From: Simone Weiß <simone.p.weiss@posteo.com>
Date: Sun, 18 Feb 2024 12:20:36 +0000 (+0000)
Subject: grub2: ignore CVE-2024-1048, Redhat only issue
X-Git-Tag: yocto-5.2~3633
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=40cd768368167f81de5bb55e9ff0584035f4c1b4;p=thirdparty%2Fopenembedded%2Fopenembedded-core-contrib.git

grub2: ignore CVE-2024-1048, Redhat only issue

Redhat/Fedora specific as it affects the grub2-set-bootflag extension
added by Redhat to grub.

Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-bsp/grub/grub2.inc b/meta/recipes-bsp/grub/grub2.inc
index 47dc9217985..83cf6047de2 100644
--- a/meta/recipes-bsp/grub/grub2.inc
+++ b/meta/recipes-bsp/grub/grub2.inc
@@ -26,6 +26,7 @@ SRC_URI[sha256sum] = "b30919fa5be280417c17ac561bb1650f60cfb80cc6237fa1e2b6f56154
 CVE_STATUS[CVE-2019-14865] = "not-applicable-platform: applies only to RHEL"
 CVE_STATUS[CVE-2021-46705] = "not-applicable-platform: Applies only to SUSE"
 CVE_STATUS[CVE-2023-4001]  = "not-applicable-platform: Applies only to RHEL/Fedora"
+CVE_STATUS[CVE-2024-1048]  = "not-applicable-platform: Applies only to RHEL/Fedora"
 
 DEPENDS = "flex-native bison-native gettext-native"