diff options
| author | Ben Hutchings <ben@decadent.org.uk> | 2019-08-19 12:56:47 +0100 |
|---|---|---|
| committer | Ben Hutchings <ben@decadent.org.uk> | 2019-08-19 12:56:47 +0100 |
| commit | 1ad723f6597479af484c1ca867ccc3c04944a1dd (patch) | |
| tree | 06ca2d35d6e0d73838c7d1e0ed3dc9bd64f1470a | |
| parent | b32308c0da060077e63bd244fe739d0e07858691 (diff) | |
Fill in missing details for several issues
| -rw-r--r-- | active/CVE-2016-10905 | 4 | ||||
| -rw-r--r-- | active/CVE-2016-10906 | 4 | ||||
| -rw-r--r-- | active/CVE-2016-10907 | 6 | ||||
| -rw-r--r-- | active/CVE-2017-18549 | 10 | ||||
| -rw-r--r-- | active/CVE-2017-18550 | 10 | ||||
| -rw-r--r-- | active/CVE-2017-18552 | 10 | ||||
| -rw-r--r-- | active/CVE-2018-20976 | 8 | ||||
| -rw-r--r-- | active/CVE-2019-9506 | 8 |
8 files changed, 34 insertions, 26 deletions
diff --git a/active/CVE-2016-10905 b/active/CVE-2016-10905 index 5b5a28afd..4de17ca00 100644 --- a/active/CVE-2016-10905 +++ b/active/CVE-2016-10905 @@ -5,8 +5,8 @@ Bugs: upstream: released (4.8-rc1) [36e4ad0316c017d5b271378ed9a1c9a4b77fab5f] 4.19-upstream-stable: N/A "Fixed before branching point" 4.9-upstream-stable: N/A "Fixed before branching point" -3.16-upstream-stable: +3.16-upstream-stable: needed sid: released (4.8.5-1) 4.19-buster-security: N/A "Fixed before branching point" 4.9-stretch-security: N/A "Fixed before branching point" -3.16-jessie-security: +3.16-jessie-security: needed diff --git a/active/CVE-2016-10906 b/active/CVE-2016-10906 index 3f6787b7b..4cbd72d48 100644 --- a/active/CVE-2016-10906 +++ b/active/CVE-2016-10906 @@ -5,8 +5,8 @@ Bugs: upstream: released (4.5-rc6) [c278c253f3d992c6994d08aa0efb2b6806ca396f] 4.19-upstream-stable: N/A "Fixed before branching point" 4.9-upstream-stable: N/A "Fixed before branching point" -3.16-upstream-stable: +3.16-upstream-stable: needed sid: released (4.5.1-1) 4.19-buster-security: N/A "Fixed before branching point" 4.9-stretch-security: N/A "Fixed before branching point" -3.16-jessie-security: +3.16-jessie-security: needed diff --git a/active/CVE-2016-10907 b/active/CVE-2016-10907 index 9fcff4557..ed200c53c 100644 --- a/active/CVE-2016-10907 +++ b/active/CVE-2016-10907 @@ -1,12 +1,14 @@ Description: iio: ad5755: fix off-by-one on devnr limit check References: Notes: + bwh> Introduced in 4.8 by commit c947459979c6 "iio: ad5755: add support + bwh> for dt bindings". Bugs: upstream: released (4.9-rc1) [9d47964bfd471f0dd4c89f28556aec68bffa0020] 4.19-upstream-stable: N/A "Fixed before branching point" 4.9-upstream-stable: N/A "Fixed before branching point" -3.16-upstream-stable: +3.16-upstream-stable: N/A "Vulnerable code not present" sid: released (4.9.2-1) 4.19-buster-security: N/A "Fixed before branching point" 4.9-stretch-security: N/A "Fixed before branching point" -3.16-jessie-security: +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2017-18549 b/active/CVE-2017-18549 index 81f9971a8..38304b29a 100644 --- a/active/CVE-2017-18549 +++ b/active/CVE-2017-18549 @@ -1,12 +1,14 @@ Description: scsi: aacraid: Don't copy uninitialized stack memory to userspace References: Notes: + bwh> Introduced in 4.11 by commit 423400e64d377 "scsi: aacraid: Include HBA + bwh> direct interface". Bugs: upstream: released (4.13-rc1) [342ffc26693b528648bdc9377e51e4f2450b4860] 4.19-upstream-stable: N/A "Fixed before branching point" -4.9-upstream-stable: -3.16-upstream-stable: +4.9-upstream-stable: N/A "Vulnerable code not present" +3.16-upstream-stable: N/A "Vulnerable code not present" sid: released (4.13.4-1) 4.19-buster-security: N/A "Fixed before branching point" -4.9-stretch-security: -3.16-jessie-security: +4.9-stretch-security: N/A "Vulnerable code not present" +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2017-18550 b/active/CVE-2017-18550 index 81f9971a8..6e932adfc 100644 --- a/active/CVE-2017-18550 +++ b/active/CVE-2017-18550 @@ -1,12 +1,14 @@ Description: scsi: aacraid: Don't copy uninitialized stack memory to userspace References: Notes: + bwh> Introduced in 4.11 by commit c799d519bf088 "scsi: aacraid: Retrieve HBA + bwh> host information ioctl" Bugs: upstream: released (4.13-rc1) [342ffc26693b528648bdc9377e51e4f2450b4860] 4.19-upstream-stable: N/A "Fixed before branching point" -4.9-upstream-stable: -3.16-upstream-stable: +4.9-upstream-stable: N/A "Vulnerable code not present" +3.16-upstream-stable: N/A "Vulnerable code not present" sid: released (4.13.4-1) 4.19-buster-security: N/A "Fixed before branching point" -4.9-stretch-security: -3.16-jessie-security: +4.9-stretch-security: N/A "Vulnerable code not present" +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2017-18552 b/active/CVE-2017-18552 index 4f00379a4..b90ec74ca 100644 --- a/active/CVE-2017-18552 +++ b/active/CVE-2017-18552 @@ -1,12 +1,14 @@ Description: RDS: validate the requested traces user input against max supported References: Notes: + bwh> Introduced in 4.11 by commit 3289025aedc0 "RDS: add receive message + bwh> trace used by application". Bugs: upstream: released (4.11-rc1) [780e982905bef61d13496d9af5310bf4af3a64d3]] 4.19-upstream-stable: N/A "Fixed before branching point" -4.9-upstream-stable: -3.16-upstream-stable: +4.9-upstream-stable: N/A "Vulnerable code not present" +3.16-upstream-stable: N/A "Vulnerable code not present" sid: released (4.11.6-1) 4.19-buster-security: N/A "Fixed before branching point" -4.9-stretch-security: -3.16-jessie-security: +4.9-stretch-security: N/A "Vulnerable code not present" +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2018-20976 b/active/CVE-2018-20976 index 3b3f1aead..4eb99a6d7 100644 --- a/active/CVE-2018-20976 +++ b/active/CVE-2018-20976 @@ -4,9 +4,9 @@ Notes: Bugs: upstream: released (4.18-rc1) [c9fbd7bbc23dbdd73364be4d045e5d3612cf6e82] 4.19-upstream-stable: N/A "Fixed before branching point" -4.9-upstream-stable: -3.16-upstream-stable: +4.9-upstream-stable: needed +3.16-upstream-stable: needed sid: released (4.18.6-1) 4.19-buster-security: N/A "Fixed before branching point" -4.9-stretch-security: -3.16-jessie-security: +4.9-stretch-security: needed +3.16-jessie-security: needed diff --git a/active/CVE-2019-9506 b/active/CVE-2019-9506 index 5f92fe520..9a1dad7e6 100644 --- a/active/CVE-2019-9506 +++ b/active/CVE-2019-9506 @@ -8,8 +8,8 @@ Bugs: upstream: released (5.2-rc1) [d5bb334a8e171b262e48f378bd2096c0ea458265], released (5.2-rc6) [693cd8ce3f882524a5d06f7800dd8492411877b3], released (5.2) [eca94432934fe5f141d084f2e36ee2c0e614cc04] 4.19-upstream-stable: released (4.19.56) [5e9a6c68de0fd1ce37380e4947941bcd587d6b57, db7f1076c0bd26832ee3b94eccc1a815c7dac32d], released (4.19.58) [5dd6139a0aa22112e46a6df5fd283046095822e0] 4.9-upstream-stable: released (4.9.185) [6290d9d3192e7a973d59fd22fb72028a34dab372, 68d1e285e934c50df37d807a8e7ae29397c055bc, f470557724f2c94c25e4f6480a41612cf42aff26] -3.16-upstream-stable: +3.16-upstream-stable: needed sid: released (5.2.6-1) -4.19-buster-security: -4.9-stretch-security: -3.16-jessie-security: +4.19-buster-security: needed +4.9-stretch-security: needed +3.16-jessie-security: needed |