Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2023-09-09 23:48:30 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-09-09 23:48:30 +0200
commit: 6c7e2a261634be17bf2d4aaf077ccf66c4e2b56d (patch)
tree: 78d099f913b1d4a56ebfc87941dad7e31b10eeba /retired/CVE-2023-4147
parent: 8548f0bee6d33306aaae4304b723047711498d96 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2023-4147 b/retired/CVE-2023-4147
new file mode 100644
index 00000000..40dc802a
--- /dev/null
+++ b/retired/CVE-2023-4147
@@ -0,0 +1,16 @@
+Description: netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2225239
+Notes:
+ carnil> Commit fixes d0e2c7de92c7 ("netfilter: nf_tables: add
+ carnil> NFT_CHAIN_BINDING") 5.9-rc1.
+ carnil> For 6.4.y fixed as well in 6.4.8.
+Bugs:
+upstream: released (6.5-rc4) [0ebc1064e4874d5987722a2ddbc18f94aa53b211]
+6.1-upstream-stable: released (6.1.43) [268cb07ef3ee17b5454a7c4b23376802c5b00c79]
+5.10-upstream-stable: released (5.10.190) [308a43f1521d5b7220693d0865b23e8dad3ed137]
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.4.11-1)
+6.1-bookworm-security: released (6.1.52-1)
+5.10-bullseye-security: released (5.10.191-1)
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2023-09-09 23:48:30 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-09-09 23:48:30 +0200
commit	6c7e2a261634be17bf2d4aaf077ccf66c4e2b56d (patch)
tree	78d099f913b1d4a56ebfc87941dad7e31b10eeba /retired/CVE-2023-4147
parent	8548f0bee6d33306aaae4304b723047711498d96 (diff)