Retire inactive issues

author: Ben Hutchings <ben@decadent.org.uk> 2024-01-09 01:23:56 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2024-01-09 01:23:56 +0100
commit: 26d3effdb521546119e479bf43fb4630a3156675 (patch)
tree: 43d4bebfdaa0fff19349832f4c5083ecfc1b453d /retired/CVE-2023-42754
parent: 4c52cadb6f91fc32612f39a2181515f9abf50b98 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2023-42754 b/retired/CVE-2023-42754
new file mode 100644
index 00000000..7dafa9d7
--- /dev/null
+++ b/retired/CVE-2023-42754
@@ -0,0 +1,17 @@
+Description: ipv4: fix null-deref in ipv4_link_failure
+References:
+ https://www.openwall.com/lists/oss-security/2023/10/02/8
+Notes:
+ carnil> Commit fixes ed0de45a1008 ("ipv4: recompile ip options in
+ carnil> ipv4_link_failure") in 5.1-rc6, but which got backported so
+ carnil> several stable series.
+ carnil> For 6.5.y fixed as well in 6.5.6.
+Bugs:
+upstream: released (6.6-rc3) [0113d9c9d1ccc07f5a3710dac4aa24b6d711278c]
+6.1-upstream-stable: released (6.1.56) [2712545e535d7a2e4c53b9c9658a9c88c6055862]
+5.10-upstream-stable: released (5.10.198) [8689c9ace976d6c078e6dc844b09598796e84099]
+4.19-upstream-stable: released (4.19.296) [a2cf7bd75b3992e8df68dd5fdc6499b67d45f6e0]
+sid: released (6.5.6-1)
+6.1-bookworm-security: released (6.1.55-1) [bugfix/all/ipv4-fix-null-deref-in-ipv4_link_failure.patch]
+5.10-bullseye-security: released (5.10.197-1) [bugfix/all/ipv4-fix-null-deref-in-ipv4_link_failure.patch]
+4.19-buster-security: released (4.19.304-1)
author	Ben Hutchings <ben@decadent.org.uk>	2024-01-09 01:23:56 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2024-01-09 01:23:56 +0100
commit	26d3effdb521546119e479bf43fb4630a3156675 (patch)
tree	43d4bebfdaa0fff19349832f4c5083ecfc1b453d /retired/CVE-2023-42754
parent	4c52cadb6f91fc32612f39a2181515f9abf50b98 (diff)