Retire CVE-2018-10853

1 files changed, 17 insertions, 0 deletions

diff --git a/retired/CVE-2018-10853 b/retired/CVE-2018-10853
new file mode 100644
index 00000000..a9cf1b4e
--- /dev/null
+++ b/retired/CVE-2018-10853
@@ -0,0 +1,17 @@
+Description: kvm: guest userspace to guest kernel write
+References:
+ https://patchwork.kernel.org/patch/10449159/
+ https://bugzilla.redhat.com/show_bug.cgi?id=1589890
+Notes:
+ carnil> Issue needs further investigation for older branches. The commit
+ carnil> fixes 129a72a0d3c8e139a04512325384fe5ac119e74d (which was used
+ carnil> to address CVE-2017-2584, as well, and it was backported to older
+ carnil> branches. So we need to check if the issue is as well present
+ carnil> in older versions than 4.10-rc4.
+Bugs:
+upstream: released (4.18-rc1) [79367a65743975e5cac8d24d08eccc7fdae832b0, ce14e868a54edeb2e30cb7a7b104a2fc4b9d76ca, 3c9fa24ca7c9c47605672916491f79e8ccacb9e6]
+4.9-upstream-stable: released (4.9.109) [00b1391f9539711945e75b856230ee751a02b385, 838b0e900a7e16799dbecc031739de1ee40741af, 13d1c5b17d127afbd947210c5cdd80eaded5d9f4]
+3.16-upstream-stable: released (3.16.58) [8b22be95e4e060515553551e295c48c57c9ad2c7, b1632afd23734e0d565ace124df0bc9c55a7575e, c1eef5daecfd48a4e85a0b4f37239b8dbfb9703a]
+sid: released (4.16.16-1)
+4.9-stretch-security: released (4.9.110-1)
+3.16-jessie-security: released (3.16.57-1) [bugfix/x86/kvm-x86-introduce-linear_-read-write-_system.patch, bugfix/x86/kvm-x86-pass-kvm_vcpu-to-kvm_read_guest_virt-and-kvm.patch, bugfix/x86/kvm-x86-use-correct-privilege-level-for-sgdt-sidt-fx.patch]