From b229cfbb3cde1169d4e391dfea46f4886b011cb8 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 17 Feb 2018 13:59:18 +0100
Subject: Retire CVE-2017-8824

---
 retired/CVE-2017-8824 | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 retired/CVE-2017-8824

(limited to 'retired/CVE-2017-8824')

diff --git a/retired/CVE-2017-8824 b/retired/CVE-2017-8824
new file mode 100644
index 00000000..b566e207
--- /dev/null
+++ b/retired/CVE-2017-8824
@@ -0,0 +1,14 @@
+Description: use-after-free in DCCP code
+References:
+ http://www.openwall.com/lists/oss-security/2017/12/05/1
+ http://lists.openwall.net/netdev/2017/12/04/224
+Notes:
+Bugs:
+upstream: released (4.15-rc3) [69c64866ce072dea1d1e59a0d61e0f66c0dffb76]
+4.9-upstream-stable: released (4.9.82) [7e2fb808d3c7c52f88ebc670949dbf1bae48f2a2]
+3.16-upstream-stable: released (3.16.52) [37e923d49eb8219cab4e49237d026755276484a0]
+3.2-upstream-stable: released (3.2.97) [e23d13a89d8ca5fe717d75248672e1b8bc4a3be8]
+sid: released (4.14.7-1) [bugfix/all/dccp-cve-2017-8824-use-after-free-in-dccp-code.patch]
+4.9-stretch-security: released (4.9.65-3+deb9u1) [bugfix/all/dccp-cve-2017-8824-use-after-free-in-dccp-code.patch]
+3.16-jessie-security: released (3.16.51-3+deb8u1) [bugfix/all/dccp-cve-2017-8824-use-after-free-in-dccp-code.patch]
+3.2-wheezy-security: released (3.2.96-1) [bugfix/all/dccp-cve-2017-8824-use-after-free-in-dccp-code.patch]
-- 
cgit v1.2.3