Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-06-11 09:46:30 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-06-11 09:46:30 +0200
commit: 9cd139b64b8458e7934cf2d43a83d81e9a076e0f (patch)
tree: 3db2ce2c38f26190276cb520f651cecb31556b70 /retired/CVE-2019-5108
parent: 236bb8f35c5bf6d0962f44bc7a2aba1a433f26d0 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2019-5108 b/retired/CVE-2019-5108
new file mode 100644
index 00000000..5145999c
--- /dev/null
+++ b/retired/CVE-2019-5108
@@ -0,0 +1,16 @@
+Description: CAM table denial-of-service vulnerability
+References:
+ https://talosintelligence.com/vulnerability_reports/TALOS-2019-0900
+Notes:
+ carnil> The Cisco TALOS report talks about "prior to mainline 5.3" but
+ carnil> unclear yet (to me) where the issue has been fixed or if that
+ carnil> only reflects the state when the advisory was written.
+Bugs:
+upstream: released (5.3) [3e493173b7841259a08c5c8e5cbe90adb349da7e]
+4.19-upstream-stable: released (4.19.97) [8f483142b0bb278f67eabccbe3d6a0e8c45284ad]
+4.9-upstream-stable: released (4.9.211) [ca60f42d7965af9f22392caa4074ab0f58c7e1fe]
+3.16-upstream-stable: released (3.16.83) [93864704f211e55eddec0c03ca300b1cf6414d8c]
+sid: released (5.3.7-1)
+4.19-buster-security: released (4.19.98-1)
+4.9-stretch-security: released (4.9.210-1+deb9u1) [bugfix/all/mac80211-do-not-send-layer-2-update-frame-before-aut.patch]
+3.16-jessie-security: released (3.16.84-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-06-11 09:46:30 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-06-11 09:46:30 +0200
commit	9cd139b64b8458e7934cf2d43a83d81e9a076e0f (patch)
tree	3db2ce2c38f26190276cb520f651cecb31556b70 /retired/CVE-2019-5108
parent	236bb8f35c5bf6d0962f44bc7a2aba1a433f26d0 (diff)