From 9cd139b64b8458e7934cf2d43a83d81e9a076e0f Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 11 Jun 2020 09:46:30 +0200
Subject: Retire several CVEs

---
 retired/CVE-2019-19447 | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 retired/CVE-2019-19447

(limited to 'retired/CVE-2019-19447')

diff --git a/retired/CVE-2019-19447 b/retired/CVE-2019-19447
new file mode 100644
index 000000000..2644a296d
--- /dev/null
+++ b/retired/CVE-2019-19447
@@ -0,0 +1,15 @@
+Description: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c
+References:
+ https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19447
+ https://bugzilla.kernel.org/show_bug.cgi?id=205433
+ https://bugzilla.suse.com/show_bug.cgi?id=1158819
+Notes:
+Bugs:
+upstream: released (5.5-rc1) [c7df4a1ecb8579838ec8c56b2bb6a6716e974f37]
+4.19-upstream-stable: released (4.19.90) [8e7a865366105b978eef4108f49a12100eea4299]
+4.9-upstream-stable: released (4.9.208) [e1513b36319dff169e409979867f39eb55a9af03]
+3.16-upstream-stable: released (3.16.82) [75b201c2fdfb3cecc3eb6a1dc85b87055de642e9]
+sid: released (5.4.6-1)
+4.19-buster-security: released (4.19.98-1)
+4.9-stretch-security: released (4.9.210-1)
+3.16-jessie-security: released (3.16.84-1)
-- 
cgit v1.2.3