diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2023-12-11 21:25:19 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2023-12-11 21:25:19 +0100 |
commit | b1b41f68e64aa573b744d1846b1bb480b208b871 (patch) | |
tree | 2e055daddfb7d97a88bba0938673032b72eaa331 /retired/CVE-2023-6111 | |
parent | 1795a2f8d4a83b718a2e227c6abd9a8bfe8fe3c4 (diff) |
Retire some CVEs
Diffstat (limited to 'retired/CVE-2023-6111')
-rw-r--r-- | retired/CVE-2023-6111 | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/retired/CVE-2023-6111 b/retired/CVE-2023-6111 new file mode 100644 index 00000000..a29138fa --- /dev/null +++ b/retired/CVE-2023-6111 @@ -0,0 +1,18 @@ +Description: netfilter: nf_tables: remove catchall element in GC sync path +References: + https://kernel.dance/93995bf4af2c5a99e2a87f0cd5ce547d31eb7630 +Notes: + carnil> Introduced in 4a9e12ea7e70 ("netfilter: nft_set_pipapo: call + carnil> nft_trans_gc_queue_sync() in catchall GC") in 6.6-rc3 (which + carnil> got backported to 6.5.6, 6.1.56, 5.15.134). + carnil> Fixed as well in 6.6.3 for 6.6.y and in 6.5.13 for 6.5.y. + carnil> We did backport the commit as well in 6.1.55-1. +Bugs: +upstream: released (6.7-rc1) [93995bf4af2c5a99e2a87f0cd5ce547d31eb7630] +6.1-upstream-stable: released (6.1.64) [13e2d49647a7f137ebc063a4a9702dda80371b2e] +5.10-upstream-stable: N/A "Vulnerable code not present" +4.19-upstream-stable: N/A "Vulnerable code not present" +sid: released (6.5.13-1) +6.1-bookworm-security: released (6.1.64-1) +5.10-bullseye-security: N/A "Vulnerable code not present" +4.19-buster-security: N/A "Vulnerable code not present" |