summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRoss Burton <ross.burton@arm.com>2023-09-19 17:31:15 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2023-09-19 23:26:20 +0100
commit9e5a7a9497b7ed966ab4c7b364cf746f97016804 (patch)
tree1bcbcbe180fe87c4235425e62a3062a41aecbba4
parent7444138b0c438bc0912faff54e0fe2e8dc7ac8b9 (diff)
downloadpoky-9e5a7a9497b7ed966ab4c7b364cf746f97016804.tar.gz
linux-yocto: update CVE ignores
(From OE-Core rev: 937817e5164f8af8452aec03ae3c45cb23d63df9) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat
-rw-r--r--meta/recipes-kernel/linux/cve-exclusion_6.1.inc52
-rw-r--r--meta/recipes-kernel/linux/cve-exclusion_6.4.inc50
2 files changed, 85 insertions, 17 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
index 41ee8bcad5..90b07f0da5 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
@@ -1,6 +1,6 @@
1 1
2# Auto-generated CVE metadata, DO NOT EDIT BY HAND. 2# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3# Generated at 2023-09-07 15:29:54.983415+00:00 for version 6.1.51 3# Generated at 2023-09-19 16:30:43.403752+00:00 for version 6.1.51
4 4
5python check_kernel_cve_status_version() { 5python check_kernel_cve_status_version() {
6 this_version = "6.1.51" 6 this_version = "6.1.51"
@@ -4518,9 +4518,9 @@ CVE_STATUS[CVE-2022-4382] = "cpe-stable-backport: Backported in 6.1.8"
4518 4518
4519CVE_STATUS[CVE-2022-43945] = "fixed-version: Fixed from version 6.1rc1" 4519CVE_STATUS[CVE-2022-43945] = "fixed-version: Fixed from version 6.1rc1"
4520 4520
4521# CVE-2022-44032 has no known resolution 4521# CVE-2022-44032 needs backporting (fixed from 6.4rc1)
4522 4522
4523# CVE-2022-44033 has no known resolution 4523# CVE-2022-44033 needs backporting (fixed from 6.4rc1)
4524 4524
4525# CVE-2022-44034 has no known resolution 4525# CVE-2022-44034 has no known resolution
4526 4526
@@ -4532,13 +4532,13 @@ CVE_STATUS[CVE-2022-45869] = "fixed-version: Fixed from version 6.1rc7"
4532 4532
4533# CVE-2022-45885 has no known resolution 4533# CVE-2022-45885 has no known resolution
4534 4534
4535# CVE-2022-45886 has no known resolution 4535CVE_STATUS[CVE-2022-45886] = "cpe-stable-backport: Backported in 6.1.33"
4536 4536
4537# CVE-2022-45887 has no known resolution 4537CVE_STATUS[CVE-2022-45887] = "cpe-stable-backport: Backported in 6.1.33"
4538 4538
4539# CVE-2022-45888 needs backporting (fixed from 6.2rc1) 4539# CVE-2022-45888 needs backporting (fixed from 6.2rc1)
4540 4540
4541# CVE-2022-45919 has no known resolution 4541CVE_STATUS[CVE-2022-45919] = "cpe-stable-backport: Backported in 6.1.33"
4542 4542
4543CVE_STATUS[CVE-2022-45934] = "fixed-version: Fixed from version 6.1" 4543CVE_STATUS[CVE-2022-45934] = "fixed-version: Fixed from version 6.1"
4544 4544
@@ -4786,7 +4786,7 @@ CVE_STATUS[CVE-2023-23559] = "cpe-stable-backport: Backported in 6.1.9"
4786 4786
4787CVE_STATUS[CVE-2023-23586] = "fixed-version: Fixed from version 5.12rc1" 4787CVE_STATUS[CVE-2023-23586] = "fixed-version: Fixed from version 5.12rc1"
4788 4788
4789# CVE-2023-2430 needs backporting (fixed from 6.2rc5) 4789CVE_STATUS[CVE-2023-2430] = "cpe-stable-backport: Backported in 6.1.50"
4790 4790
4791CVE_STATUS[CVE-2023-2483] = "cpe-stable-backport: Backported in 6.1.22" 4791CVE_STATUS[CVE-2023-2483] = "cpe-stable-backport: Backported in 6.1.22"
4792 4792
@@ -4794,6 +4794,8 @@ CVE_STATUS[CVE-2023-25012] = "cpe-stable-backport: Backported in 6.1.16"
4794 4794
4795CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1" 4795CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1"
4796 4796
4797# CVE-2023-25775 needs backporting (fixed from 6.1.53)
4798
4797CVE_STATUS[CVE-2023-2598] = "fixed-version: only affects 6.3rc1 onwards" 4799CVE_STATUS[CVE-2023-2598] = "fixed-version: only affects 6.3rc1 onwards"
4798 4800
4799# CVE-2023-26242 has no known resolution 4801# CVE-2023-26242 has no known resolution
@@ -4848,7 +4850,7 @@ CVE_STATUS[CVE-2023-3106] = "fixed-version: Fixed from version 4.8rc7"
4848 4850
4849# CVE-2023-31082 has no known resolution 4851# CVE-2023-31082 has no known resolution
4850 4852
4851# CVE-2023-31083 has no known resolution 4853# CVE-2023-31083 needs backporting (fixed from 6.6rc1)
4852 4854
4853# CVE-2023-31084 needs backporting (fixed from 6.4rc3) 4855# CVE-2023-31084 needs backporting (fixed from 6.4rc3)
4854 4856
@@ -4962,7 +4964,7 @@ CVE_STATUS[CVE-2023-3611] = "cpe-stable-backport: Backported in 6.1.40"
4962 4964
4963# CVE-2023-3640 has no known resolution 4965# CVE-2023-3640 has no known resolution
4964 4966
4965# CVE-2023-37453 has no known resolution 4967CVE_STATUS[CVE-2023-37453] = "fixed-version: only affects 6.3rc1 onwards"
4966 4968
4967# CVE-2023-37454 has no known resolution 4969# CVE-2023-37454 has no known resolution
4968 4970
@@ -4972,6 +4974,8 @@ CVE_STATUS[CVE-2023-3773] = "cpe-stable-backport: Backported in 6.1.47"
4972 4974
4973CVE_STATUS[CVE-2023-3776] = "cpe-stable-backport: Backported in 6.1.40" 4975CVE_STATUS[CVE-2023-3776] = "cpe-stable-backport: Backported in 6.1.40"
4974 4976
4977CVE_STATUS[CVE-2023-3777] = "cpe-stable-backport: Backported in 6.1.42"
4978
4975CVE_STATUS[CVE-2023-3812] = "fixed-version: Fixed from version 6.1rc4" 4979CVE_STATUS[CVE-2023-3812] = "fixed-version: Fixed from version 6.1rc4"
4976 4980
4977CVE_STATUS[CVE-2023-38409] = "cpe-stable-backport: Backported in 6.1.25" 4981CVE_STATUS[CVE-2023-38409] = "cpe-stable-backport: Backported in 6.1.25"
@@ -4992,10 +4996,18 @@ CVE_STATUS[CVE-2023-38432] = "cpe-stable-backport: Backported in 6.1.36"
4992 4996
4993CVE_STATUS[CVE-2023-3863] = "cpe-stable-backport: Backported in 6.1.39" 4997CVE_STATUS[CVE-2023-3863] = "cpe-stable-backport: Backported in 6.1.39"
4994 4998
4999CVE_STATUS[CVE-2023-3865] = "cpe-stable-backport: Backported in 6.1.36"
5000
5001CVE_STATUS[CVE-2023-3866] = "cpe-stable-backport: Backported in 6.1.36"
5002
5003CVE_STATUS[CVE-2023-3867] = "cpe-stable-backport: Backported in 6.1.40"
5004
4995CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.1.42" 5005CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.1.42"
4996 5006
4997# CVE-2023-4010 has no known resolution 5007# CVE-2023-4010 has no known resolution
4998 5008
5009CVE_STATUS[CVE-2023-4015] = "cpe-stable-backport: Backported in 6.1.43"
5010
4999CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45" 5011CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45"
5000 5012
5001CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45" 5013CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45"
@@ -5012,6 +5024,14 @@ CVE_STATUS[CVE-2023-4155] = "cpe-stable-backport: Backported in 6.1.46"
5012 5024
5013CVE_STATUS[CVE-2023-4194] = "fixed-version: only affects 6.3rc1 onwards" 5025CVE_STATUS[CVE-2023-4194] = "fixed-version: only affects 6.3rc1 onwards"
5014 5026
5027CVE_STATUS[CVE-2023-4206] = "cpe-stable-backport: Backported in 6.1.45"
5028
5029CVE_STATUS[CVE-2023-4207] = "cpe-stable-backport: Backported in 6.1.45"
5030
5031CVE_STATUS[CVE-2023-4208] = "cpe-stable-backport: Backported in 6.1.45"
5032
5033# CVE-2023-4244 needs backporting (fixed from 6.5rc7)
5034
5015CVE_STATUS[CVE-2023-4273] = "cpe-stable-backport: Backported in 6.1.45" 5035CVE_STATUS[CVE-2023-4273] = "cpe-stable-backport: Backported in 6.1.45"
5016 5036
5017CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1" 5037CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1"
@@ -5024,3 +5044,17 @@ CVE_STATUS[CVE-2023-4394] = "fixed-version: Fixed from version 6.0rc3"
5024 5044
5025CVE_STATUS[CVE-2023-4459] = "fixed-version: Fixed from version 5.18" 5045CVE_STATUS[CVE-2023-4459] = "fixed-version: Fixed from version 5.18"
5026 5046
5047# CVE-2023-4563 needs backporting (fixed from 6.5rc6)
5048
5049CVE_STATUS[CVE-2023-4569] = "cpe-stable-backport: Backported in 6.1.47"
5050
5051CVE_STATUS[CVE-2023-4611] = "fixed-version: only affects 6.4rc1 onwards"
5052
5053# CVE-2023-4622 needs backporting (fixed from 6.5rc1)
5054
5055# CVE-2023-4623 needs backporting (fixed from 6.1.53)
5056
5057# CVE-2023-4881 needs backporting (fixed from 6.6rc1)
5058
5059# CVE-2023-4921 needs backporting (fixed from 6.6rc1)
5060
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.4.inc b/meta/recipes-kernel/linux/cve-exclusion_6.4.inc
index 5a5eb9a755..d64ab0092d 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.4.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.4.inc
@@ -1,6 +1,6 @@
1 1
2# Auto-generated CVE metadata, DO NOT EDIT BY HAND. 2# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
3# Generated at 2023-09-07 15:30:03.897686+00:00 for version 6.4.14 3# Generated at 2023-09-19 16:30:35.921888+00:00 for version 6.4.14
4 4
5python check_kernel_cve_status_version() { 5python check_kernel_cve_status_version() {
6 this_version = "6.4.14" 6 this_version = "6.4.14"
@@ -4518,9 +4518,9 @@ CVE_STATUS[CVE-2022-4382] = "fixed-version: Fixed from version 6.2rc5"
4518 4518
4519CVE_STATUS[CVE-2022-43945] = "fixed-version: Fixed from version 6.1rc1" 4519CVE_STATUS[CVE-2022-43945] = "fixed-version: Fixed from version 6.1rc1"
4520 4520
4521# CVE-2022-44032 has no known resolution 4521CVE_STATUS[CVE-2022-44032] = "fixed-version: Fixed from version 6.4rc1"
4522 4522
4523# CVE-2022-44033 has no known resolution 4523CVE_STATUS[CVE-2022-44033] = "fixed-version: Fixed from version 6.4rc1"
4524 4524
4525# CVE-2022-44034 has no known resolution 4525# CVE-2022-44034 has no known resolution
4526 4526
@@ -4532,13 +4532,13 @@ CVE_STATUS[CVE-2022-45869] = "fixed-version: Fixed from version 6.1rc7"
4532 4532
4533# CVE-2022-45885 has no known resolution 4533# CVE-2022-45885 has no known resolution
4534 4534
4535# CVE-2022-45886 has no known resolution 4535CVE_STATUS[CVE-2022-45886] = "fixed-version: Fixed from version 6.4rc3"
4536 4536
4537# CVE-2022-45887 has no known resolution 4537CVE_STATUS[CVE-2022-45887] = "fixed-version: Fixed from version 6.4rc3"
4538 4538
4539CVE_STATUS[CVE-2022-45888] = "fixed-version: Fixed from version 6.2rc1" 4539CVE_STATUS[CVE-2022-45888] = "fixed-version: Fixed from version 6.2rc1"
4540 4540
4541# CVE-2022-45919 has no known resolution 4541CVE_STATUS[CVE-2022-45919] = "fixed-version: Fixed from version 6.4rc3"
4542 4542
4543CVE_STATUS[CVE-2022-45934] = "fixed-version: Fixed from version 6.1" 4543CVE_STATUS[CVE-2022-45934] = "fixed-version: Fixed from version 6.1"
4544 4544
@@ -4794,6 +4794,8 @@ CVE_STATUS[CVE-2023-25012] = "fixed-version: Fixed from version 6.3rc1"
4794 4794
4795CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1" 4795CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1"
4796 4796
4797# CVE-2023-25775 needs backporting (fixed from 6.4.16)
4798
4797CVE_STATUS[CVE-2023-2598] = "fixed-version: Fixed from version 6.4rc1" 4799CVE_STATUS[CVE-2023-2598] = "fixed-version: Fixed from version 6.4rc1"
4798 4800
4799# CVE-2023-26242 has no known resolution 4801# CVE-2023-26242 has no known resolution
@@ -4848,7 +4850,7 @@ CVE_STATUS[CVE-2023-3106] = "fixed-version: Fixed from version 4.8rc7"
4848 4850
4849# CVE-2023-31082 has no known resolution 4851# CVE-2023-31082 has no known resolution
4850 4852
4851# CVE-2023-31083 has no known resolution 4853# CVE-2023-31083 needs backporting (fixed from 6.6rc1)
4852 4854
4853CVE_STATUS[CVE-2023-31084] = "fixed-version: Fixed from version 6.4rc3" 4855CVE_STATUS[CVE-2023-31084] = "fixed-version: Fixed from version 6.4rc3"
4854 4856
@@ -4962,7 +4964,7 @@ CVE_STATUS[CVE-2023-3611] = "cpe-stable-backport: Backported in 6.4.5"
4962 4964
4963# CVE-2023-3640 has no known resolution 4965# CVE-2023-3640 has no known resolution
4964 4966
4965# CVE-2023-37453 has no known resolution 4967# CVE-2023-37453 needs backporting (fixed from 6.4.16)
4966 4968
4967# CVE-2023-37454 has no known resolution 4969# CVE-2023-37454 has no known resolution
4968 4970
@@ -4972,6 +4974,8 @@ CVE_STATUS[CVE-2023-3773] = "cpe-stable-backport: Backported in 6.4.12"
4972 4974
4973CVE_STATUS[CVE-2023-3776] = "cpe-stable-backport: Backported in 6.4.5" 4975CVE_STATUS[CVE-2023-3776] = "cpe-stable-backport: Backported in 6.4.5"
4974 4976
4977CVE_STATUS[CVE-2023-3777] = "cpe-stable-backport: Backported in 6.4.7"
4978
4975CVE_STATUS[CVE-2023-3812] = "fixed-version: Fixed from version 6.1rc4" 4979CVE_STATUS[CVE-2023-3812] = "fixed-version: Fixed from version 6.1rc4"
4976 4980
4977CVE_STATUS[CVE-2023-38409] = "fixed-version: Fixed from version 6.3rc7" 4981CVE_STATUS[CVE-2023-38409] = "fixed-version: Fixed from version 6.3rc7"
@@ -4992,10 +4996,18 @@ CVE_STATUS[CVE-2023-38432] = "fixed-version: Fixed from version 6.4"
4992 4996
4993CVE_STATUS[CVE-2023-3863] = "cpe-stable-backport: Backported in 6.4.4" 4997CVE_STATUS[CVE-2023-3863] = "cpe-stable-backport: Backported in 6.4.4"
4994 4998
4999CVE_STATUS[CVE-2023-3865] = "fixed-version: Fixed from version 6.4"
5000
5001CVE_STATUS[CVE-2023-3866] = "fixed-version: Fixed from version 6.4"
5002
5003CVE_STATUS[CVE-2023-3867] = "cpe-stable-backport: Backported in 6.4.5"
5004
4995CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.4.7" 5005CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.4.7"
4996 5006
4997# CVE-2023-4010 has no known resolution 5007# CVE-2023-4010 has no known resolution
4998 5008
5009CVE_STATUS[CVE-2023-4015] = "cpe-stable-backport: Backported in 6.4.8"
5010
4999CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.4.10" 5011CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.4.10"
5000 5012
5001CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.4.10" 5013CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.4.10"
@@ -5012,6 +5024,14 @@ CVE_STATUS[CVE-2023-4155] = "cpe-stable-backport: Backported in 6.4.11"
5012 5024
5013CVE_STATUS[CVE-2023-4194] = "cpe-stable-backport: Backported in 6.4.10" 5025CVE_STATUS[CVE-2023-4194] = "cpe-stable-backport: Backported in 6.4.10"
5014 5026
5027CVE_STATUS[CVE-2023-4206] = "cpe-stable-backport: Backported in 6.4.10"
5028
5029CVE_STATUS[CVE-2023-4207] = "cpe-stable-backport: Backported in 6.4.10"
5030
5031CVE_STATUS[CVE-2023-4208] = "cpe-stable-backport: Backported in 6.4.10"
5032
5033CVE_STATUS[CVE-2023-4244] = "cpe-stable-backport: Backported in 6.4.12"
5034
5015CVE_STATUS[CVE-2023-4273] = "cpe-stable-backport: Backported in 6.4.10" 5035CVE_STATUS[CVE-2023-4273] = "cpe-stable-backport: Backported in 6.4.10"
5016 5036
5017CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1" 5037CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1"
@@ -5024,3 +5044,17 @@ CVE_STATUS[CVE-2023-4394] = "fixed-version: Fixed from version 6.0rc3"
5024 5044
5025CVE_STATUS[CVE-2023-4459] = "fixed-version: Fixed from version 5.18" 5045CVE_STATUS[CVE-2023-4459] = "fixed-version: Fixed from version 5.18"
5026 5046
5047CVE_STATUS[CVE-2023-4563] = "cpe-stable-backport: Backported in 6.4.11"
5048
5049CVE_STATUS[CVE-2023-4569] = "cpe-stable-backport: Backported in 6.4.12"
5050
5051CVE_STATUS[CVE-2023-4611] = "cpe-stable-backport: Backported in 6.4.8"
5052
5053# CVE-2023-4622 needs backporting (fixed from 6.5rc1)
5054
5055# CVE-2023-4623 needs backporting (fixed from 6.4.16)
5056
5057# CVE-2023-4881 needs backporting (fixed from 6.6rc1)
5058
5059# CVE-2023-4921 needs backporting (fixed from 6.6rc1)
5060
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-04-21 22:46:41 +0000