From 29dd5371337b2ca278e4e87c59ec04986fee83dc Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 18 Feb 2021 13:26:14 +0100
Subject: Update information on CVE-2020-1236{2,3,4}

---
 active/CVE-2020-12363 | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'active/CVE-2020-12363')

diff --git a/active/CVE-2020-12363 b/active/CVE-2020-12363
index 89301d78..2f9941a1 100644
--- a/active/CVE-2020-12363
+++ b/active/CVE-2020-12363
@@ -5,6 +5,10 @@ Notes:
  carnil> Claimed to affect versions before Linux kernel version 5.5.
  carnil> Not adding fixed versions as wanting to try to pinpoint the
  carnil> respective needed commits for correct tracking.
+ carnil> Per Intel, this was fixed by a firmware update. v49.0.1 of the
+ carnil> irmware is required. The new firmware requires a kernel patch
+ carnil> https://git.kernel.org/linus/c784e5249e773689e38d2bc1749f08b986621a26
+ carnil> So might not be treaded as Linux issue itself.
 Bugs:
 upstream:
 5.10-upstream-stable:
-- 
cgit v1.2.3