[scarthgap,2/3] openssh: Mark CVE-2023-51767 as wont-fix

Message ID	20240928174223.3749001-2-peter.marko@siemens.com
State	New
Headers	show Return-Path: <peter.marko@siemens.com> ip: 185.136.65.228, mailfrom: fm-256628-202409281743538091d5248c3c81b7a3-9nxrt6@rts-flowmailer.siemens.com) From: Peter Marko <peter.marko@siemens.com> To: openembedded-core@lists.openembedded.org Cc: Khem Raj <raj.khem@gmail.com>, Alexandre Belloni <alexandre.belloni@bootlin.com>, Richard Purdie <richard.purdie@linuxfoundation.org>, Peter Marko <peter.marko@siemens.com> Subject: [OE-core][scarthgap][PATCH 2/3] openssh: Mark CVE-2023-51767 as wont-fix Date: Sat, 28 Sep 2024 19:42:22 +0200 Message-Id: <20240928174223.3749001-2-peter.marko@siemens.com> In-Reply-To: <20240928174223.3749001-1-peter.marko@siemens.com> References: <20240928174223.3749001-1-peter.marko@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-256628:519-21489:flowmailer
Series	[scarthgap,1/3] gnupg: Document CVE-2022-3219 and mark wontfix \| expand [scarthgap,1/3] gnupg: Document CVE-2022-3219 and mark wontfix [scarthgap,2/3] openssh: Mark CVE-2023-51767 as wont-fix [scarthgap,3/3] wpa-supplicant: Ignore CVE-2024-5290

Message ID

20240928174223.3749001-2-peter.marko@siemens.com

State

New

Headers

From: Peter Marko <peter.marko@siemens.com>
To: openembedded-core@lists.openembedded.org
Cc: Khem Raj <raj.khem@gmail.com>,
	Alexandre Belloni <alexandre.belloni@bootlin.com>,
	Richard Purdie <richard.purdie@linuxfoundation.org>,
	Peter Marko <peter.marko@siemens.com>
Subject: [OE-core][scarthgap][PATCH 2/3] openssh: Mark CVE-2023-51767 as
 wont-fix
Date: Sat, 28 Sep 2024 19:42:22 +0200
Message-Id: <20240928174223.3749001-2-peter.marko@siemens.com>
In-Reply-To: <20240928174223.3749001-1-peter.marko@siemens.com>
References: <20240928174223.3749001-1-peter.marko@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-256628:519-21489:flowmailer

Series

[scarthgap,1/3] gnupg: Document CVE-2022-3219 and mark wontfix | expand

Commit Message

Peter Marko Sept. 28, 2024, 5:42 p.m. UTC

From: Khem Raj <raj.khem@gmail.com>

(From OE-Core rev: 1b4bada6c003ef743df09283e45953e6d9ea4c5a)

Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 meta/recipes-connectivity/openssh/openssh_9.6p1.bb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/meta/recipes-connectivity/openssh/openssh_9.6p1.bb b/meta/recipes-connectivity/openssh/openssh_9.6p1.bb
index 3c507cf911..a8ba67e360 100644
--- a/meta/recipes-connectivity/openssh/openssh_9.6p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_9.6p1.bb
@@ -40,6 +40,7 @@  CVE_STATUS[CVE-2014-9278] = "not-applicable-platform: This CVE is specific to Op
 Red Hat Enterprise Linux 7 and when running in a Kerberos environment"
 
 CVE_STATUS[CVE-2008-3844] = "not-applicable-platform: Only applies to some distributed RHEL binaries."
+CVE_STATUS[CVE-2023-51767] = "upstream-wontfix: It was demonstrated on modified sshd and does not exist in upstream openssh https://bugzilla.mindrot.org/show_bug.cgi?id=3656#c1."
 
 PAM_SRC_URI = "file://sshd"

[scarthgap,2/3] openssh: Mark CVE-2023-51767 as wont-fix

Commit Message

Patch