Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2018-01-09 17:51:45 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2018-01-09 17:51:45 +0100
commit: 582bd036a8776b63cd0e81f699e72d750c935e5a (patch)
tree: 79851a25f5babf1c8a068949f39a4b4336c04aaa /retired/CVE-2017-17558
parent: c67af4afbb0edf5226852b954994e32abf2bcdab (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2017-17558 b/retired/CVE-2017-17558
new file mode 100644
index 00000000..b974c422
--- /dev/null
+++ b/retired/CVE-2017-17558
@@ -0,0 +1,15 @@
+Description: memory corruption in USB core subsystem
+References:
+ http://www.openwall.com/lists/oss-security/2017/12/12/7
+ https://www.spinics.net/lists/linux-usb/msg163644.html
+Notes:
+ bwh> This appears to pre-date git history.
+Bugs:
+upstream: released (4.15-rc4) [48a4ff1c7bb5a32d2e396b03132d20d552c0eca7]
+4.9-upstream-stable: released (4.9.71) [99542e468b76ae180675566692e0528c4c712661]
+3.16-upstream-stable: released (3.16.52) [072bee30c5d314af02c211112697ab0931ab5039]
+3.2-upstream-stable: released (3.2.97) [11a1db99b93dbb5f7b78cffe9b85e616ab749776]
+sid: released (4.14.7-1) [bugfix/all/usb-core-prevent-malicious-bnuminterfaces-overflow.patch]
+4.9-stretch-security: released (4.9.65-3+deb9u1) [bugfix/all/usb-core-prevent-malicious-bnuminterfaces-overflow.patch]
+3.16-jessie-security: released (3.16.51-3+deb8u1) [bugfix/all/usb-core-prevent-malicious-bnuminterfaces-overflow.patch]
+3.2-wheezy-security: released (3.2.96-3) [bugfix/all/usb-core-prevent-malicious-bnuminterfaces-overflow.patch]
author	Salvatore Bonaccorso <carnil@debian.org>	2018-01-09 17:51:45 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2018-01-09 17:51:45 +0100
commit	582bd036a8776b63cd0e81f699e72d750c935e5a (patch)
tree	79851a25f5babf1c8a068949f39a4b4336c04aaa /retired/CVE-2017-17558
parent	c67af4afbb0edf5226852b954994e32abf2bcdab (diff)