All of lore.kernel.org
 help / color / mirror / Atom feed
* RE: [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745
       [not found] <176D40CC2C1720E8.4592@lists.yoctoproject.org>
@ 2023-07-29 21:34 ` Marko, Peter
  2023-07-30 13:11   ` akuster808
  0 siblings, 1 reply; 2+ messages in thread
From: Marko, Peter @ 2023-07-29 21:34 UTC (permalink / raw)
  To: yocto, akuster808

Hi Armin,

Gentle ping to pick this commit to kirkstone.

Thanks,
  Peter

> -----Original Message-----
> From: yocto@lists.yoctoproject.org <yocto@lists.yoctoproject.org> On Behalf Of Peter Marko via lists.yoctoproject.org
> Sent: Friday, June 30, 2023 0:10
> To: yocto@lists.yoctoproject.org
> Cc: Marko, Peter (ADV D EU SK BFS1) <Peter.Marko@siemens.com>
> Subject: [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745
>
> From: Peter Marko <peter.marko@siemens.com>
>
> As already mentioned in upgrade commit, this CVE is fixed.
> But cve_check still reports it as NVD DB was not updated.
>
> Signed-off-by: Peter Marko <peter.marko@siemens.com>
> ---
>  meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb | 3 +++
>  1 file changed, 3 insertions(+)
>
> diff --git a/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb b/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
> index 9b76c2f..4d2c911 100644
> --- a/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
> +++ b/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
> @@ -88,3 +88,6 @@ FILES:${PN} = "\
>      ${sysconfdir}/sysusers.d"
>  
>  RDEPENDS:libtss2 = "libgcrypt"
> +
> +# This is patched in 3.2.2, NVD DB was not updated to reflect this backport
> +CVE_CHECK_IGNORE += "CVE-2023-22745"
> -- 
> 2.30.2
>


^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745
  2023-07-29 21:34 ` [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745 Marko, Peter
@ 2023-07-30 13:11   ` akuster808
  0 siblings, 0 replies; 2+ messages in thread
From: akuster808 @ 2023-07-30 13:11 UTC (permalink / raw)
  To: Marko, Peter, yocto



On 7/29/23 5:34 PM, Marko, Peter wrote:
> Hi Armin,
>
> Gentle ping to pick this commit to kirkstone.

merged. thanks.
-armin
>
> Thanks,
>    Peter
>
>> -----Original Message-----
>> From: yocto@lists.yoctoproject.org <yocto@lists.yoctoproject.org> On Behalf Of Peter Marko via lists.yoctoproject.org
>> Sent: Friday, June 30, 2023 0:10
>> To: yocto@lists.yoctoproject.org
>> Cc: Marko, Peter (ADV D EU SK BFS1) <Peter.Marko@siemens.com>
>> Subject: [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745
>>
>> From: Peter Marko <peter.marko@siemens.com>
>>
>> As already mentioned in upgrade commit, this CVE is fixed.
>> But cve_check still reports it as NVD DB was not updated.
>>
>> Signed-off-by: Peter Marko <peter.marko@siemens.com>
>> ---
>>   meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb | 3 +++
>>   1 file changed, 3 insertions(+)
>>
>> diff --git a/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb b/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
>> index 9b76c2f..4d2c911 100644
>> --- a/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
>> +++ b/meta-tpm/recipes-tpm2/tpm2-tss/tpm2-tss_3.2.2.bb
>> @@ -88,3 +88,6 @@ FILES:${PN} = "\
>>       ${sysconfdir}/sysusers.d"
>>   
>>   RDEPENDS:libtss2 = "libgcrypt"
>> +
>> +# This is patched in 3.2.2, NVD DB was not updated to reflect this backport
>> +CVE_CHECK_IGNORE += "CVE-2023-22745"
>> -- 
>> 2.30.2
>>



^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2023-07-30 13:11 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
     [not found] <176D40CC2C1720E8.4592@lists.yoctoproject.org>
2023-07-29 21:34 ` [yocto] [meta-security][kirkstone][PATCH] tpm2-tss: ignore CVE-2023-22745 Marko, Peter
2023-07-30 13:11   ` akuster808

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.