summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBen Hutchings <ben@decadent.org.uk>2020-03-18 21:46:46 +0000
committerBen Hutchings <ben@decadent.org.uk>2020-03-18 21:46:46 +0000
commit93de5213f823699f52a1946f69c44098eccc9276 (patch)
tree2e5810f452381d8aad2b6529de19594b61be3a31
parent84f5d57df05f84449e839497ec7bcb95bec2602f (diff)
Add CVE-2019-15794 for aufs/overlayfs interaction
-rw-r--r--active/CVE-2019-1579416
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2019-15794 b/active/CVE-2019-15794
new file mode 100644
index 00000000..9eaa5087
--- /dev/null
+++ b/active/CVE-2019-15794
@@ -0,0 +1,16 @@
+Description: Reference counting error in overlayfs/shiftfs error path when used in conjuction with aufs
+References:
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15794
+ https://usn.ubuntu.com/usn/usn-4208-1
+ https://usn.ubuntu.com/usn/usn-4209-1
+ https://bugs.launchpad.net/bugs/1850994
+Notes:
+Bugs:
+upstream: N/A "introduced by aufs support patch"
+4.19-upstream-stable: N/A "introduced by aufs support patch"
+4.9-upstream-stable: N/A "introduced by aufs support patch"
+3.16-upstream-stable: N/A "introduced by aufs support patch"
+sid: needed
+4.19-buster-security: needed
+4.9-stretch-security: N/A "overlayfs passes through mmap"
+3.16-jessie-security: N/A "overlayfs not present"

© 2014-2024 Faster IT GmbH | imprint | privacy policy