Add reference to submitted patch on netdev and update notes

author: Salvatore Bonaccorso <carnil@debian.org> 2020-05-12 15:21:30 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-05-12 15:21:30 +0200
commit: d2ff4e981586a04eb86ad012bf3c72747798224f (patch)
tree: a738c7fc2380a6611fde867ecd43f7fa4029b200
parent: 3a01b75d80ebf36ae9e52bfb8e62e98ea1f23ba7 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/active/CVE-2020-10711 b/active/CVE-2020-10711
index c20ce8f8f..1ef03b1ac 100644
--- a/active/CVE-2020-10711
+++ b/active/CVE-2020-10711
@@ -1,7 +1,12 @@
 Description: NetLabel: null pointer dereference while receiving CIPSO packet with null category
 References:
  https://www.openwall.com/lists/oss-security/2020/05/12/2
+ https://lore.kernel.org/netdev/07d99ae197bfdb2964931201db67b6cd0b38db5b.1589276729.git.pabeni@redhat.com/
 Notes:
+ carnil> Introduced in 4b8feff251da ("netlabel: fix the horribly broken
+ carnil> catmap functions") in 3.17-rc1 and ceba1832b1b2 ("calipso: Set
+ carnil> the calipso socket label to match the secattr.") in 4.8. We
+ carnil> enabled furthermore CONFIG_NETLABEL only starting in 5.6.7-1.
 Bugs:
 upstream:
 4.19-upstream-stable:
author	Salvatore Bonaccorso <carnil@debian.org>	2020-05-12 15:21:30 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-05-12 15:21:30 +0200
commit	d2ff4e981586a04eb86ad012bf3c72747798224f (patch)
tree	a738c7fc2380a6611fde867ecd43f7fa4029b200
parent	3a01b75d80ebf36ae9e52bfb8e62e98ea1f23ba7 (diff)