From 95548edaf9d63db514eda4114c2e81cbbe6ec134 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 26 Mar 2020 08:40:29 +0100
Subject: Add CVE-2020-8832 with questions

---
 active/CVE-2020-8832 | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 active/CVE-2020-8832

diff --git a/active/CVE-2020-8832 b/active/CVE-2020-8832
new file mode 100644
index 00000000..a58f4e85
--- /dev/null
+++ b/active/CVE-2020-8832
@@ -0,0 +1,15 @@
+Description: incomplete fix for CVE-2019-14615 allows for a local information exposure
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1817047
+Notes:
+ carnil> Scarse details, so we need to check if this affects upstream
+ carnil> and Debian or if the icnomplete fix is specific to Red Hat.
+Bugs:
+upstream:
+4.19-upstream-stable:
+4.9-upstream-stable:
+3.16-upstream-stable:
+sid:
+4.19-buster-security:
+4.9-stretch-security:
+3.16-jessie-security:
-- 
cgit v1.2.3