Retire two CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-11-19 22:01:54 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-11-19 22:01:54 +0100
commit: 63ed40771a97fa2a8b3e8f5c36b9bda614f8fe22 (patch)
tree: 230d5d132e56f642f61e2c5fdd97675515cc59d1 /retired/CVE-2020-12912
parent: 63179a71a0ef26bee7c0ff8655273d2c637680a5 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2020-12912 b/retired/CVE-2020-12912
new file mode 100644
index 00000000..7170f81b
--- /dev/null
+++ b/retired/CVE-2020-12912
@@ -0,0 +1,16 @@
+Description: hwmon: amd_energy: modify the visibility of the counters
+References:
+ https://lore.kernel.org/stable/238e3cf7-582f-a265-5300-9b44948107b0@roeck-us.net/T/#ma48754bff34127867149bf466fc2f9c2deea3960
+ https://bugzilla.redhat.com/show_bug.cgi?id=1897402
+ https://support.lenovo.com/lu/uk/product_security/LEN-50481
+Notes:
+ carnil> CONFIG_SENSORS_AMD_ENERGY not enabled in Debian builds,
+ carnil> although there was a request about it in #970699.
+ carnil> Fix included in v5.9.9 as well.
+Bugs:
+upstream: released (5.10-rc4) [60268b0e8258fdea9a3c9f4b51e161c123571db3]
+4.19-upstream-stable: N/A "Vulnerable code not present"
+4.9-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.9.9-1)
+4.19-buster-security: N/A "Vulnerable code not present"
+4.9-stretch-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2020-11-19 22:01:54 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-11-19 22:01:54 +0100
commit	63ed40771a97fa2a8b3e8f5c36b9bda614f8fe22 (patch)
tree	230d5d132e56f642f61e2c5fdd97675515cc59d1 /retired/CVE-2020-12912
parent	63179a71a0ef26bee7c0ff8655273d2c637680a5 (diff)