MIRRORS/poky
1
0
Fork 0
mirror of git://git.yoctoproject.org/poky.git synced 2025-07-05 05:04:44 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

linux: add CVE_STATUS for a chrome* bug

Browse Source 
This is not a linux-yocto CVE yet it shows up in the reports as:
   linux-yocto-custom CVE-2023-3079  0.0  8.8  Unpatched  https://nvd.nist.gov/vuln/detail/CVE-2023-3079

For reference, the CPE says:
  Affects cpe:2.3linux:linux_kernel:-:*:*:*:*:*:*:*
So affects all Linux systems,
  Running on/with cpe:2.3🅰️google:chrome:*:*:*:*:*:*:*:*

[ YOCTO #15780 ]

(From OE-Core rev: 8c39f6fa4454147e22d5e386046ed9b1076d7a95)

Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
(cherry picked from commit 22ef4d2d116afb9d603a05fb107dd9da0e74558b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
This commit is contained in:
Randy MacLeod 2025-05-15 15:05:23 -04:00 committed by Steve Sakoman
parent 065345406d
commit 92757b3a54
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
meta/recipes-kernel/linux/cve-exclusion.inc
View File

@ -133,6 +133,8 @@ CVE_STATUS[CVE-2023-1076] = "fixed-version: Fixed from version 6.3rc1"
CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"
CVE_STATUS[CVE-2023-3079] = "not-applicable-config: Issue only affects chromium, which is not in linux-yocto"
CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"
CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"