From bdc9c973e22cbff40e1ed1fd0ac9b3e9a403cff3 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 18 Apr 2024 14:10:49 +0200
Subject: Add one CVE assigned

---
 active/CVE-2024-26921 | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 active/CVE-2024-26921

(limited to 'active')

diff --git a/active/CVE-2024-26921 b/active/CVE-2024-26921
new file mode 100644
index 00000000..5de68880
--- /dev/null
+++ b/active/CVE-2024-26921
@@ -0,0 +1,17 @@
+Description: inet: inet_defrag: prevent sk release while still in use
+References:
+Notes:
+ carnil> Introduced in 7026b1ddb6b8 ("netfilter: Pass socket pointer down through
+ carnil> okfn()."). Vulnerable versions: 4.1-rc1.
+Bugs:
+upstream: released (6.9-rc2) [18685451fc4e546fc0e718580d32df3c0e5c8272]
+6.8-upstream-stable: released (6.8.5) [e09cbe017311508c21e0739e97198a8388b98981]
+6.7-upstream-stable: needed
+6.6-upstream-stable: released (6.6.26) [f4877225313d474659ee53150ccc3d553a978727]
+6.1-upstream-stable: released (6.1.85) [7d0567842b78390dd9b60f00f1d8f838d540e325]
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: released (6.1.85-1)
+5.10-bullseye-security: needed
+4.19-buster-security: needed
-- 
cgit v1.2.3