[meta][PATCH 09/09] linux-yocto/6.18: update CVE exclusions (6.18.8)

public inbox for openembedded-core@lists.openembedded.org
 help / color / mirror / Atom feed

From: bruce.ashfield@gmail.com
To: richard.purdie@linuxfoundation.org
Cc: openembedded-core@lists.openembedded.org
Subject: [meta][PATCH 09/09] linux-yocto/6.18: update CVE exclusions (6.18.8)
Date: Fri,  6 Feb 2026 15:27:27 -0500	[thread overview]
Message-ID: <20260206202732.1080699-10-bruce.ashfield@gmail.com> (raw)
In-Reply-To: <20260206202732.1080699-1-bruce.ashfield@gmail.com>

From: Bruce Ashfield <bruce.ashfield@gmail.com>

Data pulled from: https://github.com/CVEProject/cvelistV5

    1/1 [
        Author: cvelistV5 Github Action
        Email: github_action@example.com
        Subject: 1 changes (1 new | 0 updated): - 1 new CVEs: CVE-2026-1896 - 0 updated CVEs:
        Date: Wed, 4 Feb 2026 23:41:08 +0000

    ]

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
---
 .../linux/cve-exclusion_6.18.inc              | 242 +++++++++++++++++-
 1 file changed, 237 insertions(+), 5 deletions(-)

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
index a29732706e..383f35291e 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
@@ -1,11 +1,11 @@
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2026-01-26 19:48:18.296749+00:00 for kernel version 6.18.7
-# From linux_kernel_cves cve_2026-01-26_1900Z-2-g425a25ddf37
+# Generated at 2026-02-05 00:48:36.677660+00:00 for kernel version 6.18.8
+# From linux_kernel_cves 2026-02-05_baseline
 
 
 python check_kernel_cve_status_version() {
-    this_version = "6.18.7"
+    this_version = "6.18.8"
     kernel_version = d.getVar("LINUX_VERSION")
     if kernel_version != this_version:
         bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -11662,8 +11662,6 @@ CVE_STATUS[CVE-2024-42128] = "fixed-version: Fixed from version 6.10"
 
 CVE_STATUS[CVE-2024-42129] = "fixed-version: Fixed from version 6.10"
 
-CVE_STATUS[CVE-2024-42130] = "fixed-version: Fixed from version 6.10"
-
 CVE_STATUS[CVE-2024-42131] = "fixed-version: Fixed from version 6.10"
 
 CVE_STATUS[CVE-2024-42132] = "fixed-version: Fixed from version 6.10"
@@ -20338,6 +20336,46 @@ CVE_STATUS[CVE-2025-71162] = "cpe-stable-backport: Backported in 6.18.7"
 
 CVE_STATUS[CVE-2025-71163] = "cpe-stable-backport: Backported in 6.18.7"
 
+CVE_STATUS[CVE-2025-71180] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71181] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71182] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71183] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71184] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71185] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71186] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71187] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71188] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71189] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71190] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71191] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71192] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2025-71193] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71194] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71195] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71196] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2025-71197] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2025-71198] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2025-71199] = "cpe-stable-backport: Backported in 6.18.8"
+
 CVE_STATUS[CVE-2026-22976] = "cpe-stable-backport: Backported in 6.18.6"
 
 CVE_STATUS[CVE-2026-22977] = "cpe-stable-backport: Backported in 6.18.6"
@@ -20414,3 +20452,197 @@ CVE_STATUS[CVE-2026-23012] = "cpe-stable-backport: Backported in 6.18.7"
 
 CVE_STATUS[CVE-2026-23013] = "cpe-stable-backport: Backported in 6.18.7"
 
+CVE_STATUS[CVE-2026-23014] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23015] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23016] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23017] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23018] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23019] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23020] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23021] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23022] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23023] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23024] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23025] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23026] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23027] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23028] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23029] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23030] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23031] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23032] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23033] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23034] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23035] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23036] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23037] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23038] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23039] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23040] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23041] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23042] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23043] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23044] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23045] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23046] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23047] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23048] = "cpe-stable-backport: Backported in 6.18.6"
+
+CVE_STATUS[CVE-2026-23049] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23050] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23051] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23052] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23053] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23054] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23055] = "cpe-stable-backport: Backported in 6.18.7"
+
+CVE_STATUS[CVE-2026-23056] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23057] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23058] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23059] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23060] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23061] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23062] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23063] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23064] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23065] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23066] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23067] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23068] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23069] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23070] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23071] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23072] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23073] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23074] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23075] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23076] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23077] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23078] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23079] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23080] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23081] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23082] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23083] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23084] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23085] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23086] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23087] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23088] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23089] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23090] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23091] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23092] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23093] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23094] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23095] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23096] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23097] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23098] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23099] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23100] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23101] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23102] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23103] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23104] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23105] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23106] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23107] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23108] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23109] = "cpe-stable-backport: Backported in 6.18.8"
+
+CVE_STATUS[CVE-2026-23110] = "cpe-stable-backport: Backported in 6.18.8"
+
-- 
2.43.0

next prev parent reply	other threads:[~2026-02-06 20:27 UTC|newest]

Thread overview: 26+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2026-02-06 20:27 [PATCH 0/13] kernel-yocto: 6.18 updates and 6.12/6.16 removal bruce.ashfield
2026-02-06 20:27 ` [meta][PATCH 01/09] linux-yocto/6.12: update to v6.12.67 bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-06 20:27 ` [meta][PATCH 02/09] linux-yocto/6.12: update CVE exclusions (6.12.67) bruce.ashfield
2026-02-06 20:27 ` [meta][PATCH 05/09] linux-yocto/6.18: update to v6.18.7 bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-06 20:27 ` [meta][PATCH 06/09] linux-yocto/6.18: update CVE exclusions (6.18.7) bruce.ashfield
2026-02-06 20:27 ` [meta][PATCH 07/09] linux-yocto/6.18: beaglebone black: boot and graphics fixes bruce.ashfield
2026-02-06 20:27 ` [meta][PATCH 08/09] linux-yocto/6.18: update to v6.18.8 bruce.ashfield
2026-02-06 20:27 ` bruce.ashfield [this message]
2026-02-06 20:27 ` [meta-yocto-bsp][PATCH 01/04] yocto-bsp: Bump the default kernel to v6.18 for beaglebone bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-06 20:27 ` [meta-yocto-bsp][PATCH 02/04] meta-yocto-bsp: drop 6.12 bbappend bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-06 20:27 ` [meta-yocto-bsp][PATCH 03/04] meta-yocto-bsp: drop 6.16 bbappend bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-06 20:27 ` [meta-yocto-bsp][PATCH 04/04] yocto-bsp: linux-yocto/6.18: update to v6.18.8 bruce.ashfield
2026-02-06 20:46   ` Patchtest results for " patchtest
2026-02-10 10:09 ` [OE-core] [PATCH 0/13] kernel-yocto: 6.18 updates and 6.12/6.16 removal Mathieu Dubois-Briand
2026-02-10 13:19   ` Richard Purdie
2026-02-10 13:42     ` Bruce Ashfield
2026-02-10 14:08       ` Mathieu Dubois-Briand
2026-02-10 14:18         ` Bruce Ashfield
2026-02-10 15:20           ` Mathieu Dubois-Briand
2026-02-10 14:15     ` Bruce Ashfield
2026-02-10 15:10       ` Richard Purdie

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:a29732706 dfblob:383f35291 )
 OR (
bs:"[meta][PATCH 09/09] linux-yocto/6.18: update CVE exclusions (6.18.8)" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20260206202732.1080699-10-bruce.ashfield@gmail.com \
    --to=bruce.ashfield@gmail.com \
    --cc=openembedded-core@lists.openembedded.org \
    --cc=richard.purdie@linuxfoundation.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox