diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-06-11 09:46:30 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-06-11 09:46:30 +0200 |
commit | 9cd139b64b8458e7934cf2d43a83d81e9a076e0f (patch) | |
tree | 3db2ce2c38f26190276cb520f651cecb31556b70 /retired/CVE-2020-10711 | |
parent | 236bb8f35c5bf6d0962f44bc7a2aba1a433f26d0 (diff) |
Retire several CVEs
Diffstat (limited to 'retired/CVE-2020-10711')
-rw-r--r-- | retired/CVE-2020-10711 | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/retired/CVE-2020-10711 b/retired/CVE-2020-10711 new file mode 100644 index 00000000..5006f45e --- /dev/null +++ b/retired/CVE-2020-10711 @@ -0,0 +1,18 @@ +Description: NetLabel: null pointer dereference while receiving CIPSO packet with null category +References: + https://www.openwall.com/lists/oss-security/2020/05/12/2 + https://lore.kernel.org/netdev/07d99ae197bfdb2964931201db67b6cd0b38db5b.1589276729.git.pabeni@redhat.com/ +Notes: + carnil> Introduced in 4b8feff251da ("netlabel: fix the horribly broken + carnil> catmap functions") in 3.17-rc1 and ceba1832b1b2 ("calipso: Set + carnil> the calipso socket label to match the secattr.") in 4.8. We + carnil> enabled furthermore CONFIG_NETLABEL only starting in 5.6.7-1. +Bugs: +upstream: released (5.7-rc6) [eead1c2ea2509fd754c6da893a94f0e69e83ebe4] +4.19-upstream-stable: released (4.19.124) [caf6c20c6421ca687751d27b96c8021c655e56e6] +4.9-upstream-stable: released (4.9.224) [9232577ef3e10775eefe7f2689cbf851c8b13d80] +3.16-upstream-stable: N/A "Vulnerability introduced later" +sid: released (5.6.14-1) +4.19-buster-security: released (4.19.118-2+deb10u1) [bugfix/all/netlabel-cope-with-NULL-catmap.patch] +4.9-stretch-security: released (4.9.210-1+deb9u1) [bugfix/all/netlabel-cope-with-NULL-catmap.patch] +3.16-jessie-security: N/A "Vulnerability introduced later" |