qemu: Exclude CVE-2007-0998 from cve-check

The CVE applies to the built-in VNC server but we don't enable this by default. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-10 12:42:25 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-22 10:00:45 +0100
commit: 9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7 (patch)
tree: 73488d920d7dd899232155bebddc42f687edcbe9 /meta/recipes-devtools
parent: d8df88018fc90b2ff039ef58249f8581d22b1cc6 (diff)
download: openembedded-core-contrib-9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index e1c1bfdbfe..c56f341a5e 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -68,6 +68,10 @@ SRC_URI_append_class-nativesdk = " file://cross.patch"
 # Applies against virglrender < 0.6.0 and not qemu itself
 CVE_CHECK_WHITELIST += "CVE-2017-5957"
 
+# The VNC server can expose host files uder some circumstances. We don't
+# enable it by default.
+CVE_CHECK_WHITELIST += "CVE-2007-0998"
+
 COMPATIBLE_HOST_mipsarchn32 = "null"
 COMPATIBLE_HOST_mipsarchn64 = "null"
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-10 12:42:25 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-22 10:00:45 +0100
commit	9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7 (patch)
tree	73488d920d7dd899232155bebddc42f687edcbe9 /meta/recipes-devtools
parent	d8df88018fc90b2ff039ef58249f8581d22b1cc6 (diff)
download	openembedded-core-contrib-9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7.tar.gz