Add new CVE assigned from CNA

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-13 16:23:44 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-13 16:23:44 +0200
commit: a017799330d4e5d96e5c64ccfba008a85ef29f8c (patch)
tree: 9361ced0411ac7b9b7955ff8fe5aa021c54dd922
parent: 7c26feb1281d227c82d69dbdd5dcb7b0d23dced8 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/active/CVE-2024-26817 b/active/CVE-2024-26817
new file mode 100644
index 00000000..2d9fe957
--- /dev/null
+++ b/active/CVE-2024-26817
@@ -0,0 +1,15 @@
+Description: amdkfd: use calloc instead of kzalloc to avoid integer overflow
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: pending [3b0daecfeac0103aba8b293df07a0cbaf8b43f29]
+6.8-upstream-stable: released (6.8.6) [0c33d11153949310d76631d8f4a4736519eacd3a]
+6.6-upstream-stable: released (6.6.27) [315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7]
+6.1-upstream-stable: released (6.1.86) [e6768c6737f4c02cba193a3339f0cc2907f0b86a]
+5.10-upstream-stable: released (5.10.215) [fcbd99b3c73309107e3be71f20dff9414df64f91]
+4.19-upstream-stable: released (4.19.312) [e6721ea845fcb93a764a92bd40f1afc0d6c69751]
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-13 16:23:44 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-13 16:23:44 +0200
commit	a017799330d4e5d96e5c64ccfba008a85ef29f8c (patch)
tree	9361ced0411ac7b9b7955ff8fe5aa021c54dd922
parent	7c26feb1281d227c82d69dbdd5dcb7b0d23dced8 (diff)