Add some descriptions for CVEs in active/

16 files changed, 16 insertions, 16 deletions

diff --git a/active/CVE-2020-11725 b/active/CVE-2020-11725
index 17fce19a..f9820abe 100644
--- a/active/CVE-2020-11725
+++ b/active/CVE-2020-11725
@@ -1,4 +1,4 @@
-Description:
+Description: improper handling of private_size*count multiplication due to count=info->owner typo
 References:
  https://twitter.com/yabbadabbadrew/status/1248632267028582400
  https://lore.kernel.org/alsa-devel/s5h4ktmlfpx.wl-tiwai@suse.de/
diff --git a/active/CVE-2020-26141 b/active/CVE-2020-26141
index afb158cd..4cda0d5a 100644
--- a/active/CVE-2020-26141
+++ b/active/CVE-2020-26141
@@ -1,4 +1,4 @@
-Description:
+Description: ath10k: Fix TKIP Michael MIC verification for PCIe
 References:
  https://papers.mathyvanhoef.com/usenix2021.pdf
  https://www.fragattacks.com/
diff --git a/active/CVE-2020-26145 b/active/CVE-2020-26145
index c22f388c..da918bd1 100644
--- a/active/CVE-2020-26145
+++ b/active/CVE-2020-26145
@@ -1,4 +1,4 @@
-Description:
+Description: accepting plaintext broadcast fragments as full frames
 References:
  https://papers.mathyvanhoef.com/usenix2021.pdf
  https://www.fragattacks.com/
diff --git a/active/CVE-2022-0500 b/active/CVE-2022-0500
index e0dc9885..7ba40d47 100644
--- a/active/CVE-2022-0500
+++ b/active/CVE-2022-0500
@@ -1,4 +1,4 @@
-Description:
+Description: Flaw in unrestricted eBPF usage by the BPF_BTF_LOAD
 References:
  https://bugzilla.redhat.com/show_bug.cgi?id=2044578
  https://access.redhat.com/security/cve/CVE-2022-0500
diff --git a/active/CVE-2023-21264 b/active/CVE-2023-21264
index f0128c4f..5711c767 100644
--- a/active/CVE-2023-21264
+++ b/active/CVE-2023-21264
@@ -1,4 +1,4 @@
-Description:
+Description: KVM: arm64: Prevent unconditional donation of unmapped regions from the host
 References:
  https://source.android.com/docs/security/bulletin/2023-08-01
  https://android.googlesource.com/kernel/common/+/b35a06182451f
diff --git a/active/CVE-2023-2177 b/active/CVE-2023-2177
index 09f5a249..9c05d6bc 100644
--- a/active/CVE-2023-2177
+++ b/active/CVE-2023-2177
@@ -1,4 +1,4 @@
-Description:
+Description: sctp: leave the err path free in sctp_stream_init to sctp_stream_free
 References:
  https://lore.kernel.org/netdev/CADvbK_dWMO0XdAf950Q14pUv99ahS1MRnOtppvosU2w33sO=kw@mail.gmail.com/T/
  https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=181d8d2066c0
diff --git a/active/CVE-2023-4010 b/active/CVE-2023-4010
index f5542b71..3273bd03 100644
--- a/active/CVE-2023-4010
+++ b/active/CVE-2023-4010
@@ -1,4 +1,4 @@
-Description:
+Description: usb: hcd: malformed USB descriptor leads to infinite loop in usb_giveback_urb()
 References:
  https://bugzilla.redhat.com/show_bug.cgi?id=2227726
  https://github.com/wanrenmi/a-usb-kernel-bug
diff --git a/active/CVE-2024-0564 b/active/CVE-2024-0564
index 8878d1bf..b276fcd1 100644
--- a/active/CVE-2024-0564
+++ b/active/CVE-2024-0564
@@ -1,4 +1,4 @@
-Description:
+Description: max page sharing of Kernel Samepage Merging (KSM) may cause memory deduplication
 References:
  https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1680513
  https://bugzilla.redhat.com/show_bug.cgi?id=2258514
diff --git a/active/CVE-2024-22099 b/active/CVE-2024-22099
index 97fbe3cf..63fee9cb 100644
--- a/active/CVE-2024-22099
+++ b/active/CVE-2024-22099
@@ -1,4 +1,4 @@
-Description:
+Description: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=7956
 Notes:
diff --git a/active/CVE-2024-23196 b/active/CVE-2024-23196
index d3b89dd4..f7aac779 100644
--- a/active/CVE-2024-23196
+++ b/active/CVE-2024-23196
@@ -1,4 +1,4 @@
-Description:
+Description: ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync()
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8148
 Notes:
diff --git a/active/CVE-2024-23307 b/active/CVE-2024-23307
index e18f1d6c..20302f13 100644
--- a/active/CVE-2024-23307
+++ b/active/CVE-2024-23307
@@ -1,4 +1,4 @@
-Description:
+Description: md/raid5: fix atomicity violation in raid5_cache_count
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=7975
 Notes:
diff --git a/active/CVE-2024-23848 b/active/CVE-2024-23848
index bbedeed2..b0bcfa15 100644
--- a/active/CVE-2024-23848
+++ b/active/CVE-2024-23848
@@ -1,4 +1,4 @@
-Description:
+Description: use-after-free in cec_queue_msg_fh
 References:
  https://lore.kernel.org/lkml/e9f42704-2f99-4f2c-ade5-f952e5fd53e5%40xs4all.nl/
 Notes:
diff --git a/active/CVE-2024-24855 b/active/CVE-2024-24855
index f48a0e76..865af24e 100644
--- a/active/CVE-2024-24855
+++ b/active/CVE-2024-24855
@@ -1,4 +1,4 @@
-Description:
+Description: scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan()
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8149
 Notes:
diff --git a/active/CVE-2024-24857 b/active/CVE-2024-24857
index 1fa6a57a..d45c09dd 100644
--- a/active/CVE-2024-24857
+++ b/active/CVE-2024-24857
@@ -1,4 +1,4 @@
-Description:
+Description: Bluetooth: Fix TOCTOU in HCI debugfs implementation
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8155
 Notes:
diff --git a/active/CVE-2024-24858 b/active/CVE-2024-24858
index db2354ac..ef9cdb5a 100644
--- a/active/CVE-2024-24858
+++ b/active/CVE-2024-24858
@@ -1,4 +1,4 @@
-Description:
+Description: Bluetooth: Fix TOCTOU in HCI debugfs implementation
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8154
 Notes:
diff --git a/active/CVE-2024-24861 b/active/CVE-2024-24861
index 8884ad9f..5412701a 100644
--- a/active/CVE-2024-24861
+++ b/active/CVE-2024-24861
@@ -1,4 +1,4 @@
-Description:
+Description: media: xc4000: Fix atomicity violation in xc4000_get_frequency
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8150
 Notes: