linux: add CVE_STATUS for a chrome* bug

This is not a linux-yocto CVE yet it shows up in the reports as: linux-yocto-custom CVE-2023-3079 0.0 8.8 Unpatched https://nvd.nist.gov/vuln/detail/CVE-2023-3079 For reference, the CPE says: Affects cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* So affects all Linux systems, Running on/with cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* [ YOCTO #15780 ] (From OE-Core rev: 22ef4d2d116afb9d603a05fb107dd9da0e74558b) Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Randy MacLeod <Randy.MacLeod@windriver.com> 2025-05-15 15:05:23 -0400
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2025-05-19 17:35:43 +0100
commit: 2f4e20740a8087199f337b6f156f56ea367300cc (patch)
tree: fdd99d1619c8706c791a7061b121ba4c7dd2efa9
parent: fec5b5370871e1c4fd2b40a4855e2aaf5e879b77 (diff)
download: poky-2f4e20740a8087199f337b6f156f56ea367300cc.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc
index f1b7db44b6..80c76433ef 100644
--- a/meta/recipes-kernel/linux/cve-exclusion.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -133,6 +133,8 @@ CVE_STATUS[CVE-2023-1076] = "fixed-version: Fixed from version 6.3rc1"
 CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"
+CVE_STATUS[CVE-2023-3079] = "not-applicable-config: Issue only affects chromium, which is not in linux-yocto"
 CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"
 CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"
author	Randy MacLeod <Randy.MacLeod@windriver.com>	2025-05-15 15:05:23 -0400
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2025-05-19 17:35:43 +0100
commit	2f4e20740a8087199f337b6f156f56ea367300cc (patch)
tree	fdd99d1619c8706c791a7061b121ba4c7dd2efa9
parent	fec5b5370871e1c4fd2b40a4855e2aaf5e879b77 (diff)
download	poky-2f4e20740a8087199f337b6f156f56ea367300cc.tar.gz

diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc index f1b7db44b6..80c76433ef 100644 --- a/meta/recipes-kernel/linux/cve-exclusion.inc +++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -133,6 +133,8 @@ CVE_STATUS[CVE-2023-1076] = "fixed-version: Fixed from version 6.3rc1"
133		133
134	CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"	134	CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"
135		135
		136	CVE_STATUS[CVE-2023-3079] = "not-applicable-config: Issue only affects chromium, which is not in linux-yocto"
		137
136	CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"	138	CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"
137		139
138	CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"	140	CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"