bluez: Exclude CVE-2020-12352 CVE-2020-24490 from cve-check

author Richard Purdie <richard.purdie@linuxfoundation.org>

Tue, 11 May 2021 12:47:54 +0000 (13:47 +0100)

committer Richard Purdie <richard.purdie@linuxfoundation.org>

Wed, 12 May 2021 22:05:17 +0000 (23:05 +0100)
author Richard Purdie <richard.purdie@linuxfoundation.org>
Tue, 11 May 2021 12:47:54 +0000 (13:47 +0100)
committer Richard Purdie <richard.purdie@linuxfoundation.org>
Wed, 12 May 2021 22:05:17 +0000 (23:05 +0100)
diff --git a/meta/recipes-connectivity/bluez5/bluez5_5.58.bb b/meta/recipes-connectivity/bluez5/bluez5_5.58.bb

index 186a621c4459a6c46b6465465e2e5f8130a62df4..eb8475ec1e21be15bb1b447a42929e1a3a41a666 100644 (file)
--- a/meta/recipes-connectivity/bluez5/bluez5_5.58.bb
+++ b/meta/recipes-connectivity/bluez5/bluez5_5.58.bb
@@ -2,6 +2,9 @@ require bluez5.inc
  
  SRC_URI[sha256sum] = "c8065e75a5eb67236849ef68a354b1700540305a8c88ef0a0fd6288f19daf1f1"
  
+# These issues have kernel fixes rather than bluez fixes so exclude here
+CVE_CHECK_WHITELIST += "CVE-2020-12352 CVE-2020-24490"
+
  # noinst programs in Makefile.tools that are conditional on READLINE
  # support
  NOINST_TOOLS_READLINE ?= " \
author	Richard Purdie <richard.purdie@linuxfoundation.org>
	Tue, 11 May 2021 12:47:54 +0000 (13:47 +0100)
committer	Richard Purdie <richard.purdie@linuxfoundation.org>
	Wed, 12 May 2021 22:05:17 +0000 (23:05 +0100)