From: Richard Purdie <richard.purdie@linuxfoundation.org>
Date: Mon, 10 May 2021 11:17:15 +0000 (+0100)
Subject: qemu: Exclude CVE-2017-5957 from cve-check
X-Git-Tag: yocto-3.3.2~126
X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=d8df88018fc90b2ff039ef58249f8581d22b1cc6;p=openembedded-core.git

qemu: Exclude CVE-2017-5957 from cve-check

The CVE applies to virglrender before 0.6.0 which we don't have.

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit 9b5355375d028577de0b98e05992de6a088cb972)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---

diff --git a/meta/recipes-devtools/qemu/qemu.inc b/meta/recipes-devtools/qemu/qemu.inc
index 8b8cecd7a0..e1c1bfdbfe 100644
--- a/meta/recipes-devtools/qemu/qemu.inc
+++ b/meta/recipes-devtools/qemu/qemu.inc
@@ -65,6 +65,9 @@ SRC_URI[sha256sum] = "cb18d889b628fbe637672b0326789d9b0e3b8027e0445b936537c78549
 SRC_URI_append_class-target = " file://cross.patch"
 SRC_URI_append_class-nativesdk = " file://cross.patch"
 
+# Applies against virglrender < 0.6.0 and not qemu itself
+CVE_CHECK_WHITELIST += "CVE-2017-5957"
+
 COMPATIBLE_HOST_mipsarchn32 = "null"
 COMPATIBLE_HOST_mipsarchn64 = "null"