dsa-texts: Fill in more issue descriptions

author: Ben Hutchings <ben@decadent.org.uk> 2020-06-07 23:42:08 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2020-06-08 00:12:44 +0100
commit: 4cc0ec706f55b39998cfc376dc4162bc74738921 (patch)
tree: ad174b7e8489e73b2590a7183adcb60d98dc292e /dsa-texts/4.19.118-2+deb10u1
parent: 4879976bc0757f0d3910a28f31e96baef9641ce1 (diff)
1 files changed, 9 insertions, 2 deletions
diff --git a/dsa-texts/4.19.118-2+deb10u1 b/dsa-texts/4.19.118-2+deb10u1
index cd5590ef..55b7c443 100644
--- a/dsa-texts/4.19.118-2+deb10u1
+++ b/dsa-texts/4.19.118-2+deb10u1
@@ -73,11 +73,18 @@ CVE-2020-12768
 
 CVE-2020-12770
 
-    Description
+    It was discovered that the sg (SCSI generic) driver did not
+    correctly release internal resources in a particular error case.
+    A local user permitted to access an sg device could possibly use
+    this to cause a denial of service (resource exhaustion).
 
 CVE-2020-13143
 
-    Description
+    Kyungtae Kim reported a potential heap out-of-bounds write in
+    the USB gadget subsystem.  A local user permitted to write to
+    the gadget configuration filesystem could use this to cause a
+    denial of service (crash or memory corruption) or potentially
+    for privilege escalation.
 
 For the stable distribution (buster), these problems have been fixed in
 version 4.19.118-2+deb10u1.
author	Ben Hutchings <ben@decadent.org.uk>	2020-06-07 23:42:08 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2020-06-08 00:12:44 +0100
commit	4cc0ec706f55b39998cfc376dc4162bc74738921 (patch)
tree	ad174b7e8489e73b2590a7183adcb60d98dc292e /dsa-texts/4.19.118-2+deb10u1
parent	4879976bc0757f0d3910a28f31e96baef9641ce1 (diff)