Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2024-03-03 08:13:47 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-03-03 08:13:47 +0100
commit: 66ca01dc952b2c98d592f0a7bebcaa98cca3f343 (patch)
tree: fb26150d7c896b1601d1605ba456e7ac807f8992 /retired/CVE-2023-52576
parent: cd5ed2ef4c2548e37c7fa98d9b7dc05328e98dfb (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2023-52576 b/retired/CVE-2023-52576
new file mode 100644
index 00000000..9bab156a
--- /dev/null
+++ b/retired/CVE-2023-52576
@@ -0,0 +1,16 @@
+Description: x86/mm, kexec, ima: Use memblock_free_late() from ima_free_kexec_buffer()
+References:
+Notes:
+ carnil> Introduced in fee3ff99bc67 ("powerpc: Move arch independent ima kexec functions
+ carnil> to drivers/of/kexec.c"). Vulnerable versions: 5.13-rc1.
+Bugs:
+upstream: released (6.6-rc3) [34cf99c250d5cd2530b93a57b0de31d3aaf8685b]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: released (6.1.56) [eef16bfdb212da60f5144689f2967fb25b051a2b]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.5.6-1)
+6.1-bookworm-security: released (6.1.64-1)
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-03-03 08:13:47 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-03-03 08:13:47 +0100
commit	66ca01dc952b2c98d592f0a7bebcaa98cca3f343 (patch)
tree	fb26150d7c896b1601d1605ba456e7ac807f8992 /retired/CVE-2023-52576
parent	cd5ed2ef4c2548e37c7fa98d9b7dc05328e98dfb (diff)