Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2021-12-07 17:26:53 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-12-07 17:26:53 +0100
commit: 6df6864e895d88f3d9643bad0b9956d38277ec5c (patch)
tree: 72b93bbc06bebfc18e9c1b2c8b5d9f314082d726 /retired/CVE-2021-39648
parent: 280654c57036dae998ba8ec835afe56212d41137 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/retired/CVE-2021-39648 b/retired/CVE-2021-39648
new file mode 100644
index 00000000..9940a8b2
--- /dev/null
+++ b/retired/CVE-2021-39648
@@ -0,0 +1,13 @@
+Description: usb: gadget: configfs: Fix use-after-free issue with udc_name
+References:
+ https://source.android.com/security/bulletin/pixel/2021-12-01
+Notes:
+Bugs:
+upstream: released (5.11-rc3) [64e6bbfff52db4bf6785fab9cffab850b2de6870]
+5.10-upstream-stable: released (5.10.7) [a4b202cba3ab1a7a8b1ca92603931fba5e2032c3]
+4.19-upstream-stable: released (4.19.167) [83b74059fdf1c4fa6ed261725e6f301552ad23f7]
+4.9-upstream-stable: released (4.9.251) [225330e682fa9aaa152287b49dea1ce50fbe0a92]
+sid: released (5.10.9-1)
+5.10-bullseye-security: N/A "Fixed before branching point"
+4.19-buster-security: released (4.19.171-1)
+4.9-stretch-security: released (4.9.258-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-12-07 17:26:53 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-12-07 17:26:53 +0100
commit	6df6864e895d88f3d9643bad0b9956d38277ec5c (patch)
tree	72b93bbc06bebfc18e9c1b2c8b5d9f314082d726 /retired/CVE-2021-39648
parent	280654c57036dae998ba8ec835afe56212d41137 (diff)