retire

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@3201 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2014-01-03 09:32:03 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2014-01-03 09:32:03 +0000
commit: 8691c390aeac1e0b54520a18cc00b6af35393014 (patch)
tree: b752efd0a52c4048a43e53ab3befa618d2ff6c22 /retired/CVE-2013-6376
parent: 57ff759a1ae93a601e5d6cdb9a67f0d8708be333 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2013-6376 b/retired/CVE-2013-6376
new file mode 100644
index 00000000..4b5f1020
--- /dev/null
+++ b/retired/CVE-2013-6376
@@ -0,0 +1,15 @@
+Description: kvm: BUG_ON() in apic_cluster_id()
+References:
+ http://seclists.org/oss-sec/2013/q4/494
+Notes:
+ bwh> This appears to have been introduced in 3.7 by commit 1e08ec4a130e
+ bwh> ('KVM: optimize apic interrupt delivery') but I can't tell for sure
+ bwh> without a reproducer.
+ jmm> ^ confirmed by Google engineer who discovered the bug
+Bugs:
+upstream: released (3.13-rc4) [17d68b763f09a9ce824ae23eb62c9efc57b69271]
+2.6.32-upstream-stable: N/A "Introduced in 3.7 by commit 1e08ec4a130e"
+sid: released (3.12.6-1)
+3.2-wheezy-security: N/A "Introduced in 3.7 by commit 1e08ec4a130e"
+2.6.32-squeeze-security: N/A "Introduced in 3.7 by commit 1e08ec4a130e"
+3.2-upstream-stable: N/A "Introduced in 3.7 by commit 1e08ec4a130e"
author	Moritz Muehlenhoff <jmm@debian.org>	2014-01-03 09:32:03 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2014-01-03 09:32:03 +0000
commit	8691c390aeac1e0b54520a18cc00b6af35393014 (patch)
tree	b752efd0a52c4048a43e53ab3befa618d2ff6c22 /retired/CVE-2013-6376
parent	57ff759a1ae93a601e5d6cdb9a67f0d8708be333 (diff)