Mark two more issues pending for 2.6.32-upstream and retire them

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4225 e094ebfe-e918-0410-adfb-c712417f3574
author: Ben Hutchings <benh@debian.org> 2016-03-04 13:56:51 +0000
committer: Ben Hutchings <benh@debian.org> 2016-03-04 13:56:51 +0000
commit: 167c0dab924d8723b1faf9bee55244c524f93f70 (patch)
tree: 4e126ae68511390d052896bb0d53be95578aca48 /retired/CVE-2016-2384
parent: 3651a3e844438bf1a6feb6f1f0c96ecf95ea040b (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/retired/CVE-2016-2384 b/retired/CVE-2016-2384
new file mode 100644
index 00000000..9301dd30
--- /dev/null
+++ b/retired/CVE-2016-2384
@@ -0,0 +1,12 @@
+Description: Double-free in snd-usbmidi-lib triggered by invalid USB descriptor
+References:
+Notes:
+Bugs:
+upstream: released (4.5-rc4) [07d86ca93db7e5cdf4743564d98292042ec21af7]
+3.16-upstream-stable: released (3.16.7-ckt25)
+3.2-upstream-stable: released (3.2.78) [alsa-usb-audio-avoid-freeing-umidi-object-twice.patch]
+2.6.32-upstream-stable: pending (2.6.32.71)
+sid: released (4.4.2-1) [bugfix/all/alsa-usb-audio-avoid-freeing-umidi-object-twice.patch]
+3.16-jessie-security: released (3.16.7-ckt20-1+deb8u4) [bugfix/all/alsa-usb-audio-avoid-freeing-umidi-object-twice.patch]
+3.2-wheezy-security: released (3.2.73-2+deb7u3) [bugfix/all/alsa-usb-audio-avoid-freeing-umidi-object-twice.patch]
+2.6.32-squeeze-security: released (2.6.32-48squeeze20) [bugfix/all/alsa-usb-audio-avoid-freeing-umidi-object-twice.patch]
author	Ben Hutchings <benh@debian.org>	2016-03-04 13:56:51 +0000
committer	Ben Hutchings <benh@debian.org>	2016-03-04 13:56:51 +0000
commit	167c0dab924d8723b1faf9bee55244c524f93f70 (patch)
tree	4e126ae68511390d052896bb0d53be95578aca48 /retired/CVE-2016-2384
parent	3651a3e844438bf1a6feb6f1f0c96ecf95ea040b (diff)