diff options
author | Bruce Ashfield <bruce.ashfield@gmail.com> | 2025-07-16 09:48:53 -0400 |
---|---|---|
committer | Steve Sakoman <steve@sakoman.com> | 2025-07-24 12:36:37 -0700 |
commit | 8fe20edf8a7affb88eaad3fcd060021056ded3f7 (patch) | |
tree | 8fb9a9864087cf393d0e7f2f84e5c47961aaeb6d | |
parent | 2179c39870cba4252ae34b1181c06835ab981095 (diff) | |
download | poky-8fe20edf8a7affb88eaad3fcd060021056ded3f7.tar.gz |
linux-yocto/6.12: update CVE exclusions (6.12.38)walnascar
Data pulled from: https://github.com/CVEProject/cvelistV5
(From OE-Core rev: cfd35327706a0fbebbab8bfffc72af0bfe385758)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 00087de9bcdd96a75ec143abb7b8312c815eca53)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
-rw-r--r-- | meta/recipes-kernel/linux/cve-exclusion_6.12.inc | 228 |
1 files changed, 224 insertions, 4 deletions
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc index 6c816b66f4..924e3b90ca 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc | |||
@@ -1,12 +1,12 @@ | |||
1 | 1 | ||
2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. | 2 | # Auto-generated CVE metadata, DO NOT EDIT BY HAND. |
3 | # Generated at 2025-07-09 07:57:09.220247+00:00 for kernel version 6.12.36 | 3 | # Generated at 2025-07-15 14:54:42.649263+00:00 for kernel version 6.12.38 |
4 | # From cvelistV5 cve_2025-07-09_0700Z-1-gca2b12e7c08 | 4 | # From linux_kernel_cves cve_2025-07-15_1400Z-4-gc77733e1fe6 |
5 | 5 | ||
6 | 6 | ||
7 | 7 | ||
8 | python check_kernel_cve_status_version() { | 8 | python check_kernel_cve_status_version() { |
9 | this_version = "6.12.36" | 9 | this_version = "6.12.38" |
10 | kernel_version = d.getVar("LINUX_VERSION") | 10 | kernel_version = d.getVar("LINUX_VERSION") |
11 | if kernel_version != this_version: | 11 | if kernel_version != this_version: |
12 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) | 12 | bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) |
@@ -13817,7 +13817,7 @@ CVE_STATUS[CVE-2025-38136] = "cpe-stable-backport: Backported in 6.12.34" | |||
13817 | 13817 | ||
13818 | CVE_STATUS[CVE-2025-38138] = "cpe-stable-backport: Backported in 6.12.34" | 13818 | CVE_STATUS[CVE-2025-38138] = "cpe-stable-backport: Backported in 6.12.34" |
13819 | 13819 | ||
13820 | # CVE-2025-38139 needs backporting (fixed from 6.16rc1) | 13820 | CVE_STATUS[CVE-2025-38139] = "cpe-stable-backport: Backported in 6.12.37" |
13821 | 13821 | ||
13822 | # CVE-2025-38140 needs backporting (fixed from 6.16rc1) | 13822 | # CVE-2025-38140 needs backporting (fixed from 6.16rc1) |
13823 | 13823 | ||
@@ -14015,8 +14015,228 @@ CVE_STATUS[CVE-2025-38236] = "cpe-stable-backport: Backported in 6.12.36" | |||
14015 | 14015 | ||
14016 | # CVE-2025-38237 needs backporting (fixed from 6.16rc1) | 14016 | # CVE-2025-38237 needs backporting (fixed from 6.16rc1) |
14017 | 14017 | ||
14018 | CVE_STATUS[CVE-2025-38238] = "fixed-version: only affects 6.14 onwards" | ||
14019 | |||
14020 | CVE_STATUS[CVE-2025-38239] = "cpe-stable-backport: Backported in 6.12.36" | ||
14021 | |||
14018 | CVE_STATUS[CVE-2025-38240] = "cpe-stable-backport: Backported in 6.12.23" | 14022 | CVE_STATUS[CVE-2025-38240] = "cpe-stable-backport: Backported in 6.12.23" |
14019 | 14023 | ||
14024 | CVE_STATUS[CVE-2025-38241] = "fixed-version: only affects 6.14 onwards" | ||
14025 | |||
14026 | CVE_STATUS[CVE-2025-38242] = "cpe-stable-backport: Backported in 6.12.37" | ||
14027 | |||
14028 | CVE_STATUS[CVE-2025-38243] = "fixed-version: only affects 6.15 onwards" | ||
14029 | |||
14030 | CVE_STATUS[CVE-2025-38244] = "cpe-stable-backport: Backported in 6.12.36" | ||
14031 | |||
14032 | CVE_STATUS[CVE-2025-38245] = "cpe-stable-backport: Backported in 6.12.36" | ||
14033 | |||
14034 | CVE_STATUS[CVE-2025-38246] = "cpe-stable-backport: Backported in 6.12.36" | ||
14035 | |||
14036 | CVE_STATUS[CVE-2025-38247] = "fixed-version: only affects 6.15 onwards" | ||
14037 | |||
14038 | # CVE-2025-38248 needs backporting (fixed from 6.16rc4) | ||
14039 | |||
14040 | CVE_STATUS[CVE-2025-38249] = "cpe-stable-backport: Backported in 6.12.36" | ||
14041 | |||
14042 | CVE_STATUS[CVE-2025-38250] = "cpe-stable-backport: Backported in 6.12.36" | ||
14043 | |||
14044 | CVE_STATUS[CVE-2025-38251] = "cpe-stable-backport: Backported in 6.12.36" | ||
14045 | |||
14046 | CVE_STATUS[CVE-2025-38252] = "fixed-version: only affects 6.15 onwards" | ||
14047 | |||
14048 | CVE_STATUS[CVE-2025-38253] = "cpe-stable-backport: Backported in 6.12.36" | ||
14049 | |||
14050 | CVE_STATUS[CVE-2025-38254] = "fixed-version: only affects 6.13 onwards" | ||
14051 | |||
14052 | CVE_STATUS[CVE-2025-38255] = "cpe-stable-backport: Backported in 6.12.36" | ||
14053 | |||
14054 | CVE_STATUS[CVE-2025-38256] = "cpe-stable-backport: Backported in 6.12.36" | ||
14055 | |||
14056 | CVE_STATUS[CVE-2025-38257] = "cpe-stable-backport: Backported in 6.12.36" | ||
14057 | |||
14058 | CVE_STATUS[CVE-2025-38258] = "cpe-stable-backport: Backported in 6.12.36" | ||
14059 | |||
14060 | CVE_STATUS[CVE-2025-38259] = "cpe-stable-backport: Backported in 6.12.36" | ||
14061 | |||
14062 | CVE_STATUS[CVE-2025-38260] = "cpe-stable-backport: Backported in 6.12.36" | ||
14063 | |||
14064 | # CVE-2025-38261 needs backporting (fixed from 6.16rc1) | ||
14065 | |||
14066 | CVE_STATUS[CVE-2025-38262] = "cpe-stable-backport: Backported in 6.12.36" | ||
14067 | |||
14068 | CVE_STATUS[CVE-2025-38263] = "cpe-stable-backport: Backported in 6.12.36" | ||
14069 | |||
14070 | CVE_STATUS[CVE-2025-38264] = "cpe-stable-backport: Backported in 6.12.36" | ||
14071 | |||
14072 | CVE_STATUS[CVE-2025-38265] = "cpe-stable-backport: Backported in 6.12.33" | ||
14073 | |||
14074 | CVE_STATUS[CVE-2025-38266] = "fixed-version: only affects 6.15 onwards" | ||
14075 | |||
14076 | CVE_STATUS[CVE-2025-38267] = "cpe-stable-backport: Backported in 6.12.34" | ||
14077 | |||
14078 | CVE_STATUS[CVE-2025-38268] = "cpe-stable-backport: Backported in 6.12.34" | ||
14079 | |||
14080 | CVE_STATUS[CVE-2025-38269] = "cpe-stable-backport: Backported in 6.12.34" | ||
14081 | |||
14082 | CVE_STATUS[CVE-2025-38270] = "cpe-stable-backport: Backported in 6.12.34" | ||
14083 | |||
14084 | CVE_STATUS[CVE-2025-38271] = "fixed-version: only affects 6.15 onwards" | ||
14085 | |||
14086 | # CVE-2025-38272 needs backporting (fixed from 6.16rc1) | ||
14087 | |||
14088 | CVE_STATUS[CVE-2025-38273] = "cpe-stable-backport: Backported in 6.12.34" | ||
14089 | |||
14090 | CVE_STATUS[CVE-2025-38274] = "cpe-stable-backport: Backported in 6.12.34" | ||
14091 | |||
14092 | CVE_STATUS[CVE-2025-38275] = "cpe-stable-backport: Backported in 6.12.34" | ||
14093 | |||
14094 | CVE_STATUS[CVE-2025-38276] = "fixed-version: only affects 6.15 onwards" | ||
14095 | |||
14096 | CVE_STATUS[CVE-2025-38277] = "cpe-stable-backport: Backported in 6.12.34" | ||
14097 | |||
14098 | CVE_STATUS[CVE-2025-38278] = "cpe-stable-backport: Backported in 6.12.34" | ||
14099 | |||
14100 | CVE_STATUS[CVE-2025-38279] = "cpe-stable-backport: Backported in 6.12.37" | ||
14101 | |||
14102 | CVE_STATUS[CVE-2025-38280] = "cpe-stable-backport: Backported in 6.12.34" | ||
14103 | |||
14104 | CVE_STATUS[CVE-2025-38281] = "fixed-version: only affects 6.14 onwards" | ||
14105 | |||
14106 | CVE_STATUS[CVE-2025-38282] = "cpe-stable-backport: Backported in 6.12.34" | ||
14107 | |||
14108 | CVE_STATUS[CVE-2025-38283] = "cpe-stable-backport: Backported in 6.12.34" | ||
14109 | |||
14110 | # CVE-2025-38284 needs backporting (fixed from 6.16rc1) | ||
14111 | |||
14112 | CVE_STATUS[CVE-2025-38285] = "cpe-stable-backport: Backported in 6.12.34" | ||
14113 | |||
14114 | CVE_STATUS[CVE-2025-38286] = "cpe-stable-backport: Backported in 6.12.34" | ||
14115 | |||
14116 | CVE_STATUS[CVE-2025-38287] = "fixed-version: only affects 6.13 onwards" | ||
14117 | |||
14118 | CVE_STATUS[CVE-2025-38288] = "cpe-stable-backport: Backported in 6.12.34" | ||
14119 | |||
14120 | CVE_STATUS[CVE-2025-38289] = "cpe-stable-backport: Backported in 6.12.37" | ||
14121 | |||
14122 | CVE_STATUS[CVE-2025-38290] = "cpe-stable-backport: Backported in 6.12.34" | ||
14123 | |||
14124 | CVE_STATUS[CVE-2025-38291] = "fixed-version: only affects 6.13 onwards" | ||
14125 | |||
14126 | CVE_STATUS[CVE-2025-38292] = "cpe-stable-backport: Backported in 6.12.34" | ||
14127 | |||
14128 | CVE_STATUS[CVE-2025-38293] = "cpe-stable-backport: Backported in 6.12.34" | ||
14129 | |||
14130 | CVE_STATUS[CVE-2025-38294] = "fixed-version: only affects 6.14 onwards" | ||
14131 | |||
14132 | CVE_STATUS[CVE-2025-38295] = "cpe-stable-backport: Backported in 6.12.34" | ||
14133 | |||
14134 | CVE_STATUS[CVE-2025-38296] = "fixed-version: only affects 6.14 onwards" | ||
14135 | |||
14136 | CVE_STATUS[CVE-2025-38297] = "cpe-stable-backport: Backported in 6.12.34" | ||
14137 | |||
14138 | CVE_STATUS[CVE-2025-38298] = "cpe-stable-backport: Backported in 6.12.34" | ||
14139 | |||
14140 | CVE_STATUS[CVE-2025-38299] = "cpe-stable-backport: Backported in 6.12.34" | ||
14141 | |||
14142 | CVE_STATUS[CVE-2025-38300] = "cpe-stable-backport: Backported in 6.12.34" | ||
14143 | |||
14144 | CVE_STATUS[CVE-2025-38301] = "cpe-stable-backport: Backported in 6.12.34" | ||
14145 | |||
14146 | CVE_STATUS[CVE-2025-38302] = "cpe-stable-backport: Backported in 6.12.34" | ||
14147 | |||
14148 | CVE_STATUS[CVE-2025-38303] = "cpe-stable-backport: Backported in 6.12.34" | ||
14149 | |||
14150 | CVE_STATUS[CVE-2025-38304] = "cpe-stable-backport: Backported in 6.12.34" | ||
14151 | |||
14152 | CVE_STATUS[CVE-2025-38305] = "cpe-stable-backport: Backported in 6.12.34" | ||
14153 | |||
14154 | # CVE-2025-38306 needs backporting (fixed from 6.16rc1) | ||
14155 | |||
14156 | CVE_STATUS[CVE-2025-38307] = "cpe-stable-backport: Backported in 6.12.34" | ||
14157 | |||
14158 | CVE_STATUS[CVE-2025-38308] = "fixed-version: only affects 6.15 onwards" | ||
14159 | |||
14160 | CVE_STATUS[CVE-2025-38309] = "fixed-version: only affects 6.15 onwards" | ||
14161 | |||
14162 | CVE_STATUS[CVE-2025-38310] = "cpe-stable-backport: Backported in 6.12.34" | ||
14163 | |||
14164 | # CVE-2025-38311 needs backporting (fixed from 6.16rc1) | ||
14165 | |||
14166 | CVE_STATUS[CVE-2025-38312] = "cpe-stable-backport: Backported in 6.12.34" | ||
14167 | |||
14168 | CVE_STATUS[CVE-2025-38313] = "cpe-stable-backport: Backported in 6.12.34" | ||
14169 | |||
14170 | CVE_STATUS[CVE-2025-38314] = "fixed-version: only affects 6.13 onwards" | ||
14171 | |||
14172 | CVE_STATUS[CVE-2025-38315] = "cpe-stable-backport: Backported in 6.12.34" | ||
14173 | |||
14174 | CVE_STATUS[CVE-2025-38316] = "fixed-version: only affects 6.14 onwards" | ||
14175 | |||
14176 | CVE_STATUS[CVE-2025-38317] = "cpe-stable-backport: Backported in 6.12.34" | ||
14177 | |||
14178 | CVE_STATUS[CVE-2025-38318] = "cpe-stable-backport: Backported in 6.12.34" | ||
14179 | |||
14180 | CVE_STATUS[CVE-2025-38319] = "cpe-stable-backport: Backported in 6.12.34" | ||
14181 | |||
14182 | CVE_STATUS[CVE-2025-38320] = "cpe-stable-backport: Backported in 6.12.35" | ||
14183 | |||
14184 | CVE_STATUS[CVE-2025-38321] = "cpe-stable-backport: Backported in 6.12.35" | ||
14185 | |||
14186 | CVE_STATUS[CVE-2025-38322] = "fixed-version: only affects 6.15 onwards" | ||
14187 | |||
14188 | CVE_STATUS[CVE-2025-38323] = "cpe-stable-backport: Backported in 6.12.35" | ||
14189 | |||
14190 | CVE_STATUS[CVE-2025-38324] = "cpe-stable-backport: Backported in 6.12.35" | ||
14191 | |||
14192 | CVE_STATUS[CVE-2025-38325] = "cpe-stable-backport: Backported in 6.12.35" | ||
14193 | |||
14194 | CVE_STATUS[CVE-2025-38326] = "cpe-stable-backport: Backported in 6.12.35" | ||
14195 | |||
14196 | CVE_STATUS[CVE-2025-38327] = "fixed-version: only affects 6.15 onwards" | ||
14197 | |||
14198 | CVE_STATUS[CVE-2025-38328] = "cpe-stable-backport: Backported in 6.12.35" | ||
14199 | |||
14200 | CVE_STATUS[CVE-2025-38329] = "fixed-version: only affects 6.14 onwards" | ||
14201 | |||
14202 | CVE_STATUS[CVE-2025-38330] = "fixed-version: only affects 6.14 onwards" | ||
14203 | |||
14204 | CVE_STATUS[CVE-2025-38331] = "cpe-stable-backport: Backported in 6.12.35" | ||
14205 | |||
14206 | CVE_STATUS[CVE-2025-38332] = "cpe-stable-backport: Backported in 6.12.35" | ||
14207 | |||
14208 | CVE_STATUS[CVE-2025-38333] = "cpe-stable-backport: Backported in 6.12.35" | ||
14209 | |||
14210 | CVE_STATUS[CVE-2025-38334] = "cpe-stable-backport: Backported in 6.12.35" | ||
14211 | |||
14212 | # CVE-2025-38335 needs backporting (fixed from 6.16rc1) | ||
14213 | |||
14214 | CVE_STATUS[CVE-2025-38336] = "cpe-stable-backport: Backported in 6.12.35" | ||
14215 | |||
14216 | CVE_STATUS[CVE-2025-38337] = "cpe-stable-backport: Backported in 6.12.35" | ||
14217 | |||
14218 | CVE_STATUS[CVE-2025-38338] = "cpe-stable-backport: Backported in 6.12.35" | ||
14219 | |||
14220 | CVE_STATUS[CVE-2025-38339] = "fixed-version: only affects 6.13 onwards" | ||
14221 | |||
14222 | CVE_STATUS[CVE-2025-38340] = "fixed-version: only affects 6.14 onwards" | ||
14223 | |||
14224 | CVE_STATUS[CVE-2025-38341] = "cpe-stable-backport: Backported in 6.12.35" | ||
14225 | |||
14226 | CVE_STATUS[CVE-2025-38342] = "cpe-stable-backport: Backported in 6.12.35" | ||
14227 | |||
14228 | CVE_STATUS[CVE-2025-38343] = "cpe-stable-backport: Backported in 6.12.35" | ||
14229 | |||
14230 | CVE_STATUS[CVE-2025-38344] = "cpe-stable-backport: Backported in 6.12.35" | ||
14231 | |||
14232 | CVE_STATUS[CVE-2025-38345] = "cpe-stable-backport: Backported in 6.12.35" | ||
14233 | |||
14234 | CVE_STATUS[CVE-2025-38346] = "cpe-stable-backport: Backported in 6.12.35" | ||
14235 | |||
14236 | CVE_STATUS[CVE-2025-38347] = "cpe-stable-backport: Backported in 6.12.35" | ||
14237 | |||
14238 | CVE_STATUS[CVE-2025-38348] = "cpe-stable-backport: Backported in 6.12.35" | ||
14239 | |||
14020 | CVE_STATUS[CVE-2025-38479] = "cpe-stable-backport: Backported in 6.12.23" | 14240 | CVE_STATUS[CVE-2025-38479] = "cpe-stable-backport: Backported in 6.12.23" |
14021 | 14241 | ||
14022 | CVE_STATUS[CVE-2025-38575] = "cpe-stable-backport: Backported in 6.12.23" | 14242 | CVE_STATUS[CVE-2025-38575] = "cpe-stable-backport: Backported in 6.12.23" |