Retire CVE-2019-16921

author: Salvatore Bonaccorso <carnil@debian.org> 2019-10-26 17:16:20 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2019-10-26 17:16:20 +0200
commit: 64ecf8c70e3332cc99b93eed86b44c1042f25c04 (patch)
tree: af0992c28eca8ce4ead810f4fc41d98aa45d6b4a /retired/CVE-2019-16921
parent: a40d3c76566c552913e87b5f99f77c0dbb09e77c (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/retired/CVE-2019-16921 b/retired/CVE-2019-16921
new file mode 100644
index 00000000..de13aa22
--- /dev/null
+++ b/retired/CVE-2019-16921
@@ -0,0 +1,19 @@
+Description: RDMA/hns: Fix init resp when alloc ucontext
+References:
+ https://bugzilla.suse.com/show_bug.cgi?id=1152516
+ https://bugzilla.suse.com/show_bug.cgi?id=1104427
+Notes:
+ carnil> If I understand it correctly this issue was introduced itself
+ carnil> by e088a685eae9 ("RDMA/hns: Support rq record doorbell for the
+ carnil> user space") which is as well just in 4.17-rc1. So not actuall
+ carnil> released version (upstream) nor in Debian was ever affected by
+ carnil> this issue?
+Bugs:
+upstream: released (4.17-rc1) [df7e40425813c50cd252e6f5e348a81ef1acae56]
+4.19-upstream-stable: N/A "Vulnerable code not present"
+4.9-upstream-stable: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+sid: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
+4.9-stretch-security: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2019-10-26 17:16:20 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2019-10-26 17:16:20 +0200
commit	64ecf8c70e3332cc99b93eed86b44c1042f25c04 (patch)
tree	af0992c28eca8ce4ead810f4fc41d98aa45d6b4a /retired/CVE-2019-16921
parent	a40d3c76566c552913e87b5f99f77c0dbb09e77c (diff)