aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-10 13:36:02 +0100
committerRichard Purdie <richard.purdie@linuxfoundation.org>2021-05-22 10:00:45 +0100
commit7c7c3f3dd3bf7dc34f26d931acf562e93c45e807 (patch)
tree5f94582365988625c96b2cd27e56756c489670ef
parent9ac9f2709a45fc7ce5b3b9a1a5e4f2e116ec2bb7 (diff)
downloadopenembedded-core-7c7c3f3dd3bf7dc34f26d931acf562e93c45e807.tar.gz
openembedded-core-7c7c3f3dd3bf7dc34f26d931acf562e93c45e807.tar.bz2
openembedded-core-7c7c3f3dd3bf7dc34f26d931acf562e93c45e807.zip
qemu: Exclude CVE-2018-18438 from cve-check
The issues were investigated and found not to be an issue therefore exclude from checks. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
-rw-r--r--meta/recipes-devtools/qemu/qemu.inc4
1 files changed, 4 insertions, 0 deletions
diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index c56f341a5e..fbda0c9174 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -72,6 +72,10 @@ CVE_CHECK_WHITELIST += "CVE-2017-5957"
# enable it by default.
CVE_CHECK_WHITELIST += "CVE-2007-0998"
+# 'The issues identified by this CVE were determined to not constitute a vulnerability.'
+# https://bugzilla.redhat.com/show_bug.cgi?id=1609015#c11
+CVE_CHECK_WHITELIST += "CVE-2018-18438"
+
COMPATIBLE_HOST_mipsarchn32 = "null"
COMPATIBLE_HOST_mipsarchn64 = "null"