diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2023-08-17 14:05:02 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2023-08-17 14:05:02 +0200 |
commit | 7108b67fdb16ae22436d11a45d0541de42641e2c (patch) | |
tree | b8a89b296cec8bce62efef1364b44dca69c9d86a /retired/CVE-2023-35829 | |
parent | 828c92322780d598ea229eb47121eace48d3e71a (diff) |
Retire several more CVEs
While we have not yet released the 5.10.191-1 DSA it does not matter if
they are alredy retired. We have tagged 5.10.191-1 in git and working on
the DSA can be done indepently.
Diffstat (limited to 'retired/CVE-2023-35829')
-rw-r--r-- | retired/CVE-2023-35829 | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2023-35829 b/retired/CVE-2023-35829 new file mode 100644 index 00000000..6b75d6ba --- /dev/null +++ b/retired/CVE-2023-35829 @@ -0,0 +1,16 @@ +Description: media: rkvdec: fix use after free bug in rkvdec_remove +References: + https://lore.kernel.org/lkml/20230307173900.1299387-1-zyytlz.wz%40163.com/T/ +Notes: + carnil> Commit fixes cd33c830448b ("media: rkvdec: Add the rkvdec + carnil> driver") in 5.8-rc1. VIDEO_ROCKCHIP_VDEC not enabled in 5.10.y + carnil> Debian kernel in bullseye. +Bugs: +upstream: released (6.4-rc1) [3228cec23b8b29215e18090c6ba635840190993d] +6.1-upstream-stable: released (6.1.28) [6a17add9c61030683b9c1fc86878f00a2d318a95] +5.10-upstream-stable: released (5.10.180) [de19d02d734ef29f5dbd2c12fe810fa960ecd83f] +4.19-upstream-stable: N/A "Vulnerable code not present" +sid: released (6.3.7-1) +6.1-bookworm-security: released (6.1.37-1) +5.10-bullseye-security: released (5.10.191-1) +4.19-buster-security: N/A "Vulnerable code not present" |