openssh: Exclude CVE-2007-2768 from cve-check

author Richard Purdie <richard.purdie@linuxfoundation.org>

Mon, 10 May 2021 15:55:50 +0000 (16:55 +0100)

committer Steve Sakoman <steve@sakoman.com>

Fri, 14 May 2021 17:16:37 +0000 (07:16 -1000)
author Richard Purdie <richard.purdie@linuxfoundation.org>
Mon, 10 May 2021 15:55:50 +0000 (16:55 +0100)
committer Steve Sakoman <steve@sakoman.com>
Fri, 14 May 2021 17:16:37 +0000 (07:16 -1000)
diff --git a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb

index fe94f30503662131475dfd0dd0c468c301905ba9..b429fbe96d6d3ec14cd61e4b9feab36440cff593 100644 (file)
--- a/meta/recipes-connectivity/openssh/openssh_8.2p1.bb
+++ b/meta/recipes-connectivity/openssh/openssh_8.2p1.bb
@@ -28,6 +28,9 @@ SRC_URI = "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PV}.tar
  SRC_URI[md5sum] = "3076e6413e8dbe56d33848c1054ac091"
  SRC_URI[sha256sum] = "43925151e6cf6cee1450190c0e9af4dc36b41c12737619edff8bcebdff64e671"
  
+# This CVE is specific to OpenSSH with the pam opie which we don't build/use here
+CVE_CHECK_WHITELIST += "CVE-2007-2768"
+
  # This CVE is specific to OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7
  # and when running in a Kerberos environment. As such it is not relevant to OpenEmbedded
  CVE_CHECK_WHITELIST += "CVE-2014-9278"
author	Richard Purdie <richard.purdie@linuxfoundation.org>
	Mon, 10 May 2021 15:55:50 +0000 (16:55 +0100)
committer	Steve Sakoman <steve@sakoman.com>
	Fri, 14 May 2021 17:16:37 +0000 (07:16 -1000)