cve-extra-exclusions: ignore inapplicable linux-yocto CVEs - linux/poky.git

diff options

author	Geoffrey GIRY <geoffrey.giry@smile.fr>	2023-03-28 11:47:25 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-04-04 17:46:24 +0100
commit	9cb390c458a04164697de1d632fb6dd20ac7c116 (patch)
tree	67b1ba9524a4882e2cc70103943bdd734d601e76 /meta/lib/oeqa/selftest/cases/cve_check.py
parent	cbe5fda5a780b50ecf9e797d3e5e591f03047e49 (diff)
download	poky-9cb390c458a04164697de1d632fb6dd20ac7c116.tar.gz

cve-extra-exclusions: ignore inapplicable linux-yocto CVEs

Multiple CVE are patched in kernel but appears as active because the NVD database is not up to date In common file cve-extra-exclusion.inc, CVE are ignored if and only if all versions of kernel used by langdale are patched Also ignore CVEs with wrong CPE (applied to kernel but actually are for another package) In cve-exclusion_5.15.inc, only ignore CVE that are patched in v5.15, and not patched in v5.19 Recipes of version 5.15 include this file Reviewed-by: Yoann CONGAL <yoann.congal@smile.fr> (From OE-Core rev: 58d99257bc5b417c518049c6a79144aecc4e9224) Signed-off-by: Geoffrey GIRY <geoffrey.giry@smile.fr> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/lib/oeqa/selftest/cases/cve_check.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: