Add CVE-2023-52452

author: Salvatore Bonaccorso <carnil@debian.org> 2024-02-22 22:10:38 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-02-22 22:10:38 +0100
commit: 624621b1f385c8b31341d6bb906923a13f690945 (patch)
tree: 43e66eabc7bdb9d105a9a2b0c7cf6f46a6ebd3b1 /active/CVE-2023-52452
parent: cd32fc522ca058b42baedf3e2658ec228e3989c8 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/active/CVE-2023-52452 b/active/CVE-2023-52452
new file mode 100644
index 00000000..31ef64dd
--- /dev/null
+++ b/active/CVE-2023-52452
@@ -0,0 +1,14 @@
+Description: bpf: Fix accesses to uninit stack slots
+References:
+Notes:
+ carnil> Introduced with 01f810ace9ed3 ("bpf: Allow variable-offset
+ carnil> stack access") in 5.12-rc1 (and backported to 5.10.33)
+Bugs:
+upstream: released (6.8-rc1) [6b4a64bafd107e521c01eec3453ce94a3fb38529]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.6.15-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-02-22 22:10:38 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-02-22 22:10:38 +0100
commit	624621b1f385c8b31341d6bb906923a13f690945 (patch)
tree	43e66eabc7bdb9d105a9a2b0c7cf6f46a6ebd3b1 /active/CVE-2023-52452
parent	cd32fc522ca058b42baedf3e2658ec228e3989c8 (diff)