From 22d7ad13e41382cb14cb11831993c52992e747f5 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 13 Mar 2024 12:06:02 +0100
Subject: Update tracking for CVE-2023-52447

---
 active/CVE-2023-52447  | 17 +++++++++++++++++
 retired/CVE-2023-52447 | 14 --------------
 2 files changed, 17 insertions(+), 14 deletions(-)
 create mode 100644 active/CVE-2023-52447
 delete mode 100644 retired/CVE-2023-52447

diff --git a/active/CVE-2023-52447 b/active/CVE-2023-52447
new file mode 100644
index 000000000..5fc00e93e
--- /dev/null
+++ b/active/CVE-2023-52447
@@ -0,0 +1,17 @@
+Description: bpf: Defer the free of inner map when necessary
+References:
+Notes:
+ carnil> Introduced in bba1dc0b55ac ("bpf: Remove redundant synchronize_rcu.")
+ carnil> 638e4b825d52 ("bpf: Allows per-cpu maps and map-in-map in sleepable programs").
+ carnil> Vulnerable versions: 5.9-rc1 5.12-rc1.
+Bugs:
+upstream: released (6.8-rc1) [876673364161da50eed6b472d746ef88242b2368]
+6.7-upstream-stable: released (6.7.2) [bfd9b20c4862f41d4590fde11d70a5eeae53dcc5]
+6.6-upstream-stable: released (6.6.14) [f91cd728b10c51f6d4a39957ccd56d1e802fc8ee]
+6.1-upstream-stable: released (6.1.75) [62fca83303d608ad4fec3f7428c8685680bb01b0]
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.6.15-1)
+6.1-bookworm-security: released (6.1.76-1)
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/retired/CVE-2023-52447 b/retired/CVE-2023-52447
deleted file mode 100644
index 5adabf05a..000000000
--- a/retired/CVE-2023-52447
+++ /dev/null
@@ -1,14 +0,0 @@
-Description: bpf: Defer the free of inner map when necessary
-References:
-Notes:
- carnil> Introduced with 638e4b825d52 ("bpf: Allows per-cpu maps and map-in-
- carnil> map in sleepable programs") 5.12-rc1.
-Bugs:
-upstream: released (6.8-rc1) [876673364161da50eed6b472d746ef88242b2368]
-6.1-upstream-stable: released (6.1.75) [62fca83303d608ad4fec3f7428c8685680bb01b0]
-5.10-upstream-stable: N/A "Vulnerable code not present"
-4.19-upstream-stable: N/A "Vulnerable code not present"
-sid: released (6.6.15-1)
-6.1-bookworm-security: released (6.1.76-1)
-5.10-bullseye-security: N/A "Vulnerable code not present"
-4.19-buster-security: N/A "Vulnerable code not present"
-- 
cgit v1.2.3