* [PATCH] linux: add CVE_STATUS for a chrome* bug
@ 2025-05-15 19:05 Randy.MacLeod
0 siblings, 0 replies; only message in thread
From: Randy.MacLeod @ 2025-05-15 19:05 UTC (permalink / raw)
To: openembedded-core
From: Randy MacLeod <Randy.MacLeod@windriver.com>
This is not a linux-yocto CVE yet it shows up in the reports as:
linux-yocto-custom CVE-2023-3079 0.0 8.8 Unpatched https://nvd.nist.gov/vuln/detail/CVE-2023-3079
For reference, the CPE says:
Affects cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
So affects all Linux systems,
Running on/with cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
[ YOCTO #15780 ]
Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
---
meta/recipes-kernel/linux/cve-exclusion.inc | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc
index f1b7db44b6..80c76433ef 100644
--- a/meta/recipes-kernel/linux/cve-exclusion.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -133,6 +133,8 @@ CVE_STATUS[CVE-2023-1076] = "fixed-version: Fixed from version 6.3rc1"
CVE_STATUS[CVE-2023-2898] = "fixed-version: Fixed from version 6.5rc1"
+CVE_STATUS[CVE-2023-3079] = "not-applicable-config: Issue only affects chromium, which is not in linux-yocto"
+
CVE_STATUS[CVE-2023-3772] = "fixed-version: Fixed from version 6.5rc7"
CVE_STATUS[CVE-2023-3773] = "fixed-version: Fixed from version 6.5rc7"
--
2.34.1
^ permalink raw reply related [flat|nested] only message in thread
only message in thread, other threads:[~2025-05-15 19:05 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2025-05-15 19:05 [PATCH] linux: add CVE_STATUS for a chrome* bug Randy.MacLeod
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox