Add new batch of CVEs assigned for Linux

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-03 21:33:11 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-03 21:33:11 +0200
commit: e2b12639eebeadc5925bec1ffdecf7df5192aace (patch)
tree: c43a5a7f293006eced7e9c712f34efab9c774abb /active/CVE-2024-26735
parent: 03801e090c9fbe79615a6fe3fc2a075311f2bd8b (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26735 b/active/CVE-2024-26735
new file mode 100644
index 00000000..ae056f3a
--- /dev/null
+++ b/active/CVE-2024-26735
@@ -0,0 +1,16 @@
+Description: ipv6: sr: fix possible use-after-free and null-ptr-deref
+References:
+Notes:
+ carnil> Introduced in 915d7e5e5930 ("ipv6: sr: add code base for control plane support
+ carnil> of SR-IPv6"). Vulnerable versions: 4.10-rc1.
+Bugs:
+upstream: released (6.8-rc6) [5559cea2d5aa3018a5f00dd2aca3427ba09b386b]
+6.7-upstream-stable: released (6.7.7) [02b08db594e8218cfbc0e4680d4331b457968a9b]
+6.6-upstream-stable: released (6.6.19) [9e02973dbc6a91e40aa4f5d87b8c47446fbfce44]
+6.1-upstream-stable: released (6.1.80) [8391b9b651cfdf80ab0f1dc4a489f9d67386e197]
+5.10-upstream-stable: released (5.10.211) [65c38f23d10ff79feea1e5d50b76dc7af383c1e6]
+4.19-upstream-stable: released (4.19.308) [953f42934533c151f440cd32390044d2396b87aa]
+sid: released (6.7.7-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-03 21:33:11 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-03 21:33:11 +0200
commit	e2b12639eebeadc5925bec1ffdecf7df5192aace (patch)
tree	c43a5a7f293006eced7e9c712f34efab9c774abb /active/CVE-2024-26735
parent	03801e090c9fbe79615a6fe3fc2a075311f2bd8b (diff)