Retire two CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-05-16 15:29:21 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-05-16 15:29:21 +0200
commit: 48fca8d3f0b3be4638ac49c7f6358409e7a4f25a (patch)
tree: 9ac9d37da0e2b95496c946a82ec48dcf593ddfbb /retired/CVE-2020-8992
parent: dde07c047efe986158319983d22a9c737d14b9c6 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2020-8992 b/retired/CVE-2020-8992
new file mode 100644
index 00000000..fb0da4ce
--- /dev/null
+++ b/retired/CVE-2020-8992
@@ -0,0 +1,15 @@
+Description: ext4: add cond_resched() to ext4_protect_reserved_inode 
+References:
+ https://patchwork.ozlabs.org/patch/1236118/
+Notes:
+ bwh> Introduced by fix for CVE-2019-19319, so we can avoid it by
+ bwh> applying both fixes at the same time.
+Bugs:
+upstream: released (5.6-rc2) [af133ade9a40794a37104ecbcc2827c0ea373a3c]
+4.19-upstream-stable: released (4.19.105) [a5c03b93e7b5f2080cc574ac65312f0433758158]
+4.9-upstream-stable: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.5.13-1)
+4.19-buster-security: released (4.19.118-1)
+4.9-stretch-security: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2020-05-16 15:29:21 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-05-16 15:29:21 +0200
commit	48fca8d3f0b3be4638ac49c7f6358409e7a4f25a (patch)
tree	9ac9d37da0e2b95496c946a82ec48dcf593ddfbb /retired/CVE-2020-8992
parent	dde07c047efe986158319983d22a9c737d14b9c6 (diff)