Add CVE-2020-10769

author: Salvatore Bonaccorso <carnil@debian.org> 2020-06-23 14:34:36 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-06-23 14:34:36 +0200
commit: 82720fa29c65387095823c9a15df8d6b16b0856d (patch)
tree: cf99634f7779ff2ff7f5dbb6398142c20ba1cd26
parent: 2fe31b6a3c59c24eebd7d6694eeee1fb331e933d (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/active/CVE-2020-10769 b/active/CVE-2020-10769
new file mode 100644
index 00000000..9ea3ec82
--- /dev/null
+++ b/active/CVE-2020-10769
@@ -0,0 +1,14 @@
+Description: crypto: authenc - fix parsing key with misaligned rta_len
+References:
+ https://lkml.org/lkml/2019/1/21/675
+ https://www.openwall.com/lists/oss-security/2020/06/23/1
+Notes:
+Bugs:
+upstream: released (5.0-rc3) [8f9c469348487844328e162db57112f7d347c49f]
+4.19-upstream-stable: released (4.19.17) [44c67402c3f738b7048de4464c02461bc8d0fd37]
+4.9-upstream-stable: released (4.9.152) [6ddfcf0b4c6ce7cfeb5d9e36d991345f3fe6e600]
+3.16-upstream-stable: released (3.16.66) [6ddfcf0b4c6ce7cfeb5d9e36d991345f3fe6e600]
+sid: released (4.19.20-1)
+4.19-buster-security: N/A "Fixed before branching point"
+4.9-stretch-security: released (4.9.161-1)
+3.16-jessie-security: released (3.16.68-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-06-23 14:34:36 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-06-23 14:34:36 +0200
commit	82720fa29c65387095823c9a15df8d6b16b0856d (patch)
tree	cf99634f7779ff2ff7f5dbb6398142c20ba1cd26
parent	2fe31b6a3c59c24eebd7d6694eeee1fb331e933d (diff)