diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-25 20:49:54 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-25 20:49:54 +0100 |
| commit | 799d3c586b6df4d41fccd5fc2ff796a087c26329 (patch) | |
| tree | 58859fea1691e870e5406a47cbb0c08c1e4582e6 /retired/CVE-2021-33033 | |
| parent | e3e90ffdadf6bb9b0e7ff277a38879d594f49edd (diff) | |
Retire several CVEs
Diffstat (limited to 'retired/CVE-2021-33033')
| -rw-r--r-- | retired/CVE-2021-33033 | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/retired/CVE-2021-33033 b/retired/CVE-2021-33033 new file mode 100644 index 00000000..ce1e7319 --- /dev/null +++ b/retired/CVE-2021-33033 @@ -0,0 +1,22 @@ +Description: cipso,calipso: resolve a number of problems with the DOI refcounts +References: + https://sites.google.com/view/syzscope/kasan-use-after-free-read-in-cipso_v4_genopt + https://syzkaller.appspot.com/bug?id=96e7d345748d8814901c91cd92084ed04b46701e +Notes: + carnil> First commit required landed in 4.19.181, 5.10.24, 5.12-rc3. + carnil> Second one in 4.19.187, 5.10.30, 5.12-rc7. + bwh> The "second commit" in ieee802154 (1165affd4848) is fixing a + bwh> totally different issue. These components are part of Netlabel + bwh> which was only enabled by Debian official configs since version + bwh> 5.6.7-1. + carnil> The "second comit" is indeed a completely different issue, and + carnil> got CVE-2021-3659 assigned. +Bugs: +upstream: released (5.12-rc7) [ad5d07f4a9cd671233ae20983848874731102c08] +5.10-upstream-stable: released (5.10.24) [85178d76febd30a745b7d947dbd9751919d0fa5b] +4.19-upstream-stable: released (4.19.181) [a44af1c69737f9e64d5134c34eb9d5c4c2e04da1] +4.9-upstream-stable: released (4.9.298) [f49f0e65a95664b648e058aa923f651ec08dfeb7] +sid: released (5.10.24-1) +5.10-bullseye-security: N/A "Fixed before branching point" +4.19-buster-security: released (4.19.181-1) +4.9-stretch-security: released (4.9.303-1) |