linux/generate-cve-exclusions: fix mishandling of boundary values - linux/poky.git

diff options

author	Yuta Hayama <hayama@lineo.co.jp>	2023-09-05 16:29:06 +0900
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-09-07 14:52:04 +0100
commit	3b9c48837fe80a3c25f596006f17ae75bcc62054 (patch)
tree	3f9d78ff81b7bec628b37c94b490b2ebeaee4322 /scripts/lib/devtool/package.py
parent	7cf595a49b417bcdd0b22c84f66ebaaf9bd5db55 (diff)
download	poky-3b9c48837fe80a3c25f596006f17ae75bcc62054.tar.gz

linux/generate-cve-exclusions: fix mishandling of boundary values

affected_versions in kernel_cves.json does not mean "first affected version to last affected version" but actually "first affected version to fixed version". Therefore, the variable names, conditional expressions, and CVE_STATUS descriptions should be fixed. For example, when the script was run against v6.1, if affected_versions was "xxx to 6.1", the output was "cpe-stable-backport: Backported in 6.1", but this should be "fixed-version: Fixed from version 6.1". (From OE-Core rev: 2064b2f9b92e2dff45dab633598b5ed37145d0b6) Signed-off-by: Yuta Hayama <hayama@lineo.co.jp> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/package.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: