diff options
| author | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-11-09 17:13:10 +0000 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2023-11-09 17:16:08 +0000 |
| commit | f97b686884166dd77d1818e70615027c6ba8c348 (patch) | |
| tree | d1f722a8d09ddcef644c22444d458fd5e389ae81 /meta | |
| parent | 2378e4bdfa0045643b7d18390c454a458656de2d (diff) | |
| download | poky-f97b686884166dd77d1818e70615027c6ba8c348.tar.gz | |
linux/cve-exclusion6.1/6.5: Update to latest kernel point releases
(From OE-Core rev: e17b76644b26ef832b632a03f537060f88344bd8)
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta')
| -rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.1.inc | 30 | ||||
| -rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.5.inc | 62 |
2 files changed, 60 insertions, 32 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc index 3f708b0cc5..1216e0c2dd 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc | |||
| @@ -1,9 +1,9 @@ | |||
| 1 | 1 | ||
| 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
| 3 | # Generated at 2023-10-23 14:03:17.479563+00:00 for version 6.1.57 | 3 | # Generated at 2023-11-09 17:12:27.365962+00:00 for version 6.1.61 |
| 4 | 4 | ||
| 5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
| 6 | this_version = "6.1.57" | 6 | this_version = "6.1.61" |
| 7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
| 8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
| 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
| @@ -4644,7 +4644,7 @@ CVE_STATUS[CVE-2023-1118] = "cpe-stable-backport: Backported in 6.1.16" | |||
| 4644 | 4644 | ||
| 4645 | CVE_STATUS[CVE-2023-1192] = "cpe-stable-backport: Backported in 6.1.33" | 4645 | CVE_STATUS[CVE-2023-1192] = "cpe-stable-backport: Backported in 6.1.33" |
| 4646 | 4646 | ||
| 4647 | # CVE-2023-1193 has no known resolution | 4647 | # CVE-2023-1193 needs backporting (fixed from 6.3rc6) |
| 4648 | 4648 | ||
| 4649 | CVE_STATUS[CVE-2023-1194] = "cpe-stable-backport: Backported in 6.1.34" | 4649 | CVE_STATUS[CVE-2023-1194] = "cpe-stable-backport: Backported in 6.1.34" |
| 4650 | 4650 | ||
| @@ -4954,7 +4954,7 @@ CVE_STATUS[CVE-2023-35824] = "cpe-stable-backport: Backported in 6.1.28" | |||
| 4954 | 4954 | ||
| 4955 | CVE_STATUS[CVE-2023-35826] = "cpe-stable-backport: Backported in 6.1.28" | 4955 | CVE_STATUS[CVE-2023-35826] = "cpe-stable-backport: Backported in 6.1.28" |
| 4956 | 4956 | ||
| 4957 | # CVE-2023-35827 has no known resolution | 4957 | CVE_STATUS[CVE-2023-35827] = "cpe-stable-backport: Backported in 6.1.59" |
| 4958 | 4958 | ||
| 4959 | CVE_STATUS[CVE-2023-35828] = "cpe-stable-backport: Backported in 6.1.28" | 4959 | CVE_STATUS[CVE-2023-35828] = "cpe-stable-backport: Backported in 6.1.28" |
| 4960 | 4960 | ||
| @@ -5024,7 +5024,7 @@ CVE_STATUS[CVE-2023-4015] = "cpe-stable-backport: Backported in 6.1.43" | |||
| 5024 | 5024 | ||
| 5025 | CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45" | 5025 | CVE_STATUS[CVE-2023-40283] = "cpe-stable-backport: Backported in 6.1.45" |
| 5026 | 5026 | ||
| 5027 | # CVE-2023-40791 needs backporting (fixed from 6.5rc6) | 5027 | CVE_STATUS[CVE-2023-40791] = "fixed-version: only affects 6.3rc1 onwards" |
| 5028 | 5028 | ||
| 5029 | CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45" | 5029 | CVE_STATUS[CVE-2023-4128] = "cpe-stable-backport: Backported in 6.1.45" |
| 5030 | 5030 | ||
| @@ -5082,9 +5082,9 @@ CVE_STATUS[CVE-2023-45863] = "cpe-stable-backport: Backported in 6.1.16" | |||
| 5082 | 5082 | ||
| 5083 | CVE_STATUS[CVE-2023-45871] = "cpe-stable-backport: Backported in 6.1.53" | 5083 | CVE_STATUS[CVE-2023-45871] = "cpe-stable-backport: Backported in 6.1.53" |
| 5084 | 5084 | ||
| 5085 | # CVE-2023-45898 needs backporting (fixed from 6.6rc1) | 5085 | CVE_STATUS[CVE-2023-45898] = "fixed-version: only affects 6.5rc1 onwards" |
| 5086 | 5086 | ||
| 5087 | # CVE-2023-4610 has no known resolution | 5087 | # CVE-2023-4610 needs backporting (fixed from 6.4) |
| 5088 | 5088 | ||
| 5089 | CVE_STATUS[CVE-2023-4611] = "fixed-version: only affects 6.4rc1 onwards" | 5089 | CVE_STATUS[CVE-2023-4611] = "fixed-version: only affects 6.4rc1 onwards" |
| 5090 | 5090 | ||
| @@ -5092,15 +5092,29 @@ CVE_STATUS[CVE-2023-4611] = "fixed-version: only affects 6.4rc1 onwards" | |||
| 5092 | 5092 | ||
| 5093 | CVE_STATUS[CVE-2023-4623] = "cpe-stable-backport: Backported in 6.1.53" | 5093 | CVE_STATUS[CVE-2023-4623] = "cpe-stable-backport: Backported in 6.1.53" |
| 5094 | 5094 | ||
| 5095 | CVE_STATUS[CVE-2023-46813] = "cpe-stable-backport: Backported in 6.1.60" | ||
| 5096 | |||
| 5097 | CVE_STATUS[CVE-2023-46862] = "cpe-stable-backport: Backported in 6.1.61" | ||
| 5098 | |||
| 5099 | # CVE-2023-47233 has no known resolution | ||
| 5100 | |||
| 5095 | CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" | 5101 | CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" |
| 5096 | 5102 | ||
| 5097 | CVE_STATUS[CVE-2023-4881] = "cpe-stable-backport: Backported in 6.1.54" | 5103 | CVE_STATUS[CVE-2023-4881] = "cpe-stable-backport: Backported in 6.1.54" |
| 5098 | 5104 | ||
| 5099 | CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54" | 5105 | CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54" |
| 5100 | 5106 | ||
| 5101 | # CVE-2023-5158 has no known resolution | 5107 | # CVE-2023-5090 needs backporting (fixed from 6.6rc7) |
| 5108 | |||
| 5109 | CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.1.57" | ||
| 5110 | |||
| 5111 | CVE_STATUS[CVE-2023-5178] = "cpe-stable-backport: Backported in 6.1.60" | ||
| 5102 | 5112 | ||
| 5103 | CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.1.56" | 5113 | CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.1.56" |
| 5104 | 5114 | ||
| 5105 | CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56" | 5115 | CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56" |
| 5106 | 5116 | ||
| 5117 | # CVE-2023-5633 needs backporting (fixed from 6.6rc6) | ||
| 5118 | |||
| 5119 | CVE_STATUS[CVE-2023-5717] = "cpe-stable-backport: Backported in 6.1.60" | ||
| 5120 | |||
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc index 69cf790844..b4086d436c 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc | |||
| @@ -1,9 +1,9 @@ | |||
| 1 | 1 | ||
| 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
| 3 | # Generated at 2023-10-23 14:03:24.529766+00:00 for version 6.5.7 | 3 | # Generated at 2023-11-09 17:13:01.267965+00:00 for version 6.5.10 |
| 4 | 4 | ||
| 5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
| 6 | this_version = "6.5.7" | 6 | this_version = "6.5.10" |
| 7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
| 8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
| 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
| @@ -4644,7 +4644,7 @@ CVE_STATUS[CVE-2023-1118] = "fixed-version: Fixed from version 6.3rc1" | |||
| 4644 | 4644 | ||
| 4645 | CVE_STATUS[CVE-2023-1192] = "fixed-version: Fixed from version 6.4rc1" | 4645 | CVE_STATUS[CVE-2023-1192] = "fixed-version: Fixed from version 6.4rc1" |
| 4646 | 4646 | ||
| 4647 | # CVE-2023-1193 has no known resolution | 4647 | CVE_STATUS[CVE-2023-1193] = "fixed-version: Fixed from version 6.3rc6" |
| 4648 | 4648 | ||
| 4649 | CVE_STATUS[CVE-2023-1194] = "fixed-version: Fixed from version 6.4rc6" | 4649 | CVE_STATUS[CVE-2023-1194] = "fixed-version: Fixed from version 6.4rc6" |
| 4650 | 4650 | ||
| @@ -4796,7 +4796,7 @@ CVE_STATUS[CVE-2023-25012] = "fixed-version: Fixed from version 6.3rc1" | |||
| 4796 | 4796 | ||
| 4797 | CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1" | 4797 | CVE_STATUS[CVE-2023-2513] = "fixed-version: Fixed from version 6.0rc1" |
| 4798 | 4798 | ||
| 4799 | # CVE-2023-25775 needs backporting (fixed from 6.6rc1) | 4799 | CVE_STATUS[CVE-2023-25775] = "cpe-stable-backport: Backported in 6.5.3" |
| 4800 | 4800 | ||
| 4801 | CVE_STATUS[CVE-2023-2598] = "fixed-version: Fixed from version 6.4rc1" | 4801 | CVE_STATUS[CVE-2023-2598] = "fixed-version: Fixed from version 6.4rc1" |
| 4802 | 4802 | ||
| @@ -4856,7 +4856,7 @@ CVE_STATUS[CVE-2023-3106] = "fixed-version: Fixed from version 4.8rc7" | |||
| 4856 | 4856 | ||
| 4857 | CVE_STATUS[CVE-2023-31084] = "fixed-version: Fixed from version 6.4rc3" | 4857 | CVE_STATUS[CVE-2023-31084] = "fixed-version: Fixed from version 6.4rc3" |
| 4858 | 4858 | ||
| 4859 | # CVE-2023-31085 needs backporting (fixed from 6.6rc5) | 4859 | CVE_STATUS[CVE-2023-31085] = "cpe-stable-backport: Backported in 6.5.7" |
| 4860 | 4860 | ||
| 4861 | CVE_STATUS[CVE-2023-3111] = "fixed-version: Fixed from version 6.0rc2" | 4861 | CVE_STATUS[CVE-2023-3111] = "fixed-version: Fixed from version 6.0rc2" |
| 4862 | 4862 | ||
| @@ -4936,7 +4936,7 @@ CVE_STATUS[CVE-2023-34256] = "fixed-version: Fixed from version 6.4rc2" | |||
| 4936 | 4936 | ||
| 4937 | CVE_STATUS[CVE-2023-34319] = "fixed-version: Fixed from version 6.5rc6" | 4937 | CVE_STATUS[CVE-2023-34319] = "fixed-version: Fixed from version 6.5rc6" |
| 4938 | 4938 | ||
| 4939 | # CVE-2023-34324 needs backporting (fixed from 6.6rc6) | 4939 | CVE_STATUS[CVE-2023-34324] = "cpe-stable-backport: Backported in 6.5.7" |
| 4940 | 4940 | ||
| 4941 | CVE_STATUS[CVE-2023-3439] = "fixed-version: Fixed from version 5.18rc5" | 4941 | CVE_STATUS[CVE-2023-3439] = "fixed-version: Fixed from version 5.18rc5" |
| 4942 | 4942 | ||
| @@ -4954,7 +4954,7 @@ CVE_STATUS[CVE-2023-35824] = "fixed-version: Fixed from version 6.4rc1" | |||
| 4954 | 4954 | ||
| 4955 | CVE_STATUS[CVE-2023-35826] = "fixed-version: Fixed from version 6.4rc1" | 4955 | CVE_STATUS[CVE-2023-35826] = "fixed-version: Fixed from version 6.4rc1" |
| 4956 | 4956 | ||
| 4957 | # CVE-2023-35827 has no known resolution | 4957 | CVE_STATUS[CVE-2023-35827] = "cpe-stable-backport: Backported in 6.5.8" |
| 4958 | 4958 | ||
| 4959 | CVE_STATUS[CVE-2023-35828] = "fixed-version: Fixed from version 6.4rc1" | 4959 | CVE_STATUS[CVE-2023-35828] = "fixed-version: Fixed from version 6.4rc1" |
| 4960 | 4960 | ||
| @@ -4968,7 +4968,7 @@ CVE_STATUS[CVE-2023-3611] = "fixed-version: Fixed from version 6.5rc2" | |||
| 4968 | 4968 | ||
| 4969 | # CVE-2023-3640 has no known resolution | 4969 | # CVE-2023-3640 has no known resolution |
| 4970 | 4970 | ||
| 4971 | # CVE-2023-37453 needs backporting (fixed from 6.6rc1) | 4971 | CVE_STATUS[CVE-2023-37453] = "cpe-stable-backport: Backported in 6.5.3" |
| 4972 | 4972 | ||
| 4973 | # CVE-2023-37454 has no known resolution | 4973 | # CVE-2023-37454 has no known resolution |
| 4974 | 4974 | ||
| @@ -5006,13 +5006,13 @@ CVE_STATUS[CVE-2023-3866] = "fixed-version: Fixed from version 6.4" | |||
| 5006 | 5006 | ||
| 5007 | CVE_STATUS[CVE-2023-3867] = "fixed-version: Fixed from version 6.5rc1" | 5007 | CVE_STATUS[CVE-2023-3867] = "fixed-version: Fixed from version 6.5rc1" |
| 5008 | 5008 | ||
| 5009 | # CVE-2023-39189 needs backporting (fixed from 6.6rc1) | 5009 | CVE_STATUS[CVE-2023-39189] = "cpe-stable-backport: Backported in 6.5.4" |
| 5010 | 5010 | ||
| 5011 | CVE_STATUS[CVE-2023-39191] = "fixed-version: Fixed from version 6.3rc1" | 5011 | CVE_STATUS[CVE-2023-39191] = "fixed-version: Fixed from version 6.3rc1" |
| 5012 | 5012 | ||
| 5013 | # CVE-2023-39192 needs backporting (fixed from 6.6rc1) | 5013 | CVE_STATUS[CVE-2023-39192] = "cpe-stable-backport: Backported in 6.5.3" |
| 5014 | 5014 | ||
| 5015 | # CVE-2023-39193 needs backporting (fixed from 6.6rc1) | 5015 | CVE_STATUS[CVE-2023-39193] = "cpe-stable-backport: Backported in 6.5.3" |
| 5016 | 5016 | ||
| 5017 | CVE_STATUS[CVE-2023-39194] = "fixed-version: Fixed from version 6.5rc7" | 5017 | CVE_STATUS[CVE-2023-39194] = "fixed-version: Fixed from version 6.5rc7" |
| 5018 | 5018 | ||
| @@ -5050,15 +5050,15 @@ CVE_STATUS[CVE-2023-4244] = "fixed-version: Fixed from version 6.5rc7" | |||
| 5050 | 5050 | ||
| 5051 | CVE_STATUS[CVE-2023-4273] = "fixed-version: Fixed from version 6.5rc5" | 5051 | CVE_STATUS[CVE-2023-4273] = "fixed-version: Fixed from version 6.5rc5" |
| 5052 | 5052 | ||
| 5053 | # CVE-2023-42752 needs backporting (fixed from 6.6rc1) | 5053 | CVE_STATUS[CVE-2023-42752] = "cpe-stable-backport: Backported in 6.5.3" |
| 5054 | 5054 | ||
| 5055 | # CVE-2023-42753 needs backporting (fixed from 6.6rc1) | 5055 | CVE_STATUS[CVE-2023-42753] = "cpe-stable-backport: Backported in 6.5.3" |
| 5056 | 5056 | ||
| 5057 | # CVE-2023-42754 needs backporting (fixed from 6.6rc3) | 5057 | CVE_STATUS[CVE-2023-42754] = "cpe-stable-backport: Backported in 6.5.6" |
| 5058 | 5058 | ||
| 5059 | CVE_STATUS[CVE-2023-42755] = "fixed-version: Fixed from version 6.3rc1" | 5059 | CVE_STATUS[CVE-2023-42755] = "fixed-version: Fixed from version 6.3rc1" |
| 5060 | 5060 | ||
| 5061 | # CVE-2023-42756 needs backporting (fixed from 6.6rc3) | 5061 | CVE_STATUS[CVE-2023-42756] = "cpe-stable-backport: Backported in 6.5.6" |
| 5062 | 5062 | ||
| 5063 | CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1" | 5063 | CVE_STATUS[CVE-2023-4385] = "fixed-version: Fixed from version 5.19rc1" |
| 5064 | 5064 | ||
| @@ -5080,27 +5080,41 @@ CVE_STATUS[CVE-2023-45862] = "fixed-version: Fixed from version 6.3rc1" | |||
| 5080 | 5080 | ||
| 5081 | CVE_STATUS[CVE-2023-45863] = "fixed-version: Fixed from version 6.3rc1" | 5081 | CVE_STATUS[CVE-2023-45863] = "fixed-version: Fixed from version 6.3rc1" |
| 5082 | 5082 | ||
| 5083 | # CVE-2023-45871 needs backporting (fixed from 6.6rc1) | 5083 | CVE_STATUS[CVE-2023-45871] = "cpe-stable-backport: Backported in 6.5.3" |
| 5084 | 5084 | ||
| 5085 | # CVE-2023-45898 needs backporting (fixed from 6.6rc1) | 5085 | CVE_STATUS[CVE-2023-45898] = "cpe-stable-backport: Backported in 6.5.4" |
| 5086 | 5086 | ||
| 5087 | # CVE-2023-4610 has no known resolution | 5087 | CVE_STATUS[CVE-2023-4610] = "fixed-version: Fixed from version 6.4" |
| 5088 | 5088 | ||
| 5089 | CVE_STATUS[CVE-2023-4611] = "fixed-version: Fixed from version 6.5rc4" | 5089 | CVE_STATUS[CVE-2023-4611] = "fixed-version: Fixed from version 6.5rc4" |
| 5090 | 5090 | ||
| 5091 | CVE_STATUS[CVE-2023-4622] = "fixed-version: Fixed from version 6.5rc1" | 5091 | CVE_STATUS[CVE-2023-4622] = "fixed-version: Fixed from version 6.5rc1" |
| 5092 | 5092 | ||
| 5093 | # CVE-2023-4623 needs backporting (fixed from 6.6rc1) | 5093 | CVE_STATUS[CVE-2023-4623] = "cpe-stable-backport: Backported in 6.5.3" |
| 5094 | |||
| 5095 | CVE_STATUS[CVE-2023-46813] = "cpe-stable-backport: Backported in 6.5.9" | ||
| 5096 | |||
| 5097 | CVE_STATUS[CVE-2023-46862] = "cpe-stable-backport: Backported in 6.5.10" | ||
| 5098 | |||
| 5099 | # CVE-2023-47233 has no known resolution | ||
| 5094 | 5100 | ||
| 5095 | CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" | 5101 | CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" |
| 5096 | 5102 | ||
| 5097 | # CVE-2023-4881 needs backporting (fixed from 6.6rc1) | 5103 | CVE_STATUS[CVE-2023-4881] = "cpe-stable-backport: Backported in 6.5.4" |
| 5104 | |||
| 5105 | CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.5.4" | ||
| 5106 | |||
| 5107 | CVE_STATUS[CVE-2023-5090] = "cpe-stable-backport: Backported in 6.5.9" | ||
| 5108 | |||
| 5109 | CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.5.7" | ||
| 5110 | |||
| 5111 | CVE_STATUS[CVE-2023-5178] = "cpe-stable-backport: Backported in 6.5.9" | ||
| 5098 | 5112 | ||
| 5099 | # CVE-2023-4921 needs backporting (fixed from 6.6rc1) | 5113 | CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.5.6" |
| 5100 | 5114 | ||
| 5101 | # CVE-2023-5158 has no known resolution | 5115 | CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.5.6" |
| 5102 | 5116 | ||
| 5103 | # CVE-2023-5197 needs backporting (fixed from 6.6rc3) | 5117 | CVE_STATUS[CVE-2023-5633] = "cpe-stable-backport: Backported in 6.5.8" |
| 5104 | 5118 | ||
| 5105 | # CVE-2023-5345 needs backporting (fixed from 6.6rc4) | 5119 | CVE_STATUS[CVE-2023-5717] = "cpe-stable-backport: Backported in 6.5.9" |
| 5106 | 5120 | ||