From: bruce.ashfield@gmail.com
To: richard.purdie@linuxfoundation.org
Cc: openembedded-core@lists.openembedded.org
Subject: [05/15][openembedded-core] linux-yocto/6.12: update CVE exclusions (6.12.62)
Date: Thu, 18 Dec 2025 15:22:30 -0500 [thread overview]
Message-ID: <20251218202248.70476-5-bruce.ashfield@gmail.com> (raw)
In-Reply-To: <cover.1766087617.bruce.ashfield@gmail.com>
From: Bruce Ashfield <bruce.ashfield@gmail.com>
Data pulled from: https://github.com/CVEProject/cvelistV5
1/1 [
Author: cvelistV5 Github Action
Email: github_action@example.com
Subject: 8 changes (0 new | 8 updated): - 0 new CVEs: - 8 updated CVEs: CVE-2024-41260, CVE-2025-13281, CVE-2025-14606, CVE-2025-14620, CVE-2025-14621, CVE-2025-67898, CVE-2025-67899, CVE-2025-7195
Date: Mon, 15 Dec 2025 16:32:47 +0000
]
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
---
meta/recipes-kernel/linux/cve-exclusion_6.12.inc | 10 ++++++----
1 file changed, 6 insertions(+), 4 deletions(-)
diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
index d272b74737..4839a53cd9 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
@@ -1,11 +1,11 @@
# Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2025-12-09 15:18:04.005747+00:00 for kernel version 6.12.61
-# From linux_kernel_cves cve_2025-12-09_1500Z
+# Generated at 2025-12-15 16:44:27.465288+00:00 for kernel version 6.12.62
+# From linux_kernel_cves cve_2025-12-15_1600Z-2-gd297626114b
python check_kernel_cve_status_version() {
- this_version = "6.12.61"
+ this_version = "6.12.62"
kernel_version = d.getVar("LINUX_VERSION")
if kernel_version != this_version:
bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -18266,7 +18266,7 @@ CVE_STATUS[CVE-2025-40213] = "fixed-version: only affects 6.17 onwards"
CVE_STATUS[CVE-2025-40214] = "cpe-stable-backport: Backported in 6.12.59"
-# CVE-2025-40215 needs backporting (fixed from 6.16)
+CVE_STATUS[CVE-2025-40215] = "cpe-stable-backport: Backported in 6.12.62"
CVE_STATUS[CVE-2025-40216] = "cpe-stable-backport: Backported in 6.12.36"
@@ -18526,5 +18526,7 @@ CVE_STATUS[CVE-2025-40343] = "cpe-stable-backport: Backported in 6.12.58"
CVE_STATUS[CVE-2025-40344] = "cpe-stable-backport: Backported in 6.12.58"
+CVE_STATUS[CVE-2025-40345] = "cpe-stable-backport: Backported in 6.12.61"
+
CVE_STATUS[CVE-2025-40364] = "cpe-stable-backport: Backported in 6.12.14"
--
2.39.2
next prev parent reply other threads:[~2025-12-18 20:23 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-12-18 20:22 [PATCH 0/21] linux-yocto: combined and consolidated pull request bruce.ashfield
2025-12-18 20:22 ` [01/15][openembedded-core] kern-tools: fix commit SHA reproducibility with raw diffs bruce.ashfield
2025-12-18 20:22 ` [02/15][openembedded-core] linux-yocto/6.12: update to v6.12.61 bruce.ashfield
2025-12-18 20:22 ` [03/15][openembedded-core] linux-yocto/6.12: update CVE exclusions (6.12.61) bruce.ashfield
2025-12-18 20:22 ` [04/15][openembedded-core] linux-yocto/6.12: update to v6.12.62 bruce.ashfield
2025-12-18 20:22 ` bruce.ashfield [this message]
2025-12-18 20:22 ` [06/15][openembedded-core] linux-yocto/6.16: rust kernel configs bruce.ashfield
2025-12-18 20:22 ` [07/15][openembedded-core] linux-yocto/6.17: update to v6.17.11 bruce.ashfield
2025-12-18 20:22 ` [08/15][openembedded-core] linux-yocto/6.17: update CVE exclusions (6.17.11) bruce.ashfield
2025-12-18 20:22 ` [09/15][openembedded-core] linux-yocto/6.17: rust kernel configs bruce.ashfield
2025-12-18 20:22 ` [12/15][openembedded-core] linux-libc-headers: update to 6.18 bruce.ashfield
2025-12-18 20:22 ` [13/15][openembedded-core] linux-yocto/6.18: rust kernel configs bruce.ashfield
2025-12-18 20:22 ` [14/15][openembedded-core] linux-yocto/6.18: update to v6.18.1 bruce.ashfield
2025-12-18 20:22 ` [15/15][openembedded-core] linux-yocto/6.18: update CVE exclusions (6.18.1) bruce.ashfield
2025-12-18 20:22 ` [01/06][meta-yocto] yocto-bsp: introduce 6.18 h/w reference bruce.ashfield
2025-12-18 20:22 ` [02/06][meta-yocto] yocto-bsp/6.17: drop bbappend bruce.ashfield
2025-12-18 20:22 ` [03/06][meta-yocto] poky-tiny: make 6.18 preferred kernel version bruce.ashfield
2025-12-18 20:22 ` [04/06][meta-yocto] poky: " bruce.ashfield
2025-12-18 20:22 ` [05/06][meta-yocto] poky-alt: make default kernel 6.18 bruce.ashfield
2025-12-18 20:22 ` [06/06][meta-yocto] yocto-bsp: genericx86: bump default kernel to 6.18 bruce.ashfield
2025-12-22 13:13 ` [PATCH 0/21] linux-yocto: combined and consolidated pull request Richard Purdie
2025-12-23 3:34 ` Bruce Ashfield
2025-12-23 7:31 ` [OE-core] " Mikko Rapeli
[not found] ` <1883C7B7E16A04B1.1614991@lists.openembedded.org>
2025-12-23 8:17 ` Mikko Rapeli
2025-12-23 12:45 ` Richard Purdie
2025-12-23 14:45 ` Bruce Ashfield
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20251218202248.70476-5-bruce.ashfield@gmail.com \
--to=bruce.ashfield@gmail.com \
--cc=openembedded-core@lists.openembedded.org \
--cc=richard.purdie@linuxfoundation.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.