From 44109448e298ae2452821df29a92e19aaa59c392 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 16 Jul 2023 22:59:42 +0200
Subject: Add advisory draft for linux update for 5.10.179-2

---
 dsa-texts/5.10.179-2 | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 dsa-texts/5.10.179-2

(limited to 'dsa-texts')

diff --git a/dsa-texts/5.10.179-2 b/dsa-texts/5.10.179-2
new file mode 100644
index 000000000..f2a6b969e
--- /dev/null
+++ b/dsa-texts/5.10.179-2
@@ -0,0 +1,27 @@
+Package        : linux
+CVE ID         : CVE-2023-2156 CVE-2023-31248 CVE-2023-35001
+
+Several vulnerabilities have been discovered in the Linux kernel that
+may lead to a privilege escalation, denial of service or information
+leaks.
+
+CVE-2023-2156
+
+    It was discovered that a flaw in the handling of the RPL protocol
+    may allow an unauthenticated remote attacher to cause a denial of
+    service if RPL is enabled (not by default in Debian).
+
+CVE-2023-31248
+
+    Mingi Cho discovered a use-after-free flaw in the Netfilter
+    nf_tables implementation when using nft_chain_lookup_byid, which may
+    result in local privilege escalation for a user with the
+    CAP_NET_ADMIN capability in any user or network namespace.
+
+CVE-2023-35001
+
+    Tanguy DUBROCA discovered an out-of-bounds reads and write flaw in
+    the Netfilter nf_tables implementation when processing an
+    nft_byteorder expression, which may result in local privilege
+    escalation for a user with the CAP_NET_ADMIN capability in any user
+    or network namespace.
-- 
cgit v1.2.3