From: Peter Marko <peter.marko@siemens.com>
Date: Sun, 16 Mar 2025 18:07:34 +0000 (+0100)
Subject: xserver-xorg: mark CVEs fixed in 21.1.16 as fixed
X-Git-Tag: yocto-5.2~219
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=e3419fbaf2999a821e1890a12ab27285cc25b577;p=thirdparty%2Fopenembedded%2Fopenembedded-core-contrib.git

xserver-xorg: mark CVEs fixed in 21.1.16 as fixed

These are tracked as versionless redhat CVEs in NVD DB.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc
index 3eb0de7b353..94d55072fed 100644
--- a/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc
+++ b/meta/recipes-graphics/xorg-xserver/xserver-xorg.inc
@@ -157,3 +157,7 @@ python add_xorg_abi_depends() {
 PACKAGEFUNCS =+ "add_xorg_abi_provides add_xorg_abi_depends"
 
 CVE_STATUS[CVE-2023-5574] = "${@bb.utils.contains('PACKAGECONFIG', 'xvfb', 'unpatched', 'not-applicable-config: specific to Xvfb', d)}"
+
+CVE_STATUS_GROUPS = "CVE_STATUS_REDHAT"
+CVE_STATUS_REDHAT = "CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 CVE-2025-26601"
+CVE_STATUS_REDHAT[status] = "fixed-version: these are tracked as versionless redhat CVEs in NVD DB, fixed in 21.1.16"