[meta,08/15] linux-yocto/6.18: update CVE exclusions (6.18.23)

Message ID	20260423153222.1932256-9-bruce.ashfield@gmail.com
State	New
Headers	show Return-Path: <bruce.ashfield@gmail.com> ip: 209.85.217.48, mailfrom: bruce.ashfield@gmail.com) From: bruce.ashfield@gmail.com To: richard.purdie@linuxfoundation.org Cc: openembedded-core@lists.openembedded.org Subject: [meta][PATCH 08/15] linux-yocto/6.18: update CVE exclusions (6.18.23) Date: Thu, 23 Apr 2026 11:32:15 -0400 Message-ID: <20260423153222.1932256-9-bruce.ashfield@gmail.com> In-Reply-To: <20260423153222.1932256-1-bruce.ashfield@gmail.com> References: <20260423153222.1932256-1-bruce.ashfield@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable
Series	linux-yocto: -stable updates \| expand [0/15] linux-yocto: -stable updates [meta,01/15] linux-yocto/6.18: update to v6.18.20 [meta,02/15] linux-yocto/6.18: update CVE exclusions (6.18.20) [meta,03/15] linux-yocto/6.18: update to v6.18.21 [meta,04/15] linux-yocto/6.18: update CVE exclusions (6.18.21) [meta,05/15] linux-yocto/6.18: update to v6.18.22 [meta,06/15] linux-yocto/6.18: update CVE exclusions (6.18.22) [meta,07/15] linux-yocto/6.18: update to v6.18.23 [meta,08/15] linux-yocto/6.18: update CVE exclusions (6.18.23) [meta,09/15] linux-yocto/6.18: update to v6.18.24 [meta,10/15] linux-yocto/6.18: update CVE exclusions (6.18.24) [meta-yocto-bsp,11/15] yocto-bsps: update to v6.18.20 [meta-yocto-bsp,12/15] yocto-bsps: update to v6.18.21 [meta-yocto-bsp,13/15] yocto-bsps: update to v6.18.22 [meta-yocto-bsp,14/15] yocto-bsps: update to v6.18.23 [meta-yocto-bsp,15/15] yocto-bsps: update to v6.18.24

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc index 2429851ff8..9e446741d5 100644 --- a/meta/recipes-kernel/linux/cve-exclusion_6.18.inc +++ b/meta/recipes-kernel/linux/cve-exclusion_6.18.inc @@ -1,11 +1,11 @@ # Auto-generated CVE metadata, DO NOT EDIT BY HAND. -# Generated at 2026-04-14 21:26:55.774766+00:00 for kernel version 6.18.22 -# From linux_kernel_cves cve_2026-04-14_2000Z-2-gad6d9150d01 +# Generated at 2026-04-22 14:47:41.674823+00:00 for kernel version 6.18.23 +# From linux_kernel_cves cve_2026-04-22_1300Z-1-g44d8eee41e5 python check_kernel_cve_status_version() { - this_version = "6.18.22" + this_version = "6.18.23" kernel_version = d.getVar("LINUX_VERSION") if kernel_version != this_version: bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version)) @@ -21260,7 +21260,7 @@ CVE_STATUS[CVE-2026-23392] = "cpe-stable-backport: Backported in 6.18.20" CVE_STATUS[CVE-2026-23393] = "cpe-stable-backport: Backported in 6.18.20" -# CVE-2026-23394 needs backporting (fixed from 7.0) +CVE_STATUS[CVE-2026-23394] = "cpe-stable-backport: Backported in 6.18.23" CVE_STATUS[CVE-2026-23395] = "cpe-stable-backport: Backported in 6.18.20" @@ -21458,7 +21458,7 @@ CVE_STATUS[CVE-2026-31405] = "cpe-stable-backport: Backported in 6.18.19" CVE_STATUS[CVE-2026-31406] = "cpe-stable-backport: Backported in 6.18.21" -# CVE-2026-31407 needs backporting (fixed from 7.0) +# CVE-2026-31407 may need backporting (fixed from 6.18.24) CVE_STATUS[CVE-2026-31408] = "cpe-stable-backport: Backported in 6.18.21" @@ -21502,5 +21502,209 @@ CVE_STATUS[CVE-2026-31427] = "cpe-stable-backport: Backported in 6.18.21" CVE_STATUS[CVE-2026-31428] = "cpe-stable-backport: Backported in 6.18.21" +CVE_STATUS[CVE-2026-31429] = "cpe-stable-backport: Backported in 6.18.23" + +CVE_STATUS[CVE-2026-31430] = "cpe-stable-backport: Backported in 6.18.23" + +CVE_STATUS[CVE-2026-31431] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31432] = "cpe-stable-backport: Backported in 6.18.22" + +CVE_STATUS[CVE-2026-31433] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31434] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31435] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31436] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31437] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31438] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31439] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31440] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31441] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31442] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31443] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31444] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31445] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31446] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31447] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31448] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31449] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31450] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31451] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31452] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31453] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31454] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31455] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31456] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31457] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31458] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31459] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31460] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31461] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31462] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31463] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31464] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31465] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31466] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31467] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31468] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31469] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31470] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31471] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31472] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31473] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31474] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31475] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31476] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31477] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31478] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31479] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31480] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31481] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31482] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31483] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31484] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31485] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31486] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31487] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31488] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31489] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31490] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31491] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31492] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31493] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31494] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31495] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31496] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31497] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31498] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31499] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31500] = "cpe-stable-backport: Backported in 6.18.21" + +# CVE-2026-31501 needs backporting (fixed from 7.0) + +CVE_STATUS[CVE-2026-31502] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31503] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31504] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31505] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31506] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31507] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31508] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31509] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31510] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31511] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31512] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31513] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31514] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31515] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31516] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31517] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31518] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31519] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31520] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31521] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31522] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31523] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31524] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31525] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31526] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31527] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31528] = "cpe-stable-backport: Backported in 6.18.21" + +CVE_STATUS[CVE-2026-31529] = "fixed-version: only affects 6.19 onwards" + +CVE_STATUS[CVE-2026-31530] = "cpe-stable-backport: Backported in 6.18.21" + CVE_STATUS[CVE-2026-31788] = "cpe-stable-backport: Backported in 6.18.20"

[meta,08/15] linux-yocto/6.18: update CVE exclusions (6.18.23)

Commit Message

Patch