[OE-core] [PATCH 22/23] kernel.bbclass: set CVE_PRODUCT to linux_kernel if not set by recipe

Mikko Rapeli mikko.rapeli at bmw.de
Thu Jul 20 13:23:10 UTC 2017


It is used by NVD database CVE's like:

https://nvd.nist.gov/vuln/detail/CVE-2017-7273

Setting this in kernel.bbclass fixes CVE reporting for all users of
the class.

Signed-off-by: Mikko Rapeli <mikko.rapeli at bmw.de>
---
 meta/classes/kernel.bbclass | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/meta/classes/kernel.bbclass b/meta/classes/kernel.bbclass
index 7670c71..ce2cab6 100644
--- a/meta/classes/kernel.bbclass
+++ b/meta/classes/kernel.bbclass
@@ -6,6 +6,8 @@ PACKAGE_WRITE_DEPS += "depmodwrapper-cross virtual/update-alternatives-native"
 
 do_deploy[depends] += "depmodwrapper-cross:do_populate_sysroot"
 
+CVE_PRODUCT ?= "linux_kernel"
+
 S = "${STAGING_KERNEL_DIR}"
 B = "${WORKDIR}/build"
 KBUILD_OUTPUT = "${B}"
-- 
1.9.1




More information about the Openembedded-core mailing list