Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2019-04-27 10:35:38 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2019-04-27 10:35:38 +0200
commit: 50515be306d26f92c0642de9596d03122cc4f998 (patch)
tree: 0e5d9176291ecfd7635d2c9f1bd87ae57ebe02d4 /retired/CVE-2018-16884
parent: 6b4c46d0edfd7627200d062f594db50583bffd44 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2018-16884 b/retired/CVE-2018-16884
new file mode 100644
index 00000000..41d7140e
--- /dev/null
+++ b/retired/CVE-2018-16884
@@ -0,0 +1,16 @@
+Description: nfs: use-after-free in svc_process_common()
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1660375
+ https://patchwork.kernel.org/cover/10733767/
+ https://patchwork.kernel.org/patch/10733769/
+Notes:
+ carnil> Commit fixes 23c20ecd4475 (3.7-rc1), check if this
+ carnil> is commit introducing the issue itself.
+Bugs:
+upstream: released (5.0-rc1) [d4b09acf924b84bae77cad090a9d108e70b43643]
+4.19-upstream-stable: released (4.19.16) [44e7bab39f877c9c095bfaaee943b0807574a7f7]
+4.9-upstream-stable: released (4.9.151) [37c791a031ece3afeb9c8b023397473a5349f171]
+3.16-upstream-stable: released (3.16.64) [801f9d2fb42e450a67f83c18fd5d8450ad29224f]
+sid: released (4.19.16-1)
+4.9-stretch-security: released (4.9.161-1)
+3.16-jessie-security: released (3.16.64-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2019-04-27 10:35:38 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2019-04-27 10:35:38 +0200
commit	50515be306d26f92c0642de9596d03122cc4f998 (patch)
tree	0e5d9176291ecfd7635d2c9f1bd87ae57ebe02d4 /retired/CVE-2018-16884
parent	6b4c46d0edfd7627200d062f594db50583bffd44 (diff)