Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2019-03-28 01:50:09 +0000
committer: Ben Hutchings <ben@decadent.org.uk> 2019-03-28 01:50:09 +0000
commit: 27b3d6a80bd2f514d34d033cf2bd02f4e3145ad7 (patch)
tree: 3c74df6a121b9b0354a8cbd59ebdc1b5b54ad106 /retired/CVE-2018-19407
parent: eb51c7725271bea941d40933c031ae86b716e971 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2018-19407 b/retired/CVE-2018-19407
new file mode 100644
index 00000000..4d1d62de
--- /dev/null
+++ b/retired/CVE-2018-19407
@@ -0,0 +1,16 @@
+Description: KVM: X86: Fix scan ioapic use-before-initialization
+References:
+ https://lkml.org/lkml/2018/11/20/580
+Notes:
+ carnil> Introduced by 3d81bc7e96d6bca0b8f8b7d1bf6ea72caa3aac57 (3.10-rc1)
+ bwh> I'm fairly sure this is impossible before commit 5c919412fe61
+ bwh> "kvm/x86: Hyper-V synthetic interrupt controller" (4.5-rc1).  The
+ bwh> reproducer didn't work for me on either 3.16 or 4.9.
+Bugs:
+upstream: released (4.20-rc5) [e97f852fd4561e77721bb9a4e0ea9d98305b1e93]
+4.19-upstream-stable: released (4.19.7) [61c42d657c859ccc95e53afdac64f73a0053b8ea]
+4.9-upstream-stable: released (4.9.143) [3a468e8e5a6124523e2e94c33866c609cc914876]
+3.16-upstream-stable: N/A "Vulnerable code not present"
+sid: released (4.19.9-1)
+4.9-stretch-security: released (4.9.144-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
author	Ben Hutchings <ben@decadent.org.uk>	2019-03-28 01:50:09 +0000
committer	Ben Hutchings <ben@decadent.org.uk>	2019-03-28 01:50:09 +0000
commit	27b3d6a80bd2f514d34d033cf2bd02f4e3145ad7 (patch)
tree	3c74df6a121b9b0354a8cbd59ebdc1b5b54ad106 /retired/CVE-2018-19407
parent	eb51c7725271bea941d40933c031ae86b716e971 (diff)