Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-10 22:00:29 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-10 22:00:29 +0200
commit: 36b6da22cc336b7572fb13260eb9c77e5155f1bd (patch)
tree: 34c71238a933f8c06e45d786d0fc96f2f782ea8a /retired/CVE-2024-26708
parent: 688f5248fc745b1897b7d556a57760a334f7ad42 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2024-26708 b/retired/CVE-2024-26708
new file mode 100644
index 00000000..bd6e39ea
--- /dev/null
+++ b/retired/CVE-2024-26708
@@ -0,0 +1,17 @@
+Description: mptcp: really cope with fastopen race
+References:
+Notes:
+ carnil> Introduced in 1e777f39b4d7 ("mptcp: add MSG_FASTOPEN sendmsg flag support")
+ carnil> 4fd19a307016 ("mptcp: fix inconsistent state on fastopen race"). Vulnerable
+ carnil> versions: 6.2-rc1 6.6.10 6.7-rc7.
+Bugs:
+upstream: released (6.8-rc5) [337cebbd850f94147cee05252778f8f78b8c337f]
+6.7-upstream-stable: released (6.7.6) [e158fb9679d15a2317ec13b4f6301bd26265df2f]
+6.6-upstream-stable: released (6.6.18) [4bfe217e075d04e63c092df9d40c608e598c2ef2]
+6.1-upstream-stable: N/A "Vulnerable code not present"
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.7.7-1)
+6.1-bookworm-security: N/A "Vulnerable code not present"
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-10 22:00:29 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-10 22:00:29 +0200
commit	36b6da22cc336b7572fb13260eb9c77e5155f1bd (patch)
tree	34c71238a933f8c06e45d786d0fc96f2f782ea8a /retired/CVE-2024-26708
parent	688f5248fc745b1897b7d556a57760a334f7ad42 (diff)