From ed616c50ea329ba6fe68642cfc8bf8c6b8b61beb Mon Sep 17 00:00:00 2001
From: Anuj Mittal <anuj.mittal@intel.com>
Date: Fri, 9 Sep 2022 18:22:14 +0800
Subject: [PATCH] ixgbe, ixgbevf: exclude CVE-2015-1142857 from cve-check

This was fixed in the kernel v4.4 but the NVD database doesn't list the
kernel version or track the out of tree versions.

Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
(cherry picked from commit b96d06bad8b79890b8e0773dfa1e94718a0a4180)
Signed-off-by: Yogesh Tyagi <yogesh.tyagi@intel.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>
---
 recipes-kernel/intel-ethernet/ixgbe_5.7.1.bb   | 3 +++
 recipes-kernel/intel-ethernet/ixgbevf_4.7.1.bb | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/recipes-kernel/intel-ethernet/ixgbe_5.7.1.bb b/recipes-kernel/intel-ethernet/ixgbe_5.7.1.bb
index 1c767332..f3716877 100644
--- a/recipes-kernel/intel-ethernet/ixgbe_5.7.1.bb
+++ b/recipes-kernel/intel-ethernet/ixgbe_5.7.1.bb
@@ -39,3 +39,6 @@ PACKAGES += "${PN}-script"
 FILES_${PN}-script += "${sysconfdir}/network/set_irq_affinity"
 
 EXCLUDE_FROM_WORLD = "1"
+
+# This was fixed in kernel v4.4
+CVE_CHECK_WHITELIST += "CVE-2015-1142857"
diff --git a/recipes-kernel/intel-ethernet/ixgbevf_4.7.1.bb b/recipes-kernel/intel-ethernet/ixgbevf_4.7.1.bb
index ecd974fe..8ae221bc 100644
--- a/recipes-kernel/intel-ethernet/ixgbevf_4.7.1.bb
+++ b/recipes-kernel/intel-ethernet/ixgbevf_4.7.1.bb
@@ -40,3 +40,6 @@ do_install_append () {
 PACKAGES += "${PN}-script"
 
 FILES_${PN}-script += "${sysconfdir}/network/set_irq_affinity"
+
+# This was fixed in kernel v4.4
+CVE_CHECK_WHITELIST += "CVE-2015-1142857"