Add CVE-2023-23586

author: Salvatore Bonaccorso <carnil@debian.org> 2023-02-17 22:27:37 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-02-17 22:27:37 +0100
commit: 10c06819851a13f10a556c3596a74e8fd55398ef (patch)
tree: f72a17d7dbb048555172a1847db7e33c4a4a4268 /retired/CVE-2023-23586
parent: eef0fa1f4e236362c33981f4a0e05fb10291a6f5 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2023-23586 b/retired/CVE-2023-23586
new file mode 100644
index 00000000..860e0a3f
--- /dev/null
+++ b/retired/CVE-2023-23586
@@ -0,0 +1,15 @@
+Description:
+References:
+ https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/io_uring?h=linux-5.10.y&id=788d0824269bef539fe31a785b1517882eafed93
+ https://kernel.dance/#788d0824269bef539fe31a785b1517882eafed93
+Notes:
+ carnil> Unclear if this is just a duplicate of CVE-2023-0240. Track it
+ carnil> as different for now. The only CVE record references available
+ carnil> are identical, but with different description of the issue.
+Bugs:
+upstream: released (5.12-rc1) [4379bf8bd70b5de6bba7d53015b0c36c57a634ee]
+5.10-upstream-stable: released (5.10.162)
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.14.6-1)
+5.10-bullseye-security: released (5.10.162-1)
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2023-02-17 22:27:37 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-02-17 22:27:37 +0100
commit	10c06819851a13f10a556c3596a74e8fd55398ef (patch)
tree	f72a17d7dbb048555172a1847db7e33c4a4a4268 /retired/CVE-2023-23586
parent	eef0fa1f4e236362c33981f4a0e05fb10291a6f5 (diff)