diff mbox series

[meta,04/11] linux-yocto/6.18: update CVE exclusions (6.18.16)

Message ID 20260323135057.1605923-5-bruce.ashfield@gmail.com
State New
Headers show
Series linux-yocto: consolidated pull request | expand

Commit Message

Bruce Ashfield March 23, 2026, 1:50 p.m. UTC 
From: Bruce Ashfield <bruce.ashfield@gmail.com>

Data pulled from: https://github.com/CVEProject/cvelistV5

    1/1 [
        Author: cvelistV5 Github Action
        Email: github_action@example.com
        Subject: 12 changes (4 new | 8 updated): - 4 new CVEs: CVE-2024-14027, CVE-2025-70040, CVE-2025-70060, CVE-2026-3588 - 8 updated CVEs: CVE-2025-69219, CVE-2026-22457, CVE-2026-22460, CVE-2026-27332, CVE-2026-27379, CVE-2026-27382, CVE-2026-27384, CVE-2026-27386
        Date: Mon, 9 Mar 2026 16:04:20 +0000

    ]

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
---
 .../linux/cve-exclusion_6.18.inc              | 30 ++++++++++++++-----
 1 file changed, 23 insertions(+), 7 deletions(-)
diff mbox series

Patch

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
index 4afd58e924..e8173c4c9f 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc
@@ -1,11 +1,11 @@ 
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2026-02-23 04:32:17.926406+00:00 for kernel version 6.18.13
-# From linux_kernel_cves cve_2026-02-23_0300Z-2-gda53cb14ddd
+# Generated at 2026-03-09 16:24:50.284184+00:00 for kernel version 6.18.16
+# From linux_kernel_cves cve_2026-03-09_1500Z-2-g02517aa779f
 
 
 python check_kernel_cve_status_version() {
-    this_version = "6.18.13"
+    this_version = "6.18.16"
     kernel_version = d.getVar("LINUX_VERSION")
     if kernel_version != this_version:
         bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -9032,6 +9032,8 @@  CVE_STATUS[CVE-2023-54326] = "fixed-version: Fixed from version 6.5"
 
 CVE_STATUS[CVE-2023-7324] = "fixed-version: Fixed from version 6.3"
 
+CVE_STATUS[CVE-2024-14027] = "fixed-version: Fixed from version 6.13"
+
 CVE_STATUS[CVE-2024-26581] = "fixed-version: Fixed from version 6.8"
 
 CVE_STATUS[CVE-2024-26582] = "fixed-version: Fixed from version 6.8"
@@ -20396,12 +20398,8 @@  CVE_STATUS[CVE-2025-71224] = "cpe-stable-backport: Backported in 6.18.10"
 
 CVE_STATUS[CVE-2025-71225] = "cpe-stable-backport: Backported in 6.18.10"
 
-CVE_STATUS[CVE-2025-71226] = "cpe-stable-backport: Backported in 6.18.10"
-
 CVE_STATUS[CVE-2025-71227] = "cpe-stable-backport: Backported in 6.18.10"
 
-CVE_STATUS[CVE-2025-71228] = "cpe-stable-backport: Backported in 6.18.10"
-
 CVE_STATUS[CVE-2025-71229] = "cpe-stable-backport: Backported in 6.18.11"
 
 CVE_STATUS[CVE-2025-71230] = "cpe-stable-backport: Backported in 6.18.11"
@@ -20420,6 +20418,8 @@  CVE_STATUS[CVE-2025-71236] = "cpe-stable-backport: Backported in 6.18.11"
 
 CVE_STATUS[CVE-2025-71237] = "cpe-stable-backport: Backported in 6.18.11"
 
+CVE_STATUS[CVE-2025-71238] = "cpe-stable-backport: Backported in 6.18.13"
+
 CVE_STATUS[CVE-2026-22976] = "cpe-stable-backport: Backported in 6.18.6"
 
 CVE_STATUS[CVE-2026-22977] = "cpe-stable-backport: Backported in 6.18.6"
@@ -20930,3 +20930,19 @@  CVE_STATUS[CVE-2026-23229] = "cpe-stable-backport: Backported in 6.18.11"
 
 CVE_STATUS[CVE-2026-23230] = "cpe-stable-backport: Backported in 6.18.11"
 
+CVE_STATUS[CVE-2026-23231] = "cpe-stable-backport: Backported in 6.18.14"
+
+CVE_STATUS[CVE-2026-23232] = "fixed-version: only affects 6.19 onwards"
+
+CVE_STATUS[CVE-2026-23233] = "cpe-stable-backport: Backported in 6.18.13"
+
+CVE_STATUS[CVE-2026-23234] = "cpe-stable-backport: Backported in 6.18.13"
+
+CVE_STATUS[CVE-2026-23235] = "cpe-stable-backport: Backported in 6.18.13"
+
+CVE_STATUS[CVE-2026-23236] = "cpe-stable-backport: Backported in 6.18.13"
+
+CVE_STATUS[CVE-2026-23237] = "cpe-stable-backport: Backported in 6.18.13"
+
+CVE_STATUS[CVE-2026-23238] = "cpe-stable-backport: Backported in 6.18.13"
+