Retire two CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2018-04-19 21:59:26 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2018-04-19 21:59:26 +0200
commit: dd13786f6f7901ea01c156522d1862093efdf121 (patch)
tree: dbb920fe42acaff83413813ad27b2616b445b655 /retired/CVE-2018-5703
parent: 3ad23356614d30ffdfdd85544642cd0b44a81002 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2018-5703 b/retired/CVE-2018-5703
new file mode 100644
index 00000000..3b122495
--- /dev/null
+++ b/retired/CVE-2018-5703
@@ -0,0 +1,15 @@
+Description: KASAN: slab-out-of-bounds Write in tcp_v6_syn_recv_sock
+References:
+ https://patchwork.ozlabs.org/patch/801530/
+ https://lkml.org/lkml/2018/1/16/53
+Notes:
+ bwh> This bug is in the kernel TLS implementation added in 4.13
+Bugs:
+upstream: released (4.16-rc5) [c113187d38ff85dc302a1bb55864b203ebb2ba10]
+4.9-upstream-stable: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: released (4.15.11-1)
+4.9-stretch-security: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2018-04-19 21:59:26 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2018-04-19 21:59:26 +0200
commit	dd13786f6f7901ea01c156522d1862093efdf121 (patch)
tree	dbb920fe42acaff83413813ad27b2616b445b655 /retired/CVE-2018-5703
parent	3ad23356614d30ffdfdd85544642cd0b44a81002 (diff)