Fill in status for most issues

author: Ben Hutchings <ben@decadent.org.uk> 2022-02-25 02:54:22 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2022-02-25 02:58:48 +0100
commit: 322eaf84fa0d24cdfa4acc99ff4a8d5635ab0654 (patch)
tree: 84cf09416b8cf27d0c1ac938e5332bc049c04d28 /active/CVE-2019-19449
parent: 4f1997da8949bfe55fdc4820e7def805bf3d4be8 (diff)
1 files changed, 13 insertions, 9 deletions
diff --git a/active/CVE-2019-19449 b/active/CVE-2019-19449
index 996f1d0e..8185c20c 100644
--- a/active/CVE-2019-19449
+++ b/active/CVE-2019-19449
@@ -1,15 +1,19 @@
-Description:
+Description: f2fs: Heap out-of-bounds read in init_min_max_mtime()
 References:
  https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19449
 Notes:
+ bwh> The loop in init_min_max_mtime() has not changed between
+ bwh> 4.9 and 5.17-rc4, and there don't appear to be any checks
+ bwh> that main_segments is exactly divisible by segs_per_sec,
+ bwh> so all branches are affected.
 Bugs:
-upstream:
-5.10-upstream-stable:
-4.19-upstream-stable:
-4.9-upstream-stable:
+upstream: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+4.9-upstream-stable: needed
 3.16-upstream-stable: ignored "EOL"
-sid:
-5.10-bullseye-security:
-4.19-buster-security:
-4.9-stretch-security:
+sid: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
+4.9-stretch-security: ignored "f2fs is not supportable"
 3.16-jessie-security: ignored "EOL"
author	Ben Hutchings <ben@decadent.org.uk>	2022-02-25 02:54:22 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2022-02-25 02:58:48 +0100
commit	322eaf84fa0d24cdfa4acc99ff4a8d5635ab0654 (patch)
tree	84cf09416b8cf27d0c1ac938e5332bc049c04d28 /active/CVE-2019-19449
parent	4f1997da8949bfe55fdc4820e7def805bf3d4be8 (diff)