]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commitdiff
projects / thirdparty / openembedded / openembedded-core-contrib.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d4366d4)
linux: add CVE_STATUS for a chrome* bug
authorRandy MacLeod <Randy.MacLeod@windriver.com>
Thu, 15 May 2025 19:05:23 +0000 (15:05 -0400)
committerSteve Sakoman <steve@sakoman.com>
Tue, 1 Jul 2025 13:55:57 +0000 (06:55 -0700)
This is not a linux-yocto CVE yet it shows up in the reports as:
   linux-yocto-custom CVE-2023-3079  0.0  8.8  Unpatched  https://nvd.nist.gov/vuln/detail/CVE-2023-3079

For reference, the CPE says:
  Affects cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
So affects all Linux systems,
  Running on/with cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

[ YOCTO #15780 ]

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
(cherry picked from commit 22ef4d2d116afb9d603a05fb107dd9da0e74558b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-kernel/linux/cve-exclusion.inc patch | blob | blame | history

diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc
index f1b7db44b68b0c14fc40da6d0ae48f4edd905a64..80c76433ef2041ffb6cb30b2d8747a36b963d8f0 100644 (file)
--- a/meta/recipes-kernel/linux/cve-exclusion.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -133,6 +133,8 @@ CVE_STATUS[CVE-2023-1076] = "fixed-version: Fixed from version 6.3rc1"
 
 CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"
 
+CVE_STATUS[CVE-2023-3079] = "not-applicable-config: Issue only affects chromium, which is not in linux-yocto"
+
 CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"
 
 CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"
Mirror of git://git.openembedded.org/openembedded-core-contrib