diff options
author | Ben Hutchings <ben@decadent.org.uk> | 2018-06-30 04:23:01 +0100 |
---|---|---|
committer | Ben Hutchings <ben@decadent.org.uk> | 2018-06-30 04:25:12 +0100 |
commit | 38b86a740deaa7325570afd360a8ee79f60c3e8b (patch) | |
tree | f1f37b51ca41859bec5a1ebb677b98f022b3f38f | |
parent | 8e374995e90a601e3cda3d047d44d730c90fe1cc (diff) |
Fill in status and retire two recently introduced issues
-rw-r--r-- | active/CVE-2018-12714 | 12 | ||||
-rw-r--r-- | active/CVE-2018-12904 | 11 | ||||
-rw-r--r-- | retired/CVE-2018-12714 | 15 | ||||
-rw-r--r-- | retired/CVE-2018-12904 | 13 |
4 files changed, 28 insertions, 23 deletions
diff --git a/active/CVE-2018-12714 b/active/CVE-2018-12714 deleted file mode 100644 index d451f459..00000000 --- a/active/CVE-2018-12714 +++ /dev/null @@ -1,12 +0,0 @@ -Description: tracing: Check for no filter when processing event filters -References: - https://bugzilla.kernel.org/show_bug.cgi?id=200019 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12714 -Notes: -Bugs: -upstream: released (v4.18-rc2) [70303420b5721c38998cf987e6b7d30cc62d4ff1] -4.9-upstream-stable: -3.16-upstream-stable: -sid: -4.9-stretch-security: -3.16-jessie-security: diff --git a/active/CVE-2018-12904 b/active/CVE-2018-12904 deleted file mode 100644 index b746cf60..00000000 --- a/active/CVE-2018-12904 +++ /dev/null @@ -1,11 +0,0 @@ -Description: KVM L1 guest escape -References: - https://bugs.chromium.org/p/project-zero/issues/detail?id=1589 -Notes: -Bugs: -upstream: released (4.18-rc1) [727ba748e110b4de50d142edca9d6a9b7e6111d8] -4.9-upstream-stable: -3.16-upstream-stable: -sid: -4.9-stretch-security: -3.16-jessie-security: diff --git a/retired/CVE-2018-12714 b/retired/CVE-2018-12714 new file mode 100644 index 00000000..a130be1f --- /dev/null +++ b/retired/CVE-2018-12714 @@ -0,0 +1,15 @@ +Description: tracing: Check for no filter when processing event filters +References: + https://bugzilla.kernel.org/show_bug.cgi?id=200019 + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12714 +Notes: + bwh> Almost certainly introduced by commit 80765597bc58 + bwh> "tracing: Rewrite filter logic to be simpler and faster", + bwh> although the old code may well have had other vulnerabilities. +Bugs: +upstream: released (v4.18-rc2) [70303420b5721c38998cf987e6b7d30cc62d4ff1] +4.9-upstream-stable: N/A "Vulnerability introduced later" +3.16-upstream-stable: N/A "Vulnerability introduced later" +sid: N/A "Vulnerability introduced later" +4.9-stretch-security: N/A "Vulnerability introduced later" +3.16-jessie-security: N/A "Vulnerability introduced later" diff --git a/retired/CVE-2018-12904 b/retired/CVE-2018-12904 new file mode 100644 index 00000000..fda9166f --- /dev/null +++ b/retired/CVE-2018-12904 @@ -0,0 +1,13 @@ +Description: KVM L1 guest escape +References: + https://bugs.chromium.org/p/project-zero/issues/detail?id=1589 +Notes: + bwh> Introduced by commit 70f3aac964ae "kvm: nVMX: Remove superfluous VMX + bwh> instruction fault checks". +Bugs: +upstream: released (4.18-rc1) [727ba748e110b4de50d142edca9d6a9b7e6111d8] +4.9-upstream-stable: N/A "Vulnerability introduced later" +3.16-upstream-stable: N/A "Vulnerability introduced later" +sid: released (4.16.16-1) +4.9-stretch-security: N/A "Vulnerability introduced later" +3.16-jessie-security: N/A "Vulnerability introduced later" |