]> code.ossystems Code Review - meta-freescale.git/commitdiff
Code Review / meta-freescale.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: dfc6944)
linux-fslc-imx_4.9: resolve version for cve scans
authorAndrey Zhizhikin <andrey.zhizhikin@leica-geosystems.com>
Tue, 19 Nov 2019 22:07:53 +0000 (22:07 +0000)
committerOtavio Salvador <otavio@ossystems.com.br>
Tue, 19 Nov 2019 22:38:07 +0000 (19:38 -0300)
CVE scanner is unable to parse the version of linux kernel recipe, which
caused warnings to be produced during the scan task since kernel version
was not properly identified.

This was caused by the fact that CVE_VERSION is set per default to PV,
and PV of this receipe does nto resolve in a proper (and actual) kernel
version provided.

By setting CVE_VERSION to explicitly point to KERNEL_VERSION, this recipe
effectively provides a proper kernel version to CVE scanner.

Signed-off-by: Andrey Zhizhikin <andrey.zhizhikin@leica-geosystems.com>
recipes-kernel/linux/linux-fslc-imx_4.9-1.0.x.bb patch | blob | history

diff --git a/recipes-kernel/linux/linux-fslc-imx_4.9-1.0.x.bb b/recipes-kernel/linux/linux-fslc-imx_4.9-1.0.x.bb
index 7114cd22119de37bcf95f1972c23b4f3b979525f..b66d0888c18c27d7e3f3c0fcc1d0750438f2fb6b 100644 (file)
--- a/recipes-kernel/linux/linux-fslc-imx_4.9-1.0.x.bb
+++ b/recipes-kernel/linux/linux-fslc-imx_4.9-1.0.x.bb
@@ -10,6 +10,8 @@ include linux-fslc.inc
 
 PV .= "+git${SRCPV}"
 
+CVE_VERSION = "${KERNEL_VERSION}"
+
 SRCBRANCH = "4.9-1.0.x-imx"
 SRCREV = "953c6e30c9701fda69ef08e2476c541dc4fb1453"
 SRC_URI += "file://0001-Backport-minimal-compiler_attributes.h-to-support-GC.patch \