Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2019-06-20 18:36:53 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2019-06-20 18:36:53 +0100
commit: d8d42b17447acf420239bebfccb97a954d92d56a (patch)
tree: 74c42b69ec90a0bf91d018cfe447473e4fe8094a /retired/CVE-2019-10142
parent: 77643d220187f579ff96eb7462e42267a1276b1c (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2019-10142 b/retired/CVE-2019-10142
new file mode 100644
index 00000000..a8aafeb5
--- /dev/null
+++ b/retired/CVE-2019-10142
@@ -0,0 +1,14 @@
+Description: drivers/virt/fsl_hypervisor.c: prevent integer overflow in ioctl
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1711194
+ https://www.openwall.com/lists/oss-security/2019/05/22/5
+Notes:
+ carnil> CONFIG_FSL_HV_MANAGER not enabled, so only affected source-wise.
+Bugs:
+upstream: released (5.2-rc1) [6a024330650e24556b8a18cc654ad00cfecf6c6c]
+4.19-upstream-stable: released (4.19.44) [e9ec5073c90d6de2ca5338bd67f7935b19d7c0c7]
+4.9-upstream-stable: released (4.9.177) [71e29a15b4babddba1a6faab6d98d2dcce1cd0ff]
+3.16-upstream-stable: released (3.16.69) [drivers-virt-fsl_hypervisor.c-prevent-integer-overflow-in-ioctl.patch]
+sid: ignored "Vulnerable code not enabled"
+4.9-stretch-security: ignored "Vulnerable code not enabled"
+3.16-jessie-security: ignored "Vulnerable code not enabled"
author	Ben Hutchings <ben@decadent.org.uk>	2019-06-20 18:36:53 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2019-06-20 18:36:53 +0100
commit	d8d42b17447acf420239bebfccb97a954d92d56a (patch)
tree	74c42b69ec90a0bf91d018cfe447473e4fe8094a /retired/CVE-2019-10142
parent	77643d220187f579ff96eb7462e42267a1276b1c (diff)