Add CVE-2022-2585

author: Salvatore Bonaccorso <carnil@debian.org> 2022-08-09 19:21:45 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-08-09 19:21:45 +0200
commit: 3a32e6a63a165e917f77b5766bda732cc730e682 (patch)
tree: 07531ca5697762caf7b51aeb0b5ed70b293334e7
parent: 1a6e6ba76e62fd3e57739569fc49545acf42060e (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/active/CVE-2022-2585 b/active/CVE-2022-2585
new file mode 100644
index 00000000..06e4315e
--- /dev/null
+++ b/active/CVE-2022-2585
@@ -0,0 +1,12 @@
+Description: Linux kernel POSIX CPU timer UAF
+References:
+ https://www.openwall.com/lists/oss-security/2022/08/09/7
+ https://lore.kernel.org/lkml/20220809170751.164716-1-cascardo@canonical.com/T/#u
+Notes:
+Bugs:
+upstream: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code introduced later"
+sid: pending (5.18.16-1) [bugfix/all/posix-cpu-timers-Cleanup-CPU-timers-before-freeing-t.patch]
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code introduced later"
author	Salvatore Bonaccorso <carnil@debian.org>	2022-08-09 19:21:45 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-08-09 19:21:45 +0200
commit	3a32e6a63a165e917f77b5766bda732cc730e682 (patch)
tree	07531ca5697762caf7b51aeb0b5ed70b293334e7
parent	1a6e6ba76e62fd3e57739569fc49545acf42060e (diff)