coreutils: add SUSE-specific issues to CVE whitelist

Submitted by Ross Burton on Dec. 7, 2020, 3:54 p.m. | Patch ID: 178714

Details

Message ID 20201207155410.1671537-1-ross.burton@arm.com
State New
Headers show

Commit Message

Ross Burton Dec. 7, 2020, 3:54 p.m.
CVE-2013-0221 through -223 are all SUSE-specific, so add them to the
whitelist.

Signed-off-by: Ross Burton <ross.burton@arm.com>

---
 meta/recipes-core/coreutils/coreutils_8.32.bb | 3 +++
 1 file changed, 3 insertions(+)

-- 
2.25.1
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#145356): https://lists.openembedded.org/g/openembedded-core/message/145356
Mute This Topic: https://lists.openembedded.org/mt/78780919/3616849
Group Owner: openembedded-core+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [michael@yoctoproject.org]
-=-=-=-=-=-=-=-=-=-=-=-

Patch hide | download patch | download mbox

diff --git a/meta/recipes-core/coreutils/coreutils_8.32.bb b/meta/recipes-core/coreutils/coreutils_8.32.bb
index 9d1eceef54..4eb357e310 100644
--- a/meta/recipes-core/coreutils/coreutils_8.32.bb
+++ b/meta/recipes-core/coreutils/coreutils_8.32.bb
@@ -199,3 +199,6 @@  do_install_ptest () {
 }
 
 FILES_${PN}-ptest += "${bindir}/getlimits"
+
+# These are specific to Opensuse
+CVE_WHITELIST += "CVE-2013-0221 CVE-2013-0222 CVE-2013-0223"

Comments

Ross Burton Dec. 8, 2020, 4:36 p.m.
Yes, definitely.

Ross

On Tue, 8 Dec 2020 at 14:27, Steve Sakoman <steve@sakoman.com> wrote:
>

> On Mon, Dec 7, 2020 at 5:54 AM Ross Burton <ross@burtonini.com> wrote:

> >

> > CVE-2013-0221 through -223 are all SUSE-specific, so add them to the

> > whitelist.

>

> Good for dunfell too (with recipe version change of course)?

>

> Steve

>

> > Signed-off-by: Ross Burton <ross.burton@arm.com>

> > ---

> >  meta/recipes-core/coreutils/coreutils_8.32.bb | 3 +++

> >  1 file changed, 3 insertions(+)

> >

> > diff --git a/meta/recipes-core/coreutils/coreutils_8.32.bb b/meta/recipes-core/coreutils/coreutils_8.32.bb

> > index 9d1eceef54..4eb357e310 100644

> > --- a/meta/recipes-core/coreutils/coreutils_8.32.bb

> > +++ b/meta/recipes-core/coreutils/coreutils_8.32.bb

> > @@ -199,3 +199,6 @@ do_install_ptest () {

> >  }

> >

> >  FILES_${PN}-ptest += "${bindir}/getlimits"

> > +

> > +# These are specific to Opensuse

> > +CVE_WHITELIST += "CVE-2013-0221 CVE-2013-0222 CVE-2013-0223"

> > --

> > 2.25.1

> >

> >

> > 

> >
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#145410): https://lists.openembedded.org/g/openembedded-core/message/145410
Mute This Topic: https://lists.openembedded.org/mt/78780919/1003190
Group Owner: openembedded-core+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [mhalstead@linuxfoundation.org]
-=-=-=-=-=-=-=-=-=-=-=-