Add CVE-2021-39633

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-06 06:25:46 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-06 06:25:46 +0100
commit: 273c268d71a0cb5bd66f7d0379fb3c6bbc4eca06 (patch)
tree: d2c870f46afeb0111f45baea3b70968ad73f0a95
parent: 6f2ef76d9dafdb30e9a399ffcb1d8a4f8e3190aa (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/active/CVE-2021-39633 b/active/CVE-2021-39633
new file mode 100644
index 00000000..34e38240
--- /dev/null
+++ b/active/CVE-2021-39633
@@ -0,0 +1,15 @@
+Description: ip_gre: add validation for csum_start
+References:
+ https://source.android.com/security/bulletin/2022-01-01
+Notes:
+ carnil> Commit fixes c54419321455 ("GRE: Refactor GRE tunneling code.")
+ carnil> in 3.10-rc1.
+Bugs:
+upstream: released (5.14) [1d011c4803c72f3907eccfc1ec63caefb852fcbf]
+5.10-upstream-stable: released (5.10.62) [fb45459d9ddb1edd4a8b087bafe875707753cb10]
+4.19-upstream-stable: released (4.19.206) [c33471daf2763c5aee2b7926202c74b75c365119]
+4.9-upstream-stable: released (4.9.282) [41d5dfa408130433cc5f037ad89bed854bf936f7]
+sid: released (5.14.6-1)
+5.10-bullseye-security: released (5.10.70-1)
+4.19-buster-security: released (4.19.208-1)
+4.9-stretch-security: released (4.9.290-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-06 06:25:46 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-06 06:25:46 +0100
commit	273c268d71a0cb5bd66f7d0379fb3c6bbc4eca06 (patch)
tree	d2c870f46afeb0111f45baea3b70968ad73f0a95
parent	6f2ef76d9dafdb30e9a399ffcb1d8a4f8e3190aa (diff)