bluez: Exclude CVE-2020-12352 CVE-2020-24490 from cve-check

These CVEs are fixed with kernel changes and don't affect the bluez recipe. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-11 13:47:54 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2021-05-12 23:05:17 +0100
commit: 658902477840ea34d414083c4c79616bf5e999a2 (patch)
tree: e918707ff0d22acb1566f8ccde37c1417794362f /meta
parent: 8556d6a6722f21af5e6f97589bec3cbd31da206c (diff)
download: openembedded-core-658902477840ea34d414083c4c79616bf5e999a2.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.58.bb b/meta/recipes-connectivity/bluez5/bluez5_5.58.bb
index 186a621c44..eb8475ec1e 100644
--- a/meta/recipes-connectivity/bluez5/bluez5_5.58.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.58.bb
@@ -2,6 +2,9 @@ require bluez5.inc
 
 SRC_URI[sha256sum] = "c8065e75a5eb67236849ef68a354b1700540305a8c88ef0a0fd6288f19daf1f1"
 
+# These issues have kernel fixes rather than bluez fixes so exclude here
+CVE_CHECK_WHITELIST += "CVE-2020-12352 CVE-2020-24490"
+
 # noinst programs in Makefile.tools that are conditional on READLINE
 # support
 NOINST_TOOLS_READLINE ?= " \
author	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-11 13:47:54 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-05-12 23:05:17 +0100
commit	658902477840ea34d414083c4c79616bf5e999a2 (patch)
tree	e918707ff0d22acb1566f8ccde37c1417794362f /meta
parent	8556d6a6722f21af5e6f97589bec3cbd31da206c (diff)
download	openembedded-core-658902477840ea34d414083c4c79616bf5e999a2.tar.gz