Message ID | 20210421204235.5956-2-matthew.weber@rockwellcollins.com |
---|---|
State | Accepted |
Headers | show
Return-Path: <buildroot-bounces@busybox.net> X-Original-To: incoming-buildroot@patchwork.ozlabs.org Delivered-To: patchwork-incoming-buildroot@bilbo.ozlabs.org Authentication-Results: ozlabs.org; spf=pass (sender SPF authorized) smtp.mailfrom=busybox.net (client-ip=140.211.166.137; helo=smtp4.osuosl.org; envelope-from=buildroot-bounces@busybox.net; receiver=<UNKNOWN>) Authentication-Results: ozlabs.org; dkim=fail reason="signature verification failed" (2048-bit key; unprotected) header.d=rockwellcollins.com header.i=@rockwellcollins.com header.a=rsa-sha256 header.s=hrcrc2020 header.b=otjhXbbp; dkim-atps=neutral Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by ozlabs.org (Postfix) with ESMTPS id 4FQXZ73zcFz9sVq for <incoming-buildroot@patchwork.ozlabs.org>; Thu, 22 Apr 2021 06:43:11 +1000 (AEST) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id F276A40628; Wed, 21 Apr 2021 20:43:08 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x1yaJC7pZlB7; Wed, 21 Apr 2021 20:43:08 +0000 (UTC) Received: from ash.osuosl.org (ash.osuosl.org [140.211.166.34]) by smtp4.osuosl.org (Postfix) with ESMTP id 435DC40629; Wed, 21 Apr 2021 20:43:07 +0000 (UTC) X-Original-To: buildroot@lists.busybox.net Delivered-To: buildroot@osuosl.org Received: from smtp2.osuosl.org (smtp2.osuosl.org [140.211.166.133]) by ash.osuosl.org (Postfix) with ESMTP id 235D21C11A6 for <buildroot@lists.busybox.net>; Wed, 21 Apr 2021 20:42:40 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp2.osuosl.org (Postfix) with ESMTP id 12F684039C for <buildroot@lists.busybox.net>; Wed, 21 Apr 2021 20:42:40 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org Authentication-Results: smtp2.osuosl.org (amavisd-new); dkim=pass (2048-bit key) header.d=rockwellcollins.com Received: from smtp2.osuosl.org ([127.0.0.1]) by localhost (smtp2.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D_0_X4xHLxXa for <buildroot@lists.busybox.net>; Wed, 21 Apr 2021 20:42:39 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.8.0 Received: from ch3vs02.rockwellcollins.com (ch3vs02.rockwellcollins.com [205.175.226.29]) by smtp2.osuosl.org (Postfix) with ESMTPS id 0F6574036E for <buildroot@buildroot.org>; Wed, 21 Apr 2021 20:42:38 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rockwellcollins.com; s=hrcrc2020; h=from:to:cc:subject:date:message-id:in-reply-to: references; bh=11qrmBJOhk+AB+KkIEikvkxK9i2sUS9ra39NiUvkpW0=; b=otjhXbbpcNQ5TaT0JbtRWftfF3gMr7Xms1bVqPPYKum5Mto5MmurNv1i 2aj30vrEUulZXD0ZoFoxxvrkRt6YkP2ofD2tnvNTbL0IlZ9ac9jyNI0s6 zRGeer7kUOYdGyf7T5OZch1HXiuJOSD9+H4alaEyxDmi4/ta9XhuvFnQf wfvPDfSCKmhF06vsVrR+jiwaeUrWHjcIoyzprAbUFZVWRLhq4/z0IJWD0 CdD6M+QJdHA8R/Rv7jvbIBCzqUsjWmBe9wbPP0O+aXy8rj1+nvtgRuuzi WbqQdSZQE3bws+xDF4Ybo7mwoCv42So/aKgGYZprz6WYaKC83GsV2ZQnY Q==; IronPort-SDR: SzVMgVaL2dmZCqtVc1tT+hbKK74TG81K4LvDbszhdQGuMMoBVWUtP7NKBYqBUmyia1GhyNVFWH zs3ugUNZtNkJRuKzeWfP1oXooi97nLQY1N8WFniUtS8HcxKL5GNlI8RmbqhLCokA1eDzorJsFT 2K5qp/P535DKQUik1zFnnw0Gxrg/0pebU08ADbPyhbPdPWjmQMu/3KlXg27tqmmeFQR28hBLcx RvvNpEXJKGjPrz9788gXasXgFer59puqdkB4D2M7Hm64zz675qlEtLGUmKOJDdIVCr/EcWt03c wBc= Received: from ofwch3n02.rockwellcollins.com (HELO crulimr02.rockwellcollins.com) ([205.175.226.14]) by ch3vs02.rockwellcollins.com with ESMTP; 21 Apr 2021 15:42:37 -0500 X-Received: from biscuits.rockwellcollins.com (biscuits.rockwellcollins.lab [10.148.119.137]) by crulimr02.rockwellcollins.com (Postfix) with ESMTP id 3C5B960753; Wed, 21 Apr 2021 15:42:37 -0500 (CDT) From: Matt Weber <matthew.weber@rockwellcollins.com> To: buildroot@buildroot.org Date: Wed, 21 Apr 2021 15:42:26 -0500 Message-Id: <20210421204235.5956-2-matthew.weber@rockwellcollins.com> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20210421204235.5956-1-matthew.weber@rockwellcollins.com> References: <20210421204235.5956-1-matthew.weber@rockwellcollins.com> Subject: [Buildroot] [PATCH 01/10] package/bind: ignore CVE-2017-3139 X-BeenThere: buildroot@busybox.net X-Mailman-Version: 2.1.29 Precedence: list List-Id: Discussion and development of buildroot <buildroot.busybox.net> List-Unsubscribe: <http://lists.busybox.net/mailman/options/buildroot>, <mailto:buildroot-request@busybox.net?subject=unsubscribe> List-Archive: <http://lists.busybox.net/pipermail/buildroot/> List-Post: <mailto:buildroot@busybox.net> List-Help: <mailto:buildroot-request@busybox.net?subject=help> List-Subscribe: <http://lists.busybox.net/mailman/listinfo/buildroot>, <mailto:buildroot-request@busybox.net?subject=subscribe> Cc: Matt Weber <matthew.weber@rockwellcollins.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" <buildroot-bounces@busybox.net> |
Series |
Misc CVE ignores
|
expand
|
diff --git a/package/bind/bind.mk b/package/bind/bind.mk index 8e8896f3cc..d1a992b66e 100644 --- a/package/bind/bind.mk +++ b/package/bind/bind.mk @@ -13,6 +13,8 @@ BIND_CONFIG_SCRIPTS = bind9-config isc-config.sh BIND_LICENSE = MPL-2.0 BIND_LICENSE_FILES = COPYRIGHT BIND_CPE_ID_VENDOR = isc +# Only applies to RHEL6.x with DNSSEC validation on +BIND_IGNORE_CVES = CVE-2017-3139 BIND_TARGET_SERVER_SBIN = arpaname ddns-confgen dnssec-checkds dnssec-coverage BIND_TARGET_SERVER_SBIN += dnssec-importkey dnssec-keygen dnssec-revoke BIND_TARGET_SERVER_SBIN += dnssec-settime dnssec-verify genrandom
This CVE is only relevant to the configuration of a specific RHEL release (6.x). https://bugzilla.redhat.com/show_bug.cgi?id=1447743 Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> --- package/bind/bind.mk | 2 ++ 1 file changed, 2 insertions(+)