From 98bf7d1af0171e7abab29e9599c0037fe8a357a4 Mon Sep 17 00:00:00 2001
From: Ben Hutchings <ben@decadent.org.uk>
Date: Sun, 7 Jun 2020 19:00:59 +0100
Subject: dsa-texts: Fill in more issue descriptions

---
 dsa-texts/4.9.210-1+deb9u1 | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

(limited to 'dsa-texts/4.9.210-1+deb9u1')

diff --git a/dsa-texts/4.9.210-1+deb9u1 b/dsa-texts/4.9.210-1+deb9u1
index b0182231..94a59056 100644
--- a/dsa-texts/4.9.210-1+deb9u1
+++ b/dsa-texts/4.9.210-1+deb9u1
@@ -20,15 +20,26 @@ Debian Bug     : 952660
 
 CVE-2019-2182
 
-    Description
+    Hanjun Guo and Lei Li reported a race condition in the arm64
+    virtual memory management code, which could lead to an information
+    disclosure, denial of service (crash), or possibly privilege
+    escalation.
 
 CVE-2019-5108
 
-    Description
+    Mitchell Frank of Cisco discovered that when the IEEE 802.11
+    (WiFi) stack was used in AP mode with roaming, it would trigger
+    roaming for a newly associated station before the station was
+    authenticated.  An attacker within range of the AP could use this
+    to cause a denial of service, either by filling up a switching
+    table or by redirecting traffic away from other stations.
 
 CVE-2019-19319
 
-    Description
+    Jungyeon discovered that a crafted filesystem can cause the ext4
+    implementation to deallocate or reallocate journal blocks.  A user
+    permitted to mount filesystems could use this to cause a denial of
+    service (crash), or possibly for privilege escalation.
 
 CVE-2019-19462
 
-- 
cgit v1.2.3