Fill in status for several issues

author: Ben Hutchings <ben@decadent.org.uk> 2023-12-19 00:16:13 +0100
committer: Ben Hutchings <ben@decadent.org.uk> 2023-12-19 00:16:13 +0100
commit: 19b105c9ec13e71db8ed9f0bc52f16712c2ec08a (patch)
tree: 2db18645146c3afd79778f866c20d20d66de02e2 /active/CVE-2023-1192
parent: 65297c7e39d2fcb33e1025e80c52c8d8c0f6d9ce (diff)
1 files changed, 10 insertions, 8 deletions
diff --git a/active/CVE-2023-1192 b/active/CVE-2023-1192
index 93f9652b..02f6127d 100644
--- a/active/CVE-2023-1192
+++ b/active/CVE-2023-1192
@@ -2,12 +2,14 @@ Description: use-after-free in smb2_is_status_io_timeout()
 References:
  https://bugzilla.redhat.com/show_bug.cgi?id=2154178
 Notes:
+ bwh> Introduced in 5.10 by commit 8e670f77c4a5 "Handle STATUS_IO_TIMEOUT
+ bwh> gracefully".  I posted my analysis and an untested patch on RHBZ.
 Bugs:
-upstream:
-6.1-upstream-stable:
-5.10-upstream-stable:
-4.19-upstream-stable:
-sid:
-6.1-bookworm-security:
-5.10-bullseye-security:
-4.19-buster-security:
+upstream: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
author	Ben Hutchings <ben@decadent.org.uk>	2023-12-19 00:16:13 +0100
committer	Ben Hutchings <ben@decadent.org.uk>	2023-12-19 00:16:13 +0100
commit	19b105c9ec13e71db8ed9f0bc52f16712c2ec08a (patch)
tree	2db18645146c3afd79778f866c20d20d66de02e2 /active/CVE-2023-1192
parent	65297c7e39d2fcb33e1025e80c52c8d8c0f6d9ce (diff)