Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2022-12-17 10:02:43 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-12-17 10:02:43 +0100
commit: 932dca5ee90b0ac704f51ce56346b793f17ae36e (patch)
tree: 5630b1e94247b540a8bc158205ee94cfaaee9474 /retired/CVE-2022-3110
parent: 7dab854ad76ea856d33fe3a423661d80939c9ee8 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2022-3110 b/retired/CVE-2022-3110
new file mode 100644
index 00000000..94f4f2a0
--- /dev/null
+++ b/retired/CVE-2022-3110
@@ -0,0 +1,16 @@
+Description: staging: r8188eu: add check for kzalloc
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2153055
+Notes:
+ bwh> Introduced in 5.15 by commit 15865124feed "staging: r8188eu: introduce
+ bwh> new core dir for RTL8188eu driver". The same bug existed and was fixed
+ bwh> earlier in the older rtl8188eu driver, by commit 7671ce0d9293
+ bwh> "staging: rtl8188eu: Fix potential NULL pointer dereference of kcalloc"
+ bwh> in 5.1 and 4.19.39.
+Bugs:
+upstream: released (5.19-rc1) [f94b47c6bde624d6c07f43054087607c52054a95]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.18.5-1)
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2022-12-17 10:02:43 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-12-17 10:02:43 +0100
commit	932dca5ee90b0ac704f51ce56346b793f17ae36e (patch)
tree	5630b1e94247b540a8bc158205ee94cfaaee9474 /retired/CVE-2022-3110
parent	7dab854ad76ea856d33fe3a423661d80939c9ee8 (diff)