Add more CVEs as assigned

author: Salvatore Bonaccorso <carnil@debian.org> 2024-03-01 00:03:08 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-03-01 00:03:08 +0100
commit: 5e57bc76df7c8e611b3ccf59a6bfd75efcc59194 (patch)
tree: c63137b0aa63c0219edd2858fab77f271b70d288 /active/CVE-2021-47061
parent: aa24ddf69ffa705f108631622f09ace0d7495fa5 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2021-47061 b/active/CVE-2021-47061
new file mode 100644
index 00000000..4a466282
--- /dev/null
+++ b/active/CVE-2021-47061
@@ -0,0 +1,17 @@
+Description: KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU
+References:
+Notes:
+ carnil> Introduced in f65886606c2d ("KVM: fix memory leak in
+ carnil> kvm_io_bus_unregister_dev()"). Vulnerable versions: 4.4.238 4.9.238 4.14.200
+ carnil> 4.19.148 5.4.66 5.8.10 5.9-rc5.
+Bugs:
+upstream: released (5.13-rc1) [2ee3757424be7c1cd1d0bbfa6db29a7edd82a250]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: N/A "Fixed before branching point"
+5.10-upstream-stable: released (5.10.37) [03c6cccedd3913006744faa252a4da5145299343]
+4.19-upstream-stable: needed
+sid: released (5.10.38-1)
+6.1-bookworm-security: N/A "Fixed before branching point"
+5.10-bullseye-security: N/A "Fixed before branching point"
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-03-01 00:03:08 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-03-01 00:03:08 +0100
commit	5e57bc76df7c8e611b3ccf59a6bfd75efcc59194 (patch)
tree	c63137b0aa63c0219edd2858fab77f271b70d288 /active/CVE-2021-47061
parent	aa24ddf69ffa705f108631622f09ace0d7495fa5 (diff)