blob: ce1e731911a33f6ea97ce3416af6dda0c1f09990 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
Description: cipso,calipso: resolve a number of problems with the DOI refcounts
References:
https://sites.google.com/view/syzscope/kasan-use-after-free-read-in-cipso_v4_genopt
https://syzkaller.appspot.com/bug?id=96e7d345748d8814901c91cd92084ed04b46701e
Notes:
carnil> First commit required landed in 4.19.181, 5.10.24, 5.12-rc3.
carnil> Second one in 4.19.187, 5.10.30, 5.12-rc7.
bwh> The "second commit" in ieee802154 (1165affd4848) is fixing a
bwh> totally different issue. These components are part of Netlabel
bwh> which was only enabled by Debian official configs since version
bwh> 5.6.7-1.
carnil> The "second comit" is indeed a completely different issue, and
carnil> got CVE-2021-3659 assigned.
Bugs:
upstream: released (5.12-rc7) [ad5d07f4a9cd671233ae20983848874731102c08]
5.10-upstream-stable: released (5.10.24) [85178d76febd30a745b7d947dbd9751919d0fa5b]
4.19-upstream-stable: released (4.19.181) [a44af1c69737f9e64d5134c34eb9d5c4c2e04da1]
4.9-upstream-stable: released (4.9.298) [f49f0e65a95664b648e058aa923f651ec08dfeb7]
sid: released (5.10.24-1)
5.10-bullseye-security: N/A "Fixed before branching point"
4.19-buster-security: released (4.19.181-1)
4.9-stretch-security: released (4.9.303-1)
|
