CVE-2023-38432"
7204 7229
7205# CVE-2023-3863 needs backporting (fixed from 6.1.39) 7230# cpe-stable-backport: Backported in 6.1.39
7231CVE_CHECK_IGNORE += "CVE-2023-3863"
7206 7232
7207# CVE-2023-4004 needs backporting (fixed from 6.1.42) 7233# cpe-stable-backport: Backported in 6.1.36
7234CVE_CHECK_IGNORE += "CVE-2023-3865"
7235
7236# cpe-stable-backport: Backported in 6.1.36
7237CVE_CHECK_IGNORE += "CVE-2023-3866"
7238
7239# cpe-stable-backport: Backported in 6.1.40
7240CVE_CHECK_IGNORE += "CVE-2023-3867"
7241
7242# cpe-stable-backport: Backported in 6.1.42
7243CVE_CHECK_IGNORE += "CVE-2023-4004"
7208 7244
7209# CVE-2023-4010 has no known resolution 7245# CVE-2023-4010 has no known resolution
7210 7246
7211# CVE-2023-4128 needs backporting (fixed from 6.5rc5) 7247# cpe-stable-backport: Backported in 6.1.43
7248CVE_CHECK_IGNORE += "CVE-2023-4015"
7249
7250# cpe-stable-backport: Backported in 6.1.45
7251CVE_CHECK_IGNORE += "CVE-2023-40283"
7212 7252
7213# CVE-2023-4132 needs backporting (fixed from 6.1.39) 7253# cpe-stable-backport: Backported in 6.1.45
7254CVE_CHECK_IGNORE += "CVE-2023-4128"
7255
7256# cpe-stable-backport: Backported in 6.1.39
7257CVE_CHECK_IGNORE += "CVE-2023-4132"
7214 7258
7215# CVE-2023-4133 needs backporting (fixed from 6.3) 7259# CVE-2023-4133 needs backporting (fixed from 6.3)
7216 7260
7217# CVE-2023-4134 needs backporting (fixed from 6.5rc1) 7261# CVE-2023-4134 needs backporting (fixed from 6.5rc1)
7218 7262
7219# CVE-2023-4147 needs backporting (fixed from 6.1.43) 7263# cpe-stable-backport: Backported in 6.1.43
7264CVE_CHECK_IGNORE += "CVE-2023-4147"
7265
7266# cpe-stable-backport: Backported in 6.1.46
7267CVE_CHECK_IGNORE += "CVE-2023-4155"
7268
7269# fixed-version: only affects 6.3rc1 onwards
7270CVE_CHECK_IGNORE += "CVE-2023-4194"
7271
7272# cpe-stable-backport: Backported in 6.1.45
7273CVE_CHECK_IGNORE += "CVE-2023-4206"
7274
7275# cpe-stable-backport: Backported in 6.1.45
7276CVE_CHECK_IGNORE += "CVE-2023-4207"
7277
7278# cpe-stable-backport: Backported in 6.1.45
7279CVE_CHECK_IGNORE += "CVE-2023-4208"
7280
7281# CVE-2023-4244 needs backporting (fixed from 6.5rc7)
7282
7283# cpe-stable-backport: Backported in 6.1.45
7284CVE_CHECK_IGNORE += "CVE-2023-4273"
7285
7286# fixed-version: Fixed after version 5.19rc1
7287CVE_CHECK_IGNORE += "CVE-2023-4385"
7288
7289# fixed-version: Fixed after version 5.18
7290CVE_CHECK_IGNORE += "CVE-2023-4387"
7291
7292# fixed-version: Fixed after version 5.18rc3
7293CVE_CHECK_IGNORE += "CVE-2023-4389"
7294
7295# fixed-version: Fixed after version 6.0rc3
7296CVE_CHECK_IGNORE += "CVE-2023-4394"
7297
7298# fixed-version: Fixed after version 5.18
7299CVE_CHECK_IGNORE += "CVE-2023-4459"
7300
7301# CVE-2023-4563 needs backporting (fixed from 6.5rc6)
7302
7303# CVE-2023-4569 needs backporting (fixed from 6.1.47)
7304
7305# fixed-version: only affects 6.4rc1 onwards
7306CVE_CHECK_IGNORE += "CVE-2023-4611"
7307
7308# CVE-2023-4622 needs backporting (fixed from 6.5rc1)
7220 7309
7221# CVE-2023-4155 has no known resolution 7310# CVE-2023-4623 needs backporting (fixed from 6.1.53)
7222 7311
7223# CVE-2023-4194 needs backporting (fixed from 6.5rc5) 7312# CVE-2023-4881 needs backporting (fixed from 6.6rc1)
7224 7313
7225# CVE-2023-4273 needs backporting (fixed from 6.5rc5) 7314# CVE-2023-4921 needs backporting (fixed from 6.6rc1)
7226 7315
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-01-09 20:15:42 +0000