[walnascar,07/14] binutils: mark CVE-2025-1153 as fixed

Message ID	b8ed40864e664e1cd50b2015569a406f49a0125e.1748446235.git.steve@sakoman.com
State	RFC
Delegated to:	Steve Sakoman
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.210.174, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][walnascar 07/14] binutils: mark CVE-2025-1153 as fixed Date: Wed, 28 May 2025 08:33:16 -0700 Message-ID: <b8ed40864e664e1cd50b2015569a406f49a0125e.1748446235.git.steve@sakoman.com> In-Reply-To: <cover.1748446235.git.steve@sakoman.com> References: <cover.1748446235.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[walnascar,01/14] sqlite3: patch CVE-2025-3277 \| expand [walnascar,01/14] sqlite3: patch CVE-2025-3277 [walnascar,02/14] sqlite3: patch CVE-2025-29088 [walnascar,03/14] sqlite3: mark CVE-2025-29087 as patched [walnascar,04/14] ofono: patch CVE-2024-7537 [walnascar,05/14] xz: patch CVE-2025-31115 [walnascar,06/14] binutils: drop obsolete CVE_STATUS [walnascar,07/14] binutils: mark CVE-2025-1153 as fixed [walnascar,08/14] binutils: Fix CVE-2025-1178 [walnascar,09/14] binutils: Fix CVE-2025-1180 [walnascar,10/14] libarchive: upgrade 3.7.8 -> 3.7.9 [walnascar,11/14] epiphany: upgrade 48.0 -> 48.3 [walnascar,12/14] libmatchbox: upgrade 1.13 -> 1.14 [walnascar,13/14] gcc: fix incorrect preprocessor line numbers in large files [walnascar,14/14] python3-pygobject: RDEPENDS on gobject-introspection

Message ID

b8ed40864e664e1cd50b2015569a406f49a0125e.1748446235.git.steve@sakoman.com

State

RFC

Delegated to:

Steve Sakoman

Headers

From: Steve Sakoman <steve@sakoman.com>
To: openembedded-core@lists.openembedded.org
Subject: [OE-core][walnascar 07/14] binutils: mark CVE-2025-1153 as fixed
Date: Wed, 28 May 2025 08:33:16 -0700
Message-ID: 
 <b8ed40864e664e1cd50b2015569a406f49a0125e.1748446235.git.steve@sakoman.com>
In-Reply-To: <cover.1748446235.git.steve@sakoman.com>
References: <cover.1748446235.git.steve@sakoman.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[walnascar,01/14] sqlite3: patch CVE-2025-3277 | expand

Commit Message

Steve Sakoman May 28, 2025, 3:33 p.m. UTC

From: Peter Marko <peter.marko@siemens.com>

We had this CVE patched but the patch was removed with last 2.44 branch
updates as it is now included.
Since there is no new version which could be set in NVD DB, this needs
to be explicitly handled.

(From OE-Core rev: 32f18145dee54f61203506daef339cd132908287)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-devtools/binutils/binutils-2.44.inc | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/recipes-devtools/binutils/binutils-2.44.inc b/meta/recipes-devtools/binutils/binutils-2.44.inc
index 41071fada1..28100abbe9 100644
--- a/meta/recipes-devtools/binutils/binutils-2.44.inc
+++ b/meta/recipes-devtools/binutils/binutils-2.44.inc
@@ -18,6 +18,8 @@  SRCBRANCH ?= "binutils-2_44-branch"
 
 UPSTREAM_CHECK_GITTAGREGEX = "binutils-(?P<pver>\d+_(\d_?)*)"
 
+CVE_STATUS[CVE-2025-1153] = "cpe-stable-backport: fix available in used git hash"
+
 SRCREV ?= "819d713b6340ed3657e00ad0bc8d5f2b73094a0f"
 BINUTILS_GIT_URI ?= "git://sourceware.org/git/binutils-gdb.git;branch=${SRCBRANCH};protocol=https"
 SRC_URI = "\

[walnascar,07/14] binutils: mark CVE-2025-1153 as fixed

Commit Message

Patch