Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2023-10-05 15:58:17 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-10-05 15:58:17 +0200
commit: ff87f259584dbf118d84db94fdc9d5c8b4a834b0 (patch)
tree: f8f19a032b605bc6c5cbf38e4cab13bc63d64f14 /retired/CVE-2022-45886
parent: 81bc3795e6115ee7fa4144ad5bf0b4a2b7b2d08d (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2022-45886 b/retired/CVE-2022-45886
new file mode 100644
index 00000000..71bbee98
--- /dev/null
+++ b/retired/CVE-2022-45886
@@ -0,0 +1,16 @@
+Description: media: dvb-core: Fix use-after-free due to race condition occurring in dvb_net
+References:
+ https://lore.kernel.org/linux-media/20221115131822.6640-1-imv4bel@gmail.com/
+ https://lore.kernel.org/linux-media/20221115131822.6640-3-imv4bel@gmail.com/
+Notes:
+ carnil> Negligible security impact, would need physical access to
+ carnil> "exploit"
+Bugs:
+upstream: released (6.4-rc3) [4172385b0c9ac366dcab78eda48c26814b87ed1a]
+6.1-upstream-stable: released (6.1.33) [93b5dfebcb1821dde466e29404fcf1fb919f4c72]
+5.10-upstream-stable: released (5.10.183) [2ea7d26ed851db7176e4bfa8174c8a1380255bbe]
+4.19-upstream-stable: released (4.19.285) [7bb9c6e05efcecb15b0354d574efbc36ca321d75]
+sid: released (6.3.7-1)
+6.1-bookworm-security: released (6.1.37-1)
+5.10-bullseye-security: released (5.10.191-1)
+4.19-buster-security: released (4.19.289-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2023-10-05 15:58:17 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-10-05 15:58:17 +0200
commit	ff87f259584dbf118d84db94fdc9d5c8b4a834b0 (patch)
tree	f8f19a032b605bc6c5cbf38e4cab13bc63d64f14 /retired/CVE-2022-45886
parent	81bc3795e6115ee7fa4144ad5bf0b4a2b7b2d08d (diff)