Retire several CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-24 09:59:51 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-24 09:59:51 +0200
commit: ac7dd58121bfa54c84c1d24e0cf506878ab0e2d4 (patch)
tree: abea21f77cab9916d3af7f1dddeb13b56f7d5478 /retired/CVE-2024-26826
parent: 77acbd7c01339dfeb0f67418ff00bf38d92d3645 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2024-26826 b/retired/CVE-2024-26826
new file mode 100644
index 00000000..eba87e14
--- /dev/null
+++ b/retired/CVE-2024-26826
@@ -0,0 +1,17 @@
+Description: mptcp: fix data re-injection from stale subflow
+References:
+Notes:
+ carnil> Introduced in 1e1d9d6f119c ("mptcp: handle pending data on closed subflow").
+ carnil> Vulnerable versions: 5.15-rc1.
+Bugs:
+upstream: released (6.8-rc3) [b6c620dc43ccb4e802894e54b651cf81495e9598]
+6.8-upstream-stable: N/A "Fixed before branching point"
+6.7-upstream-stable: released (6.7.6) [624902eab7abcb8731b333ec73f206d38d839cd8]
+6.6-upstream-stable: released (6.6.18) [b609c783c535493aa3fca22c7e40a120370b1ca5]
+6.1-upstream-stable: released (6.1.79) [6673d9f1c2cd984390550dbdf7d5ae07b20abbf8]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.7.7-1)
+6.1-bookworm-security: released (6.1.82-1)
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-24 09:59:51 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-24 09:59:51 +0200
commit	ac7dd58121bfa54c84c1d24e0cf506878ab0e2d4 (patch)
tree	abea21f77cab9916d3af7f1dddeb13b56f7d5478 /retired/CVE-2024-26826
parent	77acbd7c01339dfeb0f67418ff00bf38d92d3645 (diff)