Retire two CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2022-04-22 14:22:49 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-04-22 14:22:49 +0200
commit: 5198bc8cd067a6097d0ce842d995b9956a4f1fc8 (patch)
tree: 3a3448d619a18e89c395da892a721603030125ca /retired/CVE-2021-4095
parent: 44fb7f682e9a7cafaab9005a78b58a6a9db5ba30 (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/retired/CVE-2021-4095 b/retired/CVE-2021-4095
new file mode 100644
index 00000000..d799e5ba
--- /dev/null
+++ b/retired/CVE-2021-4095
@@ -0,0 +1,19 @@
+Description: KVM: NULL pointer dereference in kvm_dirty_ring_get() in virt/kvm/dirty_ring.c
+References:
+ https://lore.kernel.org/kvm/CAFcO6XOmoS7EacN_n6v4Txk7xL7iqRa2gABg3F7E3Naf5uG94g@mail.gmail.com/
+ https://patchwork.kernel.org/project/kvm/patch/20211121125451.9489-12-dwmw2@infradead.org/
+ https://bugzilla.redhat.com/show_bug.cgi?id=2031194
+ https://www.openwall.com/lists/oss-security/2021/12/14/2
+ https://www.openwall.com/lists/oss-security/2022/01/17/1
+Notes:
+ bwh> Introduced in 5.12 by commit 629b5348841a "KVM: x86/xen: update
+ bwh> wallclock region".
+Bugs:
+upstream: released (5.17-rc1) [55749769fe608fa3f4a075e42e89d237c8e37637]
+5.10-upstream-stable: N/A "Vulnerability introduced later"
+4.19-upstream-stable: N/A "Vulnerability introduced later"
+4.9-upstream-stable: N/A "Vulnerability introduced later"
+sid: released (5.17.3-1)
+5.10-bullseye-security: N/A "Vulnerability introduced later"
+4.19-buster-security: N/A "Vulnerability introduced later"
+4.9-stretch-security: N/A "Vulnerability introduced later"
author	Salvatore Bonaccorso <carnil@debian.org>	2022-04-22 14:22:49 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-04-22 14:22:49 +0200
commit	5198bc8cd067a6097d0ce842d995b9956a4f1fc8 (patch)
tree	3a3448d619a18e89c395da892a721603030125ca /retired/CVE-2021-4095
parent	44fb7f682e9a7cafaab9005a78b58a6a9db5ba30 (diff)