Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2024-01-09 01:23:56 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2024-01-09 01:23:56 +0100
commit: 26d3effdb521546119e479bf43fb4630a3156675 (patch)
tree: 43d4bebfdaa0fff19349832f4c5083ecfc1b453d /retired/CVE-2023-4208
parent: 4c52cadb6f91fc32612f39a2181515f9abf50b98 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2023-4208 b/retired/CVE-2023-4208
new file mode 100644
index 00000000..a49073df
--- /dev/null
+++ b/retired/CVE-2023-4208
@@ -0,0 +1,16 @@
+Description: net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free
+References:
+ https://kernel.dance/3044b16e7c6fe5d24b1cdbcf1bd0a9d92d1ebd81
+Notes:
+ carnil> CVE-2023-4208 is from Google CNA a subset of CVE-2023-4128
+ carnil> assigned by RedHat CNA.
+ carnil> For 6.4.y fixed in 6.4.10.
+Bugs:
+upstream: released (6.5-rc5) [3044b16e7c6fe5d24b1cdbcf1bd0a9d92d1ebd81]
+6.1-upstream-stable: released (6.1.45) [aab2d095ce4dd8d01ca484c0cc641fb497bf74db]
+5.10-upstream-stable: released (5.10.190) [b4256c99a7116c9514224847e8aaee2ecf110a0a]
+4.19-upstream-stable: released (4.19.291) [4aae24015ecd70d824a953e2dc5b0ca2c4769243]
+sid: released (6.4.11-1)
+6.1-bookworm-security: released (6.1.52-1)
+5.10-bullseye-security: released (5.10.191-1)
+4.19-buster-security: released (4.19.304-1)
author	Ben Hutchings <ben@decadent.org.uk>	2024-01-09 01:23:56 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2024-01-09 01:23:56 +0100
commit	26d3effdb521546119e479bf43fb4630a3156675 (patch)
tree	43d4bebfdaa0fff19349832f4c5083ecfc1b453d /retired/CVE-2023-4208
parent	4c52cadb6f91fc32612f39a2181515f9abf50b98 (diff)