From a6acbc23fcfbc7f24959d8dfb3079abcd30bca7f Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 22 Jun 2022 16:14:26 +0200
Subject: Add note for carlifying fix for CVE-2022-2153

---
 active/CVE-2022-2153 | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/active/CVE-2022-2153 b/active/CVE-2022-2153
index f23981b7..46ffc078 100644
--- a/active/CVE-2022-2153
+++ b/active/CVE-2022-2153
@@ -6,6 +6,10 @@ Notes:
  carnil> Fixed as well in 5.16.19 for 5.16.y and 5.17.2 for 5.17.y. The
  carnil> last commit of the series was as well backported to 5.10.110,
  carnil> 4.19.238 and 4.9.311.
+ carnil> According to the oss-security reference the main fix seems to
+ carnil> be pin-pointed at 00b5f37189d2 ("KVM: x86: Avoid theoretical
+ carnil> NULL pointer dereference in kvm_irq_delivery_to_apic_fast()")
+ carnil> which would not yet be included in 5.10.y and older.
 Bugs:
 upstream: released (5.18-rc1) [7ec37d1cbe17d8189d9562178d8b29167fe1c31a, 00b5f37189d24ac3ed46cb7f11742094778c46ce, b1e34d325397a33d97d845e312d7cf2a8b646b44]
 5.10-upstream-stable: released (5.10.110) [09c771c45c1243e295470225aaee726693fdc242]
-- 
cgit v1.2.3