Retire CVE-2022-3170

author: Salvatore Bonaccorso <carnil@debian.org> 2022-09-12 08:36:41 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-09-12 08:36:41 +0200
commit: d3dd70bc12bc3ddbfce7a768d04f191c2023443c (patch)
tree: 91b43e282bcbf6028de67c54bbd0f79fc970133a /retired/CVE-2022-3170
parent: f99f4148c6406be4a4096c8113366750499fc825 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/retired/CVE-2022-3170 b/retired/CVE-2022-3170
new file mode 100644
index 00000000..b0bc1a5a
--- /dev/null
+++ b/retired/CVE-2022-3170
@@ -0,0 +1,13 @@
+Description: ALSA: control: out-of-bounds access in get_ctl_id_hash()
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2125879
+Notes:
+ carnil> Issue introduced in 6.0-rc1 with c27e1efb61c5 ("ALSA: control:
+ carnil> Use xarray for faster lookups").
+Bugs:
+upstream: released (6.0-rc4) [6ab55ec0a938c7f943a4edba3d6514f775983887, 5934d9a0383619c14df91af8fd76261dc3de2f5f]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: N/A "Vulnerable code not present"
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2022-09-12 08:36:41 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-09-12 08:36:41 +0200
commit	d3dd70bc12bc3ddbfce7a768d04f191c2023443c (patch)
tree	91b43e282bcbf6028de67c54bbd0f79fc970133a /retired/CVE-2022-3170
parent	f99f4148c6406be4a4096c8113366750499fc825 (diff)