From: Peter Marko <[email protected]> CPE in NVD [1] shows ubuntu. Debian [1] says "Ubuntu specific motd update code". cvelistV5 has unparseable CPE so it sbom-cve-check assumes vulnerable ("lessThan": "10.1ubuntu2.2").
Signed-off-by: Peter Marko <[email protected]> Signed-off-by: Richard Purdie <[email protected]> (cherry picked from commit 24d38fe4da4ea7d110877c5aaf419af1d27dd43b) Signed-off-by: Yoann Congal <[email protected]> --- meta/recipes-core/base-files/base-files_3.0.14.bb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/meta/recipes-core/base-files/base-files_3.0.14.bb b/meta/recipes-core/base-files/base-files_3.0.14.bb index 3f01bb35d92..d4d777b4851 100644 --- a/meta/recipes-core/base-files/base-files_3.0.14.bb +++ b/meta/recipes-core/base-files/base-files_3.0.14.bb @@ -167,3 +167,5 @@ CONFFILES:${PN} = "${sysconfdir}/fstab ${@['', '${sysconfdir}/hostname ${sysconf CONFFILES:${PN} += "${sysconfdir}/motd ${sysconfdir}/nsswitch.conf ${sysconfdir}/profile" INSANE_SKIP:${PN} += "empty-dirs" + +CVE_STATUS[CVE-2018-6557] = "not-applicable-platform: Ubuntu specific motd update code"
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#236652): https://lists.openembedded.org/g/openembedded-core/message/236652 Mute This Topic: https://lists.openembedded.org/mt/119210609/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
