linux-yocto: update CVE exclusions

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 4cfc4187ac90a4504b93a01ff6333d14928728a8)
Signed-off-by: Steve Sakoman <steve@sakoman.com>

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
index 650b83a900ddf14151dae077c7438b28d555cfcd..bf23742d70cccac7804eb5c2f36df7c7af1a84c3 100644 (file)
--- a/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.1.inc
@@ -1,6 +1,6 @@
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2023-12-05 13:22:34.961692+00:00 for version 6.1.65
+# Generated at 2023-12-18 14:15:17.069657+00:00 for version 6.1.65
 
 python check_kernel_cve_status_version() {
     this_version = "6.1.65"
@@ -5126,7 +5126,7 @@ CVE_STATUS[CVE-2023-5633] = "fixed-version: only affects 6.2 onwards"
 
 CVE_STATUS[CVE-2023-6111] = "fixed-version: only affects 6.6rc3 onwards"
 
-# CVE-2023-6121 needs backporting (fixed from 6.7rc3)
+CVE_STATUS[CVE-2023-6121] = "cpe-stable-backport: Backported in 6.1.65"
 
 CVE_STATUS[CVE-2023-6176] = "cpe-stable-backport: Backported in 6.1.54"
 

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc
index 046c3f95c32992d336a72f70c949167ea9daf42e..7711bcb4d6b757898cf5b450841606bc75822398 100644 (file)
--- a/meta/recipes-kernel/linux/cve-exclusion_6.5.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.5.inc
@@ -1,6 +1,6 @@
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2023-12-05 13:22:43.339114+00:00 for version 6.5.13
+# Generated at 2023-12-18 14:15:23.952852+00:00 for version 6.5.13
 
 python check_kernel_cve_status_version() {
     this_version = "6.5.13"