Add new batch of CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2024-03-03 08:13:17 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-03-03 08:13:17 +0100
commit: cd5ed2ef4c2548e37c7fa98d9b7dc05328e98dfb (patch)
tree: dc3d897027c3779ea34e04b181099b9609447ae9 /active/CVE-2023-52509
parent: 1ed93094a2d7706459c3f262cf45830849253aba (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2023-52509 b/active/CVE-2023-52509
new file mode 100644
index 00000000..a0de9b27
--- /dev/null
+++ b/active/CVE-2023-52509
@@ -0,0 +1,16 @@
+Description: ravb: Fix use-after-free issue in ravb_tx_timeout_work()
+References:
+Notes:
+ carnil> Introduced in c156633f1353 ("Renesas Ethernet AVB driver proper"). Vulnerable
+ carnil> versions: 4.2-rc1.
+Bugs:
+upstream: released (6.6-rc6) [3971442870713de527684398416970cf025b4f89]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: released (6.1.59) [6f6fa8061f756aedb93af12a8a5d3cf659127965]
+5.10-upstream-stable: released (5.10.199) [db9aafa19547833240f58c2998aed7baf414dc82]
+4.19-upstream-stable: needed
+sid: released (6.5.8-1)
+6.1-bookworm-security: released (6.1.64-1)
+5.10-bullseye-security: released (5.10.205-1)
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-03-03 08:13:17 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-03-03 08:13:17 +0100
commit	cd5ed2ef4c2548e37c7fa98d9b7dc05328e98dfb (patch)
tree	dc3d897027c3779ea34e04b181099b9609447ae9 /active/CVE-2023-52509
parent	1ed93094a2d7706459c3f262cf45830849253aba (diff)