| Message ID | 20240111152056.613280-1-simone.p.weiss@posteo.com |
|---|---|
| State | Accepted, archived |
| Commit | 6e6fe23c95f1d0a8a0503cb71557cf3272bf9945 |
| Headers | show |
| Series | glibc: Set status for CVE-2023-5156 & CVE-2023-0687 | expand |
Hi Simone, I would like make a small improvements here ;). Once you're touching this file, make it little bit more optimized. Something like this: CVE_STATUS_GROUPS += "CVE_STATUS_GLIBC" CVE_STATUS_GLIBC = "CVE-2023-4527 CVE-2023-4911 CVE-2023-4806"... CVE_STATUS_GLIBC[status] = "fixed-version: Fixed in stable branch updates" Then we don't have to set the same status multiple times separately. Regards, Andy On 11.01.2024 16:20, Simone Weiß wrote: > From: Simone Weiß <simone.p.weiss@posteo.com> > > Set `CVE_STATUS`for those CVEs, they have already been fixed with the latest > pull for stable branch fixes done in rev > e444d2bed0ea140a574414fcd5a689867e8ba312. Hence the issues are fixed > already. > > Signed-off-by: Simone Weiß <simone.p.weiss@posteo.com> > --- > meta/recipes-core/glibc/glibc-version.inc | 2 ++ > 1 file changed, 2 insertions(+) > > diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc > index ccf9d505c5..5f24a10826 100644 > --- a/meta/recipes-core/glibc/glibc-version.inc > +++ b/meta/recipes-core/glibc/glibc-version.inc > @@ -10,4 +10,6 @@ UPSTREAM_CHECK_GITTAGREGEX = "(?P<pver>\d+\.\d+(\.(?!90)\d+)*)" > CVE_STATUS[CVE-2023-4527] = "fixed-version: Fixed in stable branch updates" > CVE_STATUS[CVE-2023-4911] = "fixed-version: Fixed in stable branch updates" > CVE_STATUS[CVE-2023-4806] = "fixed-version: Fixed in stable branch updates" > +CVE_STATUS[CVE-2023-5156] = "fixed-version: Fixed in stable branch updates" > CVE_STATUS[CVE-2023-4527] = "fixed-version: Fixed in stable branch updates" > +CVE_STATUS[CVE-2023-0687] = "fixed-version: Fixed in stable branch updates" > > -=-=-=-=-=-=-=-=-=-=-=- > Links: You receive all messages sent to this group. > View/Reply Online (#193547): https://lists.openembedded.org/g/openembedded-core/message/193547 > Mute This Topic: https://lists.openembedded.org/mt/103663782/3619876 > Group Owner: openembedded-core+owner@lists.openembedded.org > Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [andrej.v@skyrain.eu] > -=-=-=-=-=-=-=-=-=-=-=- >
diff --git a/meta/recipes-core/glibc/glibc-version.inc b/meta/recipes-core/glibc/glibc-version.inc index ccf9d505c5..5f24a10826 100644 --- a/meta/recipes-core/glibc/glibc-version.inc +++ b/meta/recipes-core/glibc/glibc-version.inc @@ -10,4 +10,6 @@ UPSTREAM_CHECK_GITTAGREGEX = "(?P<pver>\d+\.\d+(\.(?!90)\d+)*)" CVE_STATUS[CVE-2023-4527] = "fixed-version: Fixed in stable branch updates" CVE_STATUS[CVE-2023-4911] = "fixed-version: Fixed in stable branch updates" CVE_STATUS[CVE-2023-4806] = "fixed-version: Fixed in stable branch updates" +CVE_STATUS[CVE-2023-5156] = "fixed-version: Fixed in stable branch updates" CVE_STATUS[CVE-2023-4527] = "fixed-version: Fixed in stable branch updates" +CVE_STATUS[CVE-2023-0687] = "fixed-version: Fixed in stable branch updates"