diff mbox series

[openembedded-core,whinlatter,04/18] linux-yocto/6.12: update CVE exclusions (6.12.73)

Message ID 20260423154509.1933646-5-bruce.ashfield@gmail.com
State New
Headers show
Series linux-yocto: stable updates to 6.12 | expand

Commit Message

Bruce Ashfield April 23, 2026, 3:44 p.m. UTC 
From: Bruce Ashfield <bruce.ashfield@gmail.com>

Data pulled from: https://github.com/CVEProject/cvelistV5

    1/1 [
        Author: cvelistV5 Github Action
        Email: github_action@example.com
        Subject: 9 changes (3 new | 6 updated): - 3 new CVEs: CVE-2026-0874, CVE-2026-0875, CVE-2026-23491 - 6 updated CVEs: CVE-2025-13601, CVE-2025-70062, CVE-2025-70063, CVE-2025-7195, CVE-2026-25500, CVE-2026-2661
        Date: Wed, 18 Feb 2026 19:58:22 +0000

    ]

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
---
 .../linux/cve-exclusion_6.12.inc              | 72 ++++++++++++++++++-
 1 file changed, 69 insertions(+), 3 deletions(-)
diff mbox series

Patch

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
index 089446fe87..92a12f2c1f 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.12.inc
@@ -1,11 +1,11 @@ 
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2026-02-16 17:20:15.768713+00:00 for kernel version 6.12.72
-# From linux_kernel_cves cve_2026-02-16_1600Z-3-gf0e5d9ffdc0
+# Generated at 2026-02-18 20:12:59.836870+00:00 for kernel version 6.12.73
+# From linux_kernel_cves cve_2026-02-18_1900Z-2-ge0bc67e5ce4
 
 
 python check_kernel_cve_status_version() {
-    this_version = "6.12.72"
+    this_version = "6.12.73"
     kernel_version = d.getVar("LINUX_VERSION")
     if kernel_version != this_version:
         bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -20394,6 +20394,32 @@  CVE_STATUS[CVE-2025-71223] = "cpe-stable-backport: Backported in 6.12.70"
 
 CVE_STATUS[CVE-2025-71224] = "cpe-stable-backport: Backported in 6.12.70"
 
+CVE_STATUS[CVE-2025-71225] = "cpe-stable-backport: Backported in 6.12.70"
+
+# CVE-2025-71226 needs backporting (fixed from 6.19)
+
+# CVE-2025-71227 needs backporting (fixed from 6.19)
+
+CVE_STATUS[CVE-2025-71228] = "cpe-stable-backport: Backported in 6.12.70"
+
+# CVE-2025-71229 has no known resolution
+
+# CVE-2025-71230 has no known resolution
+
+# CVE-2025-71231 has no known resolution
+
+# CVE-2025-71232 has no known resolution
+
+# CVE-2025-71233 has no known resolution
+
+# CVE-2025-71234 has no known resolution
+
+# CVE-2025-71235 has no known resolution
+
+# CVE-2025-71236 has no known resolution
+
+# CVE-2025-71237 has no known resolution
+
 CVE_STATUS[CVE-2026-22976] = "cpe-stable-backport: Backported in 6.12.66"
 
 CVE_STATUS[CVE-2026-22977] = "cpe-stable-backport: Backported in 6.12.66"
@@ -20864,3 +20890,43 @@  CVE_STATUS[CVE-2026-23209] = "cpe-stable-backport: Backported in 6.12.70"
 
 # CVE-2026-23210 needs backporting (fixed from 6.19)
 
+CVE_STATUS[CVE-2026-23211] = "fixed-version: only affects 6.18 onwards"
+
+CVE_STATUS[CVE-2026-23212] = "cpe-stable-backport: Backported in 6.12.69"
+
+CVE_STATUS[CVE-2026-23213] = "cpe-stable-backport: Backported in 6.12.70"
+
+CVE_STATUS[CVE-2026-23214] = "cpe-stable-backport: Backported in 6.12.70"
+
+CVE_STATUS[CVE-2026-23215] = "cpe-stable-backport: Backported in 6.12.70"
+
+CVE_STATUS[CVE-2026-23216] = "cpe-stable-backport: Backported in 6.12.70"
+
+# CVE-2026-23217 needs backporting (fixed from 6.19)
+
+CVE_STATUS[CVE-2026-23218] = "fixed-version: only affects 6.18 onwards"
+
+CVE_STATUS[CVE-2026-23219] = "cpe-stable-backport: Backported in 6.12.70"
+
+# CVE-2026-23220 has no known resolution
+
+# CVE-2026-23221 has no known resolution
+
+# CVE-2026-23222 has no known resolution
+
+# CVE-2026-23223 has no known resolution
+
+# CVE-2026-23224 has no known resolution
+
+# CVE-2026-23225 has no known resolution
+
+# CVE-2026-23226 has no known resolution
+
+# CVE-2026-23227 has no known resolution
+
+# CVE-2026-23228 has no known resolution
+
+# CVE-2026-23229 has no known resolution
+
+# CVE-2026-23230 has no known resolution
+