Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2019-06-06 20:59:52 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2019-06-06 20:59:52 +0100
commit: 5b85b5a3a2d5706d314825bca1d2ca012dac9ff2 (patch)
tree: fb715e49e072571480e3bbf5df3bc581ad1182bd /retired/CVE-2017-10663
parent: 3bbb37ff9af0a202846a3284b8a42239d68eab29 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2017-10663 b/retired/CVE-2017-10663
new file mode 100644
index 00000000..1f493245
--- /dev/null
+++ b/retired/CVE-2017-10663
@@ -0,0 +1,17 @@
+Description: f2fs: sanity check checkpoint segno and blkoff
+References:
+ https://source.android.com/security/bulletin/2017-08-01
+ https://sourceforge.net/p/linux-f2fs/mailman/message/35835945/
+Notes:
+ bwh> Vulnerable code added in 3.8 by commit 127e670abfa7 "f2fs: add checkpoint
+ bwh> operations".
+Bugs:
+upstream: released (4.13-rc1) [15d3042a937c13f5d9244241c7a9c8416ff6e82a]
+4.19-upstream-stable: N/A "Fixed before branch point"
+4.9-upstream-stable: released (4.9.42) [0f442c5b2e4ac0b65027ed3374462f1c38675f7e]
+3.16-upstream-stable: ignored "Hard to backport and low priority outside of Android"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: released (4.12.6-1)
+4.9-stretch-security: released (4.9.47-1)
+3.16-jessie-security: ignored "Hard to backport and low priority outside of Android"
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Ben Hutchings <ben@decadent.org.uk>	2019-06-06 20:59:52 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2019-06-06 20:59:52 +0100
commit	5b85b5a3a2d5706d314825bca1d2ca012dac9ff2 (patch)
tree	fb715e49e072571480e3bbf5df3bc581ad1182bd /retired/CVE-2017-10663
parent	3bbb37ff9af0a202846a3284b8a42239d68eab29 (diff)