retire issues

author: Moritz Muehlenhoff <jmm@debian.org> 2022-12-14 17:30:13 +0100
committer: Moritz Muehlenhoff <jmm@debian.org> 2022-12-14 17:30:13 +0100
commit: 210d660e8e19228c4652243481b4cdba16992853 (patch)
tree: 50741cbe5a1e4cc4b2857792769f2edb3113c06a /retired/CVE-2022-40307
parent: 1595b8f518ac796fd6100c95a460d819dfdd21e8 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/retired/CVE-2022-40307 b/retired/CVE-2022-40307
new file mode 100644
index 00000000..01d01d04
--- /dev/null
+++ b/retired/CVE-2022-40307
@@ -0,0 +1,11 @@
+Description: efi: capsule-loader: Fix use-after-free in efi_capsule_write
+References:
+Notes:
+ carnil> For 5.19.y fixed as well in 5.19.9.
+Bugs:
+upstream: released (6.0-rc5) [9cb636b5f6a8cc6d1b50809ec8f8d33ae0c84c95]
+5.10-upstream-stable: released (5.10.143) [918d9c4a4bdf5205f2fb3f64dddfb56c9a1d01d6]
+4.19-upstream-stable: released (4.19.258) [021805af5bedeafc76c117fc771c100b358ab419]
+sid: released (5.19.11-1)
+5.10-bullseye-security: released (5.10.148-1)
+4.19-buster-security: released (4.19.260-1)
author	Moritz Muehlenhoff <jmm@debian.org>	2022-12-14 17:30:13 +0100
committer	Moritz Muehlenhoff <jmm@debian.org>	2022-12-14 17:30:13 +0100
commit	210d660e8e19228c4652243481b4cdba16992853 (patch)
tree	50741cbe5a1e4cc4b2857792769f2edb3113c06a /retired/CVE-2022-40307
parent	1595b8f518ac796fd6100c95a460d819dfdd21e8 (diff)