diff options
| -rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.1.inc | 26 | ||||
| -rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.5.inc | 22 |
2 files changed, 40 insertions, 8 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc index a8df51f321..650b83a900 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc | |||
| @@ -1,9 +1,9 @@ | |||
| 1 | 1 | ||
| 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
| 3 | # Generated at 2023-11-03 13:24:16.070181+00:00 for version 6.1.57 | 3 | # Generated at 2023-12-05 13:22:34.961692+00:00 for version 6.1.65 |
| 4 | 4 | ||
| 5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
| 6 | this_version = "6.1.57" | 6 | this_version = "6.1.65" |
| 7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
| 8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
| 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
| @@ -4524,7 +4524,7 @@ CVE_STATUS[CVE-2022-43945] = "fixed-version: Fixed from version 6.1rc1" | |||
| 4524 | 4524 | ||
| 4525 | # CVE-2022-44033 needs backporting (fixed from 6.4rc1) | 4525 | # CVE-2022-44033 needs backporting (fixed from 6.4rc1) |
| 4526 | 4526 | ||
| 4527 | # CVE-2022-44034 has no known resolution | 4527 | # CVE-2022-44034 needs backporting (fixed from 6.4rc1) |
| 4528 | 4528 | ||
| 4529 | # CVE-2022-4543 has no known resolution | 4529 | # CVE-2022-4543 has no known resolution |
| 4530 | 4530 | ||
| @@ -5016,6 +5016,10 @@ CVE_STATUS[CVE-2023-39193] = "cpe-stable-backport: Backported in 6.1.53" | |||
| 5016 | 5016 | ||
| 5017 | CVE_STATUS[CVE-2023-39194] = "cpe-stable-backport: Backported in 6.1.47" | 5017 | CVE_STATUS[CVE-2023-39194] = "cpe-stable-backport: Backported in 6.1.47" |
| 5018 | 5018 | ||
| 5019 | CVE_STATUS[CVE-2023-39197] = "cpe-stable-backport: Backported in 6.1.39" | ||
| 5020 | |||
| 5021 | CVE_STATUS[CVE-2023-39198] = "cpe-stable-backport: Backported in 6.1.47" | ||
| 5022 | |||
| 5019 | CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.1.42" | 5023 | CVE_STATUS[CVE-2023-4004] = "cpe-stable-backport: Backported in 6.1.42" |
| 5020 | 5024 | ||
| 5021 | # CVE-2023-4010 has no known resolution | 5025 | # CVE-2023-4010 has no known resolution |
| @@ -5102,7 +5106,7 @@ CVE_STATUS[CVE-2023-4881] = "cpe-stable-backport: Backported in 6.1.54" | |||
| 5102 | 5106 | ||
| 5103 | CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54" | 5107 | CVE_STATUS[CVE-2023-4921] = "cpe-stable-backport: Backported in 6.1.54" |
| 5104 | 5108 | ||
| 5105 | # CVE-2023-5090 needs backporting (fixed from 6.6rc7) | 5109 | CVE_STATUS[CVE-2023-5090] = "cpe-stable-backport: Backported in 6.1.62" |
| 5106 | 5110 | ||
| 5107 | CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.1.57" | 5111 | CVE_STATUS[CVE-2023-5158] = "cpe-stable-backport: Backported in 6.1.57" |
| 5108 | 5112 | ||
| @@ -5112,7 +5116,19 @@ CVE_STATUS[CVE-2023-5197] = "cpe-stable-backport: Backported in 6.1.56" | |||
| 5112 | 5116 | ||
| 5113 | CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56" | 5117 | CVE_STATUS[CVE-2023-5345] = "cpe-stable-backport: Backported in 6.1.56" |
| 5114 | 5118 | ||
| 5115 | # CVE-2023-5633 needs backporting (fixed from 6.6rc6) | 5119 | CVE_STATUS[CVE-2023-5633] = "fixed-version: only affects 6.2 onwards" |
| 5116 | 5120 | ||
| 5117 | # CVE-2023-5717 needs backporting (fixed from 6.1.60) | 5121 | # CVE-2023-5717 needs backporting (fixed from 6.1.60) |
| 5118 | 5122 | ||
| 5123 | # CVE-2023-5972 needs backporting (fixed from 6.6rc7) | ||
| 5124 | |||
| 5125 | # CVE-2023-6039 needs backporting (fixed from 6.5rc5) | ||
| 5126 | |||
| 5127 | CVE_STATUS[CVE-2023-6111] = "fixed-version: only affects 6.6rc3 onwards" | ||
| 5128 | |||
| 5129 | # CVE-2023-6121 needs backporting (fixed from 6.7rc3) | ||
| 5130 | |||
| 5131 | CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.1.54" | ||
| 5132 | |||
| 5133 | # CVE-2023-6238 has no known resolution | ||
| 5134 | |||
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc index d48b0e1493..046c3f95c3 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc | |||
| @@ -1,9 +1,9 @@ | |||
| 1 | 1 | ||
| 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
| 3 | # Generated at 2023-11-03 13:24:25.010946+00:00 for version 6.5.7 | 3 | # Generated at 2023-12-05 13:22:43.339114+00:00 for version 6.5.13 |
| 4 | 4 | ||
| 5 | python check_kernel_cve_status_version() { | 5 | python check_kernel_cve_status_version() { |
| 6 | this_version = "6.5.7" | 6 | this_version = "6.5.13" |
| 7 | kernel_version = d.getVar("LINUX_VERSION") | 7 | kernel_version = d.getVar("LINUX_VERSION") |
| 8 | if kernel_version != this_version: | 8 | if kernel_version != this_version: |
| 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 9 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
| @@ -4524,7 +4524,7 @@ CVE_STATUS[CVE-2022-44032] = "fixed-version: Fixed from version 6.4rc1" | |||
| 4524 | 4524 | ||
| 4525 | CVE_STATUS[CVE-2022-44033] = "fixed-version: Fixed from version 6.4rc1" | 4525 | CVE_STATUS[CVE-2022-44033] = "fixed-version: Fixed from version 6.4rc1" |
| 4526 | 4526 | ||
| 4527 | # CVE-2022-44034 has no known resolution | 4527 | CVE_STATUS[CVE-2022-44034] = "fixed-version: Fixed from version 6.4rc1" |
| 4528 | 4528 | ||
| 4529 | # CVE-2022-4543 has no known resolution | 4529 | # CVE-2022-4543 has no known resolution |
| 4530 | 4530 | ||
| @@ -5016,6 +5016,10 @@ CVE_STATUS[CVE-2023-39191] = "fixed-version: Fixed from version 6.3rc1" | |||
| 5016 | 5016 | ||
| 5017 | CVE_STATUS[CVE-2023-39194] = "fixed-version: Fixed from version 6.5rc7" | 5017 | CVE_STATUS[CVE-2023-39194] = "fixed-version: Fixed from version 6.5rc7" |
| 5018 | 5018 | ||
| 5019 | CVE_STATUS[CVE-2023-39197] = "fixed-version: Fixed from version 6.5rc1" | ||
| 5020 | |||
| 5021 | CVE_STATUS[CVE-2023-39198] = "fixed-version: Fixed from version 6.5rc7" | ||
| 5022 | |||
| 5019 | CVE_STATUS[CVE-2023-4004] = "fixed-version: Fixed from version 6.5rc3" | 5023 | CVE_STATUS[CVE-2023-4004] = "fixed-version: Fixed from version 6.5rc3" |
| 5020 | 5024 | ||
| 5021 | # CVE-2023-4010 has no known resolution | 5025 | # CVE-2023-4010 has no known resolution |
| @@ -5116,3 +5120,15 @@ CVE_STATUS[CVE-2023-4732] = "fixed-version: Fixed from version 5.14rc1" | |||
| 5116 | 5120 | ||
| 5117 | # CVE-2023-5717 needs backporting (fixed from 6.6rc7) | 5121 | # CVE-2023-5717 needs backporting (fixed from 6.6rc7) |
| 5118 | 5122 | ||
| 5123 | CVE_STATUS[CVE-2023-5972] = "cpe-stable-backport: Backported in 6.5.9" | ||
| 5124 | |||
| 5125 | CVE_STATUS[CVE-2023-6039] = "fixed-version: Fixed from version 6.5rc5" | ||
| 5126 | |||
| 5127 | CVE_STATUS[CVE-2023-6111] = "fixed-version: only affects 6.6rc3 onwards" | ||
| 5128 | |||
| 5129 | # CVE-2023-6121 needs backporting (fixed from 6.7rc3) | ||
| 5130 | |||
| 5131 | CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.5.4" | ||
| 5132 | |||
| 5133 | # CVE-2023-6238 has no known resolution | ||
| 5134 | |||