Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2018-05-02 08:01:27 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2018-05-02 08:01:27 +0200
commit: 3f1ac495684211f5c6c8bd5e8eac8d2b405dee68 (patch)
tree: 0bc18e11dc4f10760a099c6a1c90fa10dd1ccd96 /retired/CVE-2018-5332
parent: 658830538c79baf34e713b9d5c5e533168a65321 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2018-5332 b/retired/CVE-2018-5332
new file mode 100644
index 00000000..0e93f725
--- /dev/null
+++ b/retired/CVE-2018-5332
@@ -0,0 +1,14 @@
+Description: RDS: Heap OOB write in rds_message_alloc_sgs()
+References:
+Notes:
+ bwh> It's hard to follow exactly what goes wrong here but the code looks
+ bwh> pretty similar all the way back to 3.2.
+Bugs:
+upstream: released (4.15-rc8) [c095508770aebf1b9218e77026e48345d719b17c]
+4.9-upstream-stable: released (4.9.77) [cebb382931c4fb341162eae80b696650260e4a2b]
+3.16-upstream-stable: released (3.16.54) [a64a21f6de4faf41b74800275be0552f55e83699]
+3.2-upstream-stable: released (3.2.99) [60daca9efbb3e4109ebc1f7069543e5573fc124e]
+sid: released (4.14.17-1)
+4.9-stretch-security: released (4.9.80-1)
+3.16-jessie-security: released (3.16.56-1)
+3.2-wheezy-security: released (3.2.101-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2018-05-02 08:01:27 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2018-05-02 08:01:27 +0200
commit	3f1ac495684211f5c6c8bd5e8eac8d2b405dee68 (patch)
tree	0bc18e11dc4f10760a099c6a1c90fa10dd1ccd96 /retired/CVE-2018-5332
parent	658830538c79baf34e713b9d5c5e533168a65321 (diff)