Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2020-10-29 19:35:55 +0000
committer: Ben Hutchings <ben@decadent.org.uk> 2020-10-29 19:35:55 +0000
commit: 46596addb1df996f06637dd4bb06ddcf23ead940 (patch)
tree: 0ea8c74b965066f66ca447607545577cda165bfc /retired/CVE-2019-19073
parent: 9cd8e88bbaf9b6711fc54bad1d8acd8ee940631a (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2019-19073 b/retired/CVE-2019-19073
new file mode 100644
index 00000000..0df158ce
--- /dev/null
+++ b/retired/CVE-2019-19073
@@ -0,0 +1,15 @@
+Description: ath9k_htc: release allocated buffer if timed out
+References:
+Notes:
+ bwh> I suspect that the "fix" for this actually introduces a
+ bwh> use-after-free, since the command might still complete
+ bwh> after the driver gives up waiting.
+Bugs:
+upstream: released (5.4-rc1) [853acf7caf10b828102d92d05b5c101666a6142b]
+4.19-upstream-stable: released (4.19.137) [5b8464dc9a6e81a16481549c77d0d341041e425e]
+4.9-upstream-stable: released (4.9.233) [86c3e3e5937f7496d08eb7bc498ee3c10095d23c]
+3.16-upstream-stable: ignored "EOL"
+sid: released (5.4.6-1)
+4.19-buster-security: released (4.19.146-1)
+4.9-stretch-security: released (4.9.240-1)
+3.16-jessie-security: ignored "EOL"
author	Ben Hutchings <ben@decadent.org.uk>	2020-10-29 19:35:55 +0000
committer	Ben Hutchings <ben@decadent.org.uk>	2020-10-29 19:35:55 +0000
commit	46596addb1df996f06637dd4bb06ddcf23ead940 (patch)
tree	0ea8c74b965066f66ca447607545577cda165bfc /retired/CVE-2019-19073
parent	9cd8e88bbaf9b6711fc54bad1d8acd8ee940631a (diff)