diff options
author | Ben Hutchings <ben@decadent.org.uk> | 2020-06-07 23:42:08 +0100 |
---|---|---|
committer | Ben Hutchings <ben@decadent.org.uk> | 2020-06-08 00:12:44 +0100 |
commit | 4cc0ec706f55b39998cfc376dc4162bc74738921 (patch) | |
tree | ad174b7e8489e73b2590a7183adcb60d98dc292e /dsa-texts/4.19.118-2+deb10u1 | |
parent | 4879976bc0757f0d3910a28f31e96baef9641ce1 (diff) |
dsa-texts: Fill in more issue descriptions
Diffstat (limited to 'dsa-texts/4.19.118-2+deb10u1')
-rw-r--r-- | dsa-texts/4.19.118-2+deb10u1 | 11 |
1 files changed, 9 insertions, 2 deletions
diff --git a/dsa-texts/4.19.118-2+deb10u1 b/dsa-texts/4.19.118-2+deb10u1 index cd5590ef..55b7c443 100644 --- a/dsa-texts/4.19.118-2+deb10u1 +++ b/dsa-texts/4.19.118-2+deb10u1 @@ -73,11 +73,18 @@ CVE-2020-12768 CVE-2020-12770 - Description + It was discovered that the sg (SCSI generic) driver did not + correctly release internal resources in a particular error case. + A local user permitted to access an sg device could possibly use + this to cause a denial of service (resource exhaustion). CVE-2020-13143 - Description + Kyungtae Kim reported a potential heap out-of-bounds write in + the USB gadget subsystem. A local user permitted to write to + the gadget configuration filesystem could use this to cause a + denial of service (crash or memory corruption) or potentially + for privilege escalation. For the stable distribution (buster), these problems have been fixed in version 4.19.118-2+deb10u1. |