diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-25 20:49:54 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-25 20:49:54 +0100 |
| commit | 799d3c586b6df4d41fccd5fc2ff796a087c26329 (patch) | |
| tree | 58859fea1691e870e5406a47cbb0c08c1e4582e6 /active/CVE-2021-3640 | |
| parent | e3e90ffdadf6bb9b0e7ff277a38879d594f49edd (diff) | |
Retire several CVEs
Diffstat (limited to 'active/CVE-2021-3640')
| -rw-r--r-- | active/CVE-2021-3640 | 22 |
1 files changed, 0 insertions, 22 deletions
diff --git a/active/CVE-2021-3640 b/active/CVE-2021-3640 deleted file mode 100644 index 9442849a..00000000 --- a/active/CVE-2021-3640 +++ /dev/null @@ -1,22 +0,0 @@ -Description: UAF in sco_send_frame function -References: - https://www.openwall.com/lists/oss-security/2021/07/22/1 - https://bugzilla.suse.com/show_bug.cgi?id=1188172 - https://x-lore.kernel.org/all/883dc4b7-d1a1-3d31-a5a8-8fa1791084b6@i-love.sakura.ne.jp/ -Notes: - carnil> Prerequisites before the "last piece for fixing CVE-2021-3640" - carnil> are e04480920d1e ("Bluetooth: defer cleanup of resources in - carnil> hci_unregister_dev()") and 734bc5ff7831 ("Bluetooth: avoid - carnil> circular locks in sco_sock_connect"), ba316be1b6a0 ("Bluetooth: - carnil> schedule SCO timeouts with delayed_work"), 27c24fda62b6 - carnil> ("Bluetooth: switch to lock_sock in SCO") - carnil> For 5.15.y fixed as well in 5.15.3 -Bugs: -upstream: released (5.16-rc1) [99c23da0eed4fd20cae8243f2b51e10e66aa0951] -5.10-upstream-stable: released (5.10.80) [4dfba42604f08a505f1a1efc69ec5207ea6243de] -4.19-upstream-stable: released (4.19.218) [c1c913f797f3d2441310182ad75b7bd855a327ff] -4.9-upstream-stable: released (4.9.291) [9bbe312ebea40c9b586c2b07a0d0948ff418beca] -sid: released (5.15.3-1) -5.10-bullseye-security: released (5.10.84-1) -4.19-buster-security: released (4.19.232-1) -4.9-stretch-security: released (4.9.303-1) |