Add information on CVE-2019-19036

author: Salvatore Bonaccorso <carnil@debian.org> 2020-07-14 21:08:19 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-07-14 21:08:19 +0200
commit: 47c1312d49730b50ed84a6ff704ba9950bfa53c4 (patch)
tree: 0f2d2086fba89ce564da2187249d6dad0f1b7d8a /active/CVE-2019-19036
parent: fd9178c9656b6126ea6c7138133856a4e3333e09 (diff)
1 files changed, 6 insertions, 0 deletions
diff --git a/active/CVE-2019-19036 b/active/CVE-2019-19036
index 780e4e47..19ce2049 100644
--- a/active/CVE-2019-19036
+++ b/active/CVE-2019-19036
@@ -1,8 +1,14 @@
 Description: btrfs: crafted image causes null deref in btrfs_root_node
 References:
  https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19036
+ https://bugzilla.redhat.com/show_bug.cgi?id=1775187
+ https://bugzilla.suse.com/show_bug.cgi?id=1157692
 Notes:
  jmm> Fixed by 62fdaa52a3d00a875da771719b6dc537ca79fce1 ?
+ carnil> This is a good candidate and is included in 5.4-rc1. It was
+ carnil> futhermore backported to 5.3.4, 5.2.19 and 4.19.129, where the
+ carnil> 5.3.4 fixing information would as well match what is available
+ carnil> from the Red Hat bugzilla.
 Bugs:
 upstream:
 4.19-upstream-stable:
author	Salvatore Bonaccorso <carnil@debian.org>	2020-07-14 21:08:19 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-07-14 21:08:19 +0200
commit	47c1312d49730b50ed84a6ff704ba9950bfa53c4 (patch)
tree	0f2d2086fba89ce564da2187249d6dad0f1b7d8a /active/CVE-2019-19036
parent	fd9178c9656b6126ea6c7138133856a4e3333e09 (diff)