[dunfell,3/6] shadow: ignore CVE-2016-15024

Message ID	9d5a05c27a01b3859eae70590ba7dd836abe2719.1678807105.git.steve@sakoman.com
State	Accepted, archived
Commit	9d5a05c27a01b3859eae70590ba7dd836abe2719
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.216.48, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][dunfell 3/6] shadow: ignore CVE-2016-15024 Date: Tue, 14 Mar 2023 05:21:52 -1000 Message-Id: <9d5a05c27a01b3859eae70590ba7dd836abe2719.1678807105.git.steve@sakoman.com> In-Reply-To: <cover.1678807105.git.steve@sakoman.com> References: <cover.1678807105.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[dunfell,1/6] gnutls: fix CVE-2023-0361 timing side-channel in the TLS RSA key exchange code \| expand [dunfell,1/6] gnutls: fix CVE-2023-0361 timing side-channel in the TLS RSA key exchange code [dunfell,2/6] harfbuzz: Security fix for CVE-2023-25193 [dunfell,3/6] shadow: ignore CVE-2016-15024 [dunfell,4/6] oeqa/selftest/prservice: Improve debug output for failure [dunfell,5/6] vim: add missing pkgconfig inherit [dunfell,6/6] linux: inherit pkgconfig in kernel.bbclass

Message ID

9d5a05c27a01b3859eae70590ba7dd836abe2719.1678807105.git.steve@sakoman.com

State

Accepted, archived

Commit

9d5a05c27a01b3859eae70590ba7dd836abe2719

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][dunfell 3/6] shadow: ignore CVE-2016-15024
Date: Tue, 14 Mar 2023 05:21:52 -1000
Message-Id: 
 <9d5a05c27a01b3859eae70590ba7dd836abe2719.1678807105.git.steve@sakoman.com>
In-Reply-To: <cover.1678807105.git.steve@sakoman.com>
References: <cover.1678807105.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[dunfell,1/6] gnutls: fix CVE-2023-0361 timing side-channel in the TLS RSA key exchange code | expand

Commit Message

Steve Sakoman March 14, 2023, 3:21 p.m. UTC

From: Ross Burton <ross.burton@arm.com>

This recently got an updated CPE which matches this recipe, but the issue
is related to an entirely different shadow project so ignore it.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit 2331e98abb09cbcd56625d65c4e5d258dc29dd04)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-extended/shadow/shadow_4.8.1.bb | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/meta/recipes-extended/shadow/shadow_4.8.1.bb b/meta/recipes-extended/shadow/shadow_4.8.1.bb
index ff4aad926f..9dfcd4bc10 100644
--- a/meta/recipes-extended/shadow/shadow_4.8.1.bb
+++ b/meta/recipes-extended/shadow/shadow_4.8.1.bb
@@ -9,3 +9,7 @@  BBCLASSEXTEND = "native nativesdk"
 # Severity is low and marked as closed and won't fix.
 # https://bugzilla.redhat.com/show_bug.cgi?id=884658
 CVE_CHECK_WHITELIST += "CVE-2013-4235"
+
+# This is an issue for a different shadow
+CVE_CHECK_WHITELIST += "CVE-2016-15024"
+

[dunfell,3/6] shadow: ignore CVE-2016-15024

Commit Message

Patch