Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2018-07-14 16:17:43 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2018-07-14 16:17:43 +0200
commit: 75e31d6511c043ea84ab413b0a595d860367cd89 (patch)
tree: 777571a45e5fdba0861b3c734d6ac554b706357a /retired/CVE-2018-1118
parent: 81f63b8fb3fdb033e956a9c74843a43c1edc2faf (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2018-1118 b/retired/CVE-2018-1118
new file mode 100644
index 00000000..8610b9c7
--- /dev/null
+++ b/retired/CVE-2018-1118
@@ -0,0 +1,16 @@
+Description: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()
+References:
+ http://www.openwall.com/lists/oss-security/2018/05/09/1
+ https://lkml.org/lkml/2018/4/27/833
+ https://bugzilla.redhat.com/show_bug.cgi?id=1573699
+Notes:
+ carnil> Introduced in 4.8-rc1 [6b1e6cc7855b09a0a9bfa1d9f30172ba366f161c]
+Bugs:
+upstream: released (4.18-rc1) [670ae9caaca467ea1bfd325cb2a5c98ba87f94ad]
+4.9-upstream-stable: released (4.9.110) [9681c3bdb098f6c87a0422b6b63912c1b90ad197]
+3.16-upstream-stable: N/A "Vulnerable code introduced later"
+3.2-upstream-stable: N/A "Vulnerable code introduced later"
+sid: released (4.17.3-1)
+4.9-stretch-security: released (4.9.110-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2018-07-14 16:17:43 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2018-07-14 16:17:43 +0200
commit	75e31d6511c043ea84ab413b0a595d860367cd89 (patch)
tree	777571a45e5fdba0861b3c734d6ac554b706357a /retired/CVE-2018-1118
parent	81f63b8fb3fdb033e956a9c74843a43c1edc2faf (diff)