Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-06-11 09:46:30 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-06-11 09:46:30 +0200
commit: 9cd139b64b8458e7934cf2d43a83d81e9a076e0f (patch)
tree: 3db2ce2c38f26190276cb520f651cecb31556b70 /retired/CVE-2019-2182
parent: 236bb8f35c5bf6d0962f44bc7a2aba1a433f26d0 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2019-2182 b/retired/CVE-2019-2182
new file mode 100644
index 00000000..eb169568
--- /dev/null
+++ b/retired/CVE-2019-2182
@@ -0,0 +1,15 @@
+Description: arm64: Enforce BBM for huge IO/VMAP mappings
+References:
+ https://source.android.com/security/bulletin/pixel/2019-09-01
+Notes:
+ carnil> Commit fixes 324420bf91f6 ("arm64: add support for ioremap()
+ carnil> block mappings") which is in 4.6-rc1.
+Bugs:
+upstream: released (4.16-rc3) [15122ee2c515a253b0c66a3e618bc7ebe35105eb]
+4.19-upstream-stable: N/A "Fixed before branching point"
+4.9-upstream-stable: released (4.9.211) [4f45a0a170355546cc47ba7bbf3973fe187d05cf]
+3.16-upstream-stable: N/A "Vulnerable code not present"
+sid: released (4.16.5-1)
+4.19-buster-security: N/A "Fixed before branching point"
+4.9-stretch-security: released (4.9.210-1+deb9u1) [bugfix/arm64/arm64-enforce-bbm-for-huge-io-vmap-mappings.patch]
+3.16-jessie-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2020-06-11 09:46:30 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-06-11 09:46:30 +0200
commit	9cd139b64b8458e7934cf2d43a83d81e9a076e0f (patch)
tree	3db2ce2c38f26190276cb520f651cecb31556b70 /retired/CVE-2019-2182
parent	236bb8f35c5bf6d0962f44bc7a2aba1a433f26d0 (diff)