Retire some CVEs

1 files changed, 13 insertions, 0 deletions

diff --git a/retired/CVE-2020-27777 b/retired/CVE-2020-27777
new file mode 100644
index 00000000..52029ff2
--- /dev/null
+++ b/retired/CVE-2020-27777
@@ -0,0 +1,13 @@
+Description: powerpc/rtas: Restrict RTAS requests from userspace
+References:
+ https://www.openwall.com/lists/oss-security/2020/10/09/1
+Notes:
+ bwh> I think this can be ignored for buster as we do not support
+ bwh> Secure Boot on powerpc architectures.
+Bugs:
+upstream: released (5.10-rc1) [bd59380c5ba4147dcbaad3e582b55ccfd120b764]
+4.19-upstream-stable: released (4.19.155) [94e8f0bbc475228c93d28b2e0f7e37303db80ffe]
+4.9-upstream-stable: ignored "Only an issue when Secure Boot is implemented"
+sid: released (5.9.6-1)
+4.19-buster-security: released (4.19.160-1)
+4.9-stretch-security: ignored "Only an issue when Secure Boot is implemented"