linux/generate-cve-exclusions: fix mishandling of boundary values - linux/poky.git

diff options

author	Yuta Hayama <hayama@lineo.co.jp>	2023-09-05 16:29:06 +0900
committer	Steve Sakoman <steve@sakoman.com>	2023-10-13 04:31:04 -1000
commit	af312b14fae9215f1a992ff936b7eaa155dbe2eb (patch)
tree	f2dad26a4dc5392b01ba471409c81804cb0439f0 /documentation/sdk-manual/appendix-customizing.rst
parent	5e7d38bb7ad1ce674e41bf30f7c681bad00f65cb (diff)
download	poky-af312b14fae9215f1a992ff936b7eaa155dbe2eb.tar.gz

linux/generate-cve-exclusions: fix mishandling of boundary values

affected_versions in kernel_cves.json does not mean "first affected version to last affected version" but actually "first affected version to fixed version". Therefore, the variable names, conditional expressions, and CVE_STATUS descriptions should be fixed. For example, when the script was run against v6.1, if affected_versions was "xxx to 6.1", the output was "cpe-stable-backport: Backported in 6.1", but this should be "fixed-version: Fixed from version 6.1". (From OE-Core rev: a0cafa6587acf2b41f0e832d06de884ffe62fd4b) Signed-off-by: Yuta Hayama <hayama@lineo.co.jp> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit 2064b2f9b92e2dff45dab633598b5ed37145d0b6) Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'documentation/sdk-manual/appendix-customizing.rst')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: