diff mbox series

[03/16] linux-yocto/6.17: update CVE exclusions (6.17.7)

Message ID a914367244b9abc312ce60667f08402b431b3b7c.1764822465.git.bruce.ashfield@gmail.com
State New
Headers show
Series [01/16] linux-yocto/6.17: fix -tiny kernel boot | expand

Commit Message

Bruce Ashfield Dec. 4, 2025, 4:30 a.m. UTC 
From: Bruce Ashfield <bruce.ashfield@gmail.com>

Data pulled from: https://github.com/CVEProject/cvelistV5

    1/1 [
        Author: cvelistV5 Github Action
        Email: github_action@example.com
        Subject: 5 changes (0 new | 5 updated): - 0 new CVEs: - 5 updated CVEs: CVE-2025-43384, CVE-2025-43408, CVE-2025-43435, CVE-2025-43474, CVE-2025-43478
        Date: Tue, 4 Nov 2025 13:42:11 +0000

    ]

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
---
 meta/recipes-kernel/linux/cve-exclusion_6.17.inc | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)
diff mbox series

Patch

diff --git a/meta/recipes-kernel/linux/cve-exclusion_6.17.inc b/meta/recipes-kernel/linux/cve-exclusion_6.17.inc
index 126afb8ede6..f60050d6470 100644
--- a/meta/recipes-kernel/linux/cve-exclusion_6.17.inc
+++ b/meta/recipes-kernel/linux/cve-exclusion_6.17.inc
@@ -1,11 +1,11 @@ 
 
 # Auto-generated CVE metadata, DO NOT EDIT BY HAND.
-# Generated at 2025-10-30 16:47:14.266821+00:00 for kernel version 6.17.6
-# From linux_kernel_cves cve_2025-10-30_1600Z-2-g07cefa3115c
+# Generated at 2025-11-04 13:42:54.522185+00:00 for kernel version 6.17.7
+# From linux_kernel_cves cve_2025-11-04_1300Z-2-geaff4df6d09
 
 
 python check_kernel_cve_status_version() {
-    this_version = "6.17.6"
+    this_version = "6.17.7"
     kernel_version = d.getVar("LINUX_VERSION")
     if kernel_version != this_version:
         bb.warn("Kernel CVE status needs updating: generated for %s but kernel is %s" % (this_version, kernel_version))
@@ -17644,7 +17644,7 @@  CVE_STATUS[CVE-2025-40082] = "cpe-stable-backport: Backported in 6.17.3"
 
 CVE_STATUS[CVE-2025-40083] = "fixed-version: Fixed from version 6.16"
 
-# CVE-2025-40084 has no known resolution
+CVE_STATUS[CVE-2025-40084] = "cpe-stable-backport: Backported in 6.17.6"
 
 CVE_STATUS[CVE-2025-40085] = "cpe-stable-backport: Backported in 6.17.5"
 
@@ -17688,6 +17688,10 @@  CVE_STATUS[CVE-2025-40104] = "cpe-stable-backport: Backported in 6.17.5"
 
 CVE_STATUS[CVE-2025-40105] = "cpe-stable-backport: Backported in 6.17.5"
 
+CVE_STATUS[CVE-2025-40106] = "cpe-stable-backport: Backported in 6.17.6"
+
+CVE_STATUS[CVE-2025-40107] = "fixed-version: Fixed from version 6.17"
+
 CVE_STATUS[CVE-2025-40114] = "fixed-version: Fixed from version 6.15"
 
 CVE_STATUS[CVE-2025-40300] = "fixed-version: Fixed from version 6.17"