From: Bruce Ashfield Date: Mon, 2 Mar 2026 04:55:28 +0000 (-0500) Subject: linux-yocto/6.18: update CVE exclusions (6.18.9) X-Git-Tag: uninative-5.1~162 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=fbd55716cc6a618db7bebefab687860fb2ad741f;p=thirdparty%2Fopenembedded%2Fopenembedded-core.git linux-yocto/6.18: update CVE exclusions (6.18.9) Data pulled from: https://github.com/CVEProject/cvelistV5 1/1 [ Author: cvelistV5 Github Action Email: github_action@example.com Subject: 4 changes (4 new | 0 updated): - 4 new CVEs: CVE-2026-25931, CVE-2026-25934, CVE-2026-25938, CVE-2026-25939 - 0 updated CVEs: Date: Mon, 9 Feb 2026 22:23:00 +0000 ] Signed-off-by: Bruce Ashfield Signed-off-by: Mathieu Dubois-Briand Signed-off-by: Richard Purdie --- diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 383f35291e..0de60d7d94 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-02-05 00:48:36.677660+00:00 for kernel version 6.18.8 -# From linux_kernel_cves 2026-02-05_baseline +# Generated at 2026-02-09 22:31:26.580286+00:00 for kernel version 6.18.9 +# From linux_kernel_cves cve_2026-02-09_2200Z python check_kernel_cve_status_version() { - this_version = "6.18.8" + this_version = "6.18.9" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -20156,7 +20156,7 @@ CVE_STATUS[CVE-2025-71072] = "cpe-stable-backport: Backported in 6.18.3" CVE_STATUS[CVE-2025-71073] = "cpe-stable-backport: Backported in 6.18.3" -# CVE-2025-71074 needs backporting (fixed from 6.19rc1) +# CVE-2025-71074 needs backporting (fixed from 6.19) CVE_STATUS[CVE-2025-71075] = "cpe-stable-backport: Backported in 6.18.3" @@ -20300,7 +20300,7 @@ CVE_STATUS[CVE-2025-71144] = "cpe-stable-backport: Backported in 6.18.5" # CVE-2025-71145 has no known resolution -CVE_STATUS[CVE-2025-71146] = "cpe-stable-backport: Backported in 6.18.3" +CVE_STATUS[CVE-2025-71146] = "fixed-version: Fixed from version 6.18.3" CVE_STATUS[CVE-2025-71147] = "cpe-stable-backport: Backported in 6.18.3" @@ -20390,7 +20390,7 @@ CVE_STATUS[CVE-2026-22981] = "cpe-stable-backport: Backported in 6.18.6" CVE_STATUS[CVE-2026-22982] = "cpe-stable-backport: Backported in 6.18.6" -CVE_STATUS[CVE-2026-22983] = "cpe-stable-backport: Backported in 6.18.6" +CVE_STATUS[CVE-2026-22983] = "fixed-version: Fixed from version 6.18.6" CVE_STATUS[CVE-2026-22984] = "cpe-stable-backport: Backported in 6.18.6" @@ -20400,7 +20400,7 @@ CVE_STATUS[CVE-2026-22986] = "cpe-stable-backport: Backported in 6.18.6" CVE_STATUS[CVE-2026-22987] = "cpe-stable-backport: Backported in 6.18.6" -CVE_STATUS[CVE-2026-22988] = "cpe-stable-backport: Backported in 6.18.6" +CVE_STATUS[CVE-2026-22988] = "fixed-version: Fixed from version 6.18.6" CVE_STATUS[CVE-2026-22989] = "cpe-stable-backport: Backported in 6.18.6" @@ -20414,7 +20414,7 @@ CVE_STATUS[CVE-2026-22993] = "cpe-stable-backport: Backported in 6.18.6" CVE_STATUS[CVE-2026-22994] = "cpe-stable-backport: Backported in 6.18.6" -CVE_STATUS[CVE-2026-22995] = "cpe-stable-backport: Backported in 6.18.6" +CVE_STATUS[CVE-2026-22995] = "fixed-version: Fixed from version 6.18.6" CVE_STATUS[CVE-2026-22996] = "cpe-stable-backport: Backported in 6.18.7" @@ -20588,7 +20588,7 @@ CVE_STATUS[CVE-2026-23080] = "cpe-stable-backport: Backported in 6.18.8" CVE_STATUS[CVE-2026-23081] = "cpe-stable-backport: Backported in 6.18.8" -CVE_STATUS[CVE-2026-23082] = "cpe-stable-backport: Backported in 6.18.8" +CVE_STATUS[CVE-2026-23082] = "fixed-version: Fixed from version 6.18.8" CVE_STATUS[CVE-2026-23083] = "cpe-stable-backport: Backported in 6.18.8"