Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2019-06-06 20:59:52 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2019-06-06 20:59:52 +0100
commit: 5b85b5a3a2d5706d314825bca1d2ca012dac9ff2 (patch)
tree: fb715e49e072571480e3bbf5df3bc581ad1182bd /retired/CVE-2018-13099
parent: 3bbb37ff9af0a202846a3284b8a42239d68eab29 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2018-13099 b/retired/CVE-2018-13099
new file mode 100644
index 00000000..5b2378a3
--- /dev/null
+++ b/retired/CVE-2018-13099
@@ -0,0 +1,14 @@
+Description: use-after-free in update_sit_entry() when operating on a corrupted f2fs image 
+References:
+ https://bugzilla.kernel.org/show_bug.cgi?id=200179
+ https://git.kernel.org/pub/scm/linux/kernel/git/chao/linux.git/commit/?h=f2fs-dev&id=67d88628bd1dcc9ded6f0b7dfc363d1370688004
+ https://sourceforge.net/p/linux-f2fs/mailman/message/36356878/
+Notes:
+Bugs:
+upstream: released (4.19-rc1) [4dbe38dc386910c668c75ae616b99b823b59f3eb]
+4.19-upstream-stable: N/A "Fixed before branch point"
+4.9-upstream-stable: released (4.9.128) [7e0782ceebaaed70b0c4b775c27b81e8f8cf6ddb]
+3.16-upstream-stable: ignored "Hard to backport and low priority outside of Android"
+sid: released (4.18.10-1)
+4.9-stretch-security: released (4.9.110-3+deb9u5) [bugfix/all/f2fs-fix-to-do-sanity-check-with-reserved-blkaddr-of.patch]
+3.16-jessie-security: ignored "Hard to backport and low priority outside of Android"
author	Ben Hutchings <ben@decadent.org.uk>	2019-06-06 20:59:52 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2019-06-06 20:59:52 +0100
commit	5b85b5a3a2d5706d314825bca1d2ca012dac9ff2 (patch)
tree	fb715e49e072571480e3bbf5df3bc581ad1182bd /retired/CVE-2018-13099
parent	3bbb37ff9af0a202846a3284b8a42239d68eab29 (diff)