[OE-core] [PATCH 22/23] kernel.bbclass: set CVE_PRODUCT to linux_kernel if not set by recipe
Mikko Rapeli
mikko.rapeli at bmw.de
Thu Jul 20 13:23:10 UTC 2017
It is used by NVD database CVE's like:
https://nvd.nist.gov/vuln/detail/CVE-2017-7273
Setting this in kernel.bbclass fixes CVE reporting for all users of
the class.
Signed-off-by: Mikko Rapeli <mikko.rapeli at bmw.de>
---
meta/classes/kernel.bbclass | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta/classes/kernel.bbclass b/meta/classes/kernel.bbclass
index 7670c71..ce2cab6 100644
--- a/meta/classes/kernel.bbclass
+++ b/meta/classes/kernel.bbclass
@@ -6,6 +6,8 @@ PACKAGE_WRITE_DEPS += "depmodwrapper-cross virtual/update-alternatives-native"
do_deploy[depends] += "depmodwrapper-cross:do_populate_sysroot"
+CVE_PRODUCT ?= "linux_kernel"
+
S = "${STAGING_KERNEL_DIR}"
B = "${WORKDIR}/build"
KBUILD_OUTPUT = "${B}"
--
1.9.1
More information about the Openembedded-core
mailing list