Retire CVE-2022-42703

author: Salvatore Bonaccorso <carnil@debian.org> 2022-12-10 16:21:58 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-12-10 16:21:58 +0100
commit: 122feed925ebecd3827cece9a67ab60b371f304e (patch)
tree: f65627e16ed1debfe3ae7e33657c06dcabf56435 /retired/CVE-2022-42703
parent: 700eff579f2f31d1a3dfb2087db672f8092ba063 (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/retired/CVE-2022-42703 b/retired/CVE-2022-42703
new file mode 100644
index 00000000..22c1b080
--- /dev/null
+++ b/retired/CVE-2022-42703
@@ -0,0 +1,12 @@
+Description: anon_vma UAF through bogus merge of VMAs caused by double-reuse of leaf anon_vma because of ->degree misinterpretation
+References:
+ https://bugs.chromium.org/p/project-zero/issues/detail?id=2351
+ https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html
+Notes:
+Bugs:
+upstream: released (6.0-rc4) [2555283eb40df89945557273121e9393ef9b542b]
+5.10-upstream-stable: released (5.10.141) [98f401d36396134c0c86e9e3bd00b6b6b028b521]
+4.19-upstream-stable: released (4.19.257) [6dbfc25d68d922736381988d64156a649ccf7bf1]
+sid: released (5.19.11-1)
+5.10-bullseye-security: released (4.19.140-1) [bugfix/all/mm-rmap-fix-anon_vma-degree-ambiguity-leading-to-double-reuse.patch]
+4.19-buster-security: released (4.19.260-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-12-10 16:21:58 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-12-10 16:21:58 +0100
commit	122feed925ebecd3827cece9a67ab60b371f304e (patch)
tree	f65627e16ed1debfe3ae7e33657c06dcabf56435 /retired/CVE-2022-42703
parent	700eff579f2f31d1a3dfb2087db672f8092ba063 (diff)