[1/2] cve-exclusions: set status for 5 CVEs

Message ID	20260416222526.1992249-1-peter.marko@siemens.com
State	Accepted, archived
Commit	699dbbdf3ab2693bae8a7e0425e2519250fdfec4
Headers	show Return-Path: <peter.marko@siemens.com> ip: 185.136.64.227, mailfrom: fm-256628-20260416222543defb8d72dc0002074d-n3myes@rts-flowmailer.siemens.com) From: Peter Marko <peter.marko@siemens.com> To: openembedded-core@lists.openembedded.org Cc: Peter Marko <peter.marko@siemens.com> Subject: [PATCH 1/2] cve-exclusions: set status for 5 CVEs Date: Fri, 17 Apr 2026 00:25:25 +0200 Message-ID: <20260416222526.1992249-1-peter.marko@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-256628:519-21489:flowmailer
Series	[1/2] cve-exclusions: set status for 5 CVEs \| expand [1/2] cve-exclusions: set status for 5 CVEs [2/2] cve-exclusions: set status for CVE-2025-71145

Message ID

20260416222526.1992249-1-peter.marko@siemens.com

State

Accepted, archived

Commit

699dbbdf3ab2693bae8a7e0425e2519250fdfec4

Headers

From: Peter Marko <peter.marko@siemens.com>
To: openembedded-core@lists.openembedded.org
Cc: Peter Marko <peter.marko@siemens.com>
Subject: [PATCH 1/2] cve-exclusions: set status for 5 CVEs
Date: Fri, 17 Apr 2026 00:25:25 +0200
Message-ID: <20260416222526.1992249-1-peter.marko@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-256628:519-21489:flowmailer

Series

[1/2] cve-exclusions: set status for 5 CVEs | expand

Commit Message

Peter Marko April 16, 2026, 10:25 p.m. UTC

From: Peter Marko <peter.marko@siemens.com>

Reuse work of Debian researchers and set status for fixed CVEs
accordingly.

* https://security-tracker.debian.org/tracker/CVE-2023-53012
  * 6.2-rc5
* https://security-tracker.debian.org/tracker/CVE-2023-53187
  * 6.5-rc3
* https://security-tracker.debian.org/tracker/CVE-2024-49854
  * 6.12-rc1
* https://security-tracker.debian.org/tracker/CVE-2025-38656
  * 6.17-rc1
* https://security-tracker.debian.org/tracker/CVE-2025-68195
  * 6.18-rc5

Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 meta/recipes-kernel/linux/cve-exclusion.inc | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/meta/recipes-kernel/linux/cve-exclusion.inc b/meta/recipes-kernel/linux/cve-exclusion.inc
index 7d68a9bbaa..f86c8c3e2c 100644
--- a/meta/recipes-kernel/linux/cve-exclusion.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion.inc
@@ -173,3 +173,18 @@  CVE_STATUS[CVE-2023-39180] = "fixed-version: Fixed from 6.5"
 # Fix https://git.kernel.org/linus/0849a5441358cef02586fb2d60f707c0db195628
 # Fix https://git.kernel.org/linus/9a1abc24850eb759e36a2f8869161c3b7254c904
 CVE_STATUS[CVE-2023-6535] = "fixed-version: Fixed from 6.8"
+
+# Fix https://git.kernel.org/linus/6c54b7bc8a31ce0f7cc7f8deef05067df414f1d8
+CVE_STATUS[CVE-2023-53012] = "fixed-version: Fixed from 6.2"
+
+# Fix https://git.kernel.org/linus/0657b20c5a76c938612f8409735a8830d257866e
+CVE_STATUS[CVE-2023-53187] = "fixed-version: Fixed from 6.5"
+
+# Fix https://git.kernel.org/linus/1ba0403ac6447f2d63914fb760c44a3b19c44eaf
+CVE_STATUS[CVE-2024-49854] = "fixed-version: Fixed from 6.12"
+
+# Fix https://git.kernel.org/linus/cf80c02a9fdb6c5bc8508beb6a0f6a1294fc32f6
+CVE_STATUS[CVE-2025-38656] = "fixed-version: Fixed from 6.17"
+
+# Fix https://git.kernel.org/linus/f1fdffe0afea02ba783acfe815b6a60e7180df40
+CVE_STATUS[CVE-2025-68195] = "fixed-version: Fixed from 6.18"

[1/2] cve-exclusions: set status for 5 CVEs

Commit Message

Patch