u-boot: Set CVE_PRODUCT

Message ID	20241114073723.1786833-1-m.otto@phytec.de (mailing list archive)
State	New
Headers	show Return-Path: <m.otto@phytec.de> ip: 40.107.249.94, mailfrom: m.otto@phytec.de) Received-SPF: SoftFail (protection.outlook.com: domain of transitioning phytec.de discourages use of 91.26.50.189 as permitted sender) From: Maik Otto <m.otto@phytec.de> To: <poky@lists.yoctoproject.org>, <upstream@lists.phytec.de> Subject: [PATCH] u-boot: Set CVE_PRODUCT Date: Thu, 14 Nov 2024 08:37:23 +0100 Message-ID: <20241114073723.1786833-1-m.otto@phytec.de> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain
Series	u-boot: Set CVE_PRODUCT \| expand u-boot: Set CVE_PRODUCT

Message ID

20241114073723.1786833-1-m.otto@phytec.de (mailing list archive)

State

New

Headers

Received-SPF: SoftFail (protection.outlook.com: domain of transitioning
 phytec.de discourages use of 91.26.50.189 as permitted sender)
From: Maik Otto <m.otto@phytec.de>
To: <poky@lists.yoctoproject.org>, <upstream@lists.phytec.de>
Subject: [PATCH] u-boot: Set CVE_PRODUCT
Date: Thu, 14 Nov 2024 08:37:23 +0100
Message-ID: <20241114073723.1786833-1-m.otto@phytec.de>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 14 Nov 2024 07:37:45.2176
 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 5b671fb1-4bd7-4dac-cb3c-08dd047f3af4
X-MS-Exchange-CrossTenant-Id: e609157c-80e2-446d-9be3-9c99c2399d29
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: 
 TenantId=e609157c-80e2-446d-9be3-9c99c2399d29;Ip=[91.26.50.189];Helo=[Diagnostix.phytec.de]
X-MS-Exchange-CrossTenant-AuthSource: 
	DB3PEPF0000885A.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVXP195MB1639
List-Id: <poky.lists.yoctoproject.org>
X-Webhook-Received: from li982-79.members.linode.com [45.33.32.79] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <poky@lists.yoctoproject.org>; Thu, 14 Nov 2024 07:37:57 -0000
X-Groupsio-URL: https://lists.yoctoproject.org/g/poky/message/13489

Series

u-boot: Set CVE_PRODUCT | expand

The CPE vendor is "denx" and the CPE product is "u-boot". Set CVE_PRODUCT for properly matching in the NVD database. Signed-off-by: Maik Otto <m.otto@phytec.de> --- meta/recipes-bsp/u-boot/u-boot.inc | 2 ++ 1 file changed, 2 insertions(+)

Comments

Fabio Estevam Nov. 14, 2024, 11:20 a.m. UTC | #1

On Thu, Nov 14, 2024 at 4:38 AM Maik Otto via lists.yoctoproject.org
<m.otto=phytec.de@lists.yoctoproject.org> wrote:
>
> The CPE vendor is "denx" and the CPE product is "u-boot".
> Set CVE_PRODUCT for properly matching in the NVD database.
>
> Signed-off-by: Maik Otto <m.otto@phytec.de>

Thanks for the patch, but the correct mailing list is
openembedded-core@lists.openembedded.org.

diff --git a/meta/recipes-bsp/u-boot/u-boot.inc b/meta/recipes-bsp/u-boot/u-boot.inc
index 9100964c73..3270c22e8d 100644
--- a/meta/recipes-bsp/u-boot/u-boot.inc
+++ b/meta/recipes-bsp/u-boot/u-boot.inc
@@ -20,6 +20,8 @@  PACKAGECONFIG ??= "openssl"
 # a host build dependency.
 PACKAGECONFIG[openssl] = ",,openssl-native"
 
+CVE_PRODUCT = "denx:u-boot"
+
 # Allow setting an additional version string that will be picked up by the
 # u-boot build system and appended to the u-boot version.  If the .scmversion
 # file already exists it will not be overwritten.

u-boot: Set CVE_PRODUCT

Commit Message

Comments

Patch