diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2019-08-05 14:27:57 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2019-08-05 14:27:57 +0200 |
commit | b497bfa4f428d71b49fd226990cc68b669b30968 (patch) | |
tree | 3da95eabb3b7e723fa18d320280a2d10681bca7b /retired | |
parent | 1e39c129a0118288e554c2119cf045d2ff14699d (diff) |
Retire two CVEs
Diffstat (limited to 'retired')
-rw-r--r-- | retired/CVE-2017-18379 | 14 | ||||
-rw-r--r-- | retired/CVE-2018-20855 | 14 |
2 files changed, 28 insertions, 0 deletions
diff --git a/retired/CVE-2017-18379 b/retired/CVE-2017-18379 new file mode 100644 index 00000000..cb18bc4b --- /dev/null +++ b/retired/CVE-2017-18379 @@ -0,0 +1,14 @@ +Description: nvmet-fc: ensure target queue id within range +References: +Notes: + bwh> Introduced in Linux 4.10 by commit c53432030d86 "nvme-fabrics: Add + bwh> target support for FC transport". +Bugs: +upstream: released (4.14-rc3) [0c319d3a144d4b8f1ea2047fd614d2149b68f889] +4.19-upstream-stable: N/A "Fixed before branching point" +4.9-upstream-stable: N/A "Vulnerable code not present" +3.16-upstream-stable: N/A "Vulnerable code not present" +sid: released (4.14.2-1) +4.19-buster-security: N/A "Fixed before branching point" +4.9-stretch-security: N/A "Vulnerable code not present" +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/retired/CVE-2018-20855 b/retired/CVE-2018-20855 new file mode 100644 index 00000000..86dd3720 --- /dev/null +++ b/retired/CVE-2018-20855 @@ -0,0 +1,14 @@ +Description: IB/mlx5: Fix leaking stack memory to userspace +References: +Notes: + bwh> Introduced in Linux 4.17 by commit 41d902cb7c32 "RDMA/mlx5: Fix + bwh> definition of mlx5_ib_create_qp_resp". +Bugs: +upstream: released (4.19-rc1) [0625b4ba1a5d4703c7fb01c497bd6c156908af00] +4.19-upstream-stable: N/A "Fixed before branching point" +4.9-upstream-stable: N/A "Vulnerability introduced later" +3.16-upstream-stable: N/A "Vulnerability introduced later" +sid: released (4.18.8-1) +4.19-buster-security: N/A "Fixed before branching point" +4.9-stretch-security: N/A "Vulnerability introduced later" +3.16-jessie-security: N/A "Vulnerability introduced later" |