Retire CVE-2022-2785

author: Salvatore Bonaccorso <carnil@debian.org> 2022-09-24 13:42:42 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-09-24 13:42:42 +0200
commit: 08cca911a542cca5e047bff240ec46c6630086db (patch)
tree: e70afa7fee3b7ef2323757f80587ec94e6fafc97 /retired/CVE-2022-2785
parent: 249d382be8956ac605840e8711b3358e23b287c1 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2022-2785 b/retired/CVE-2022-2785
new file mode 100644
index 00000000..28130422
--- /dev/null
+++ b/retired/CVE-2022-2785
@@ -0,0 +1,14 @@
+Description: bpf: Disallow bpf programs call prog_run command
+References:
+ https://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf.git/commit/?id=86f44fcec22ce2979507742bc53db8400e454f46
+ https://lore.kernel.org/bpf/20220816205517.682470-1-zhuyifei@google.com/T/#t
+Notes:
+ carnil> Introduced by b1d18a7574d0 ("bpf: Extend sys_bpf commands for
+ carnil> bpf_syscall programs.") in 5.18-rc1.
+Bugs:
+upstream: released (6.0-rc1) [86f44fcec22ce2979507742bc53db8400e454f46]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.19.6-1)
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2022-09-24 13:42:42 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-09-24 13:42:42 +0200
commit	08cca911a542cca5e047bff240ec46c6630086db (patch)
tree	e70afa7fee3b7ef2323757f80587ec94e6fafc97 /retired/CVE-2022-2785
parent	249d382be8956ac605840e8711b3358e23b287c1 (diff)