diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2021-12-18 09:39:42 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-12-18 09:39:42 +0100 |
commit | f6271401dc5e4e4e63fc7377af8068301e3cb69f (patch) | |
tree | 020625a310797f046571dab67213376a2e79736f /retired/CVE-2021-42327 | |
parent | 85b0a6c7ec4958ee2e91d65234972a4516af6829 (diff) |
Retire some CVEs
Diffstat (limited to 'retired/CVE-2021-42327')
-rw-r--r-- | retired/CVE-2021-42327 | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/retired/CVE-2021-42327 b/retired/CVE-2021-42327 new file mode 100644 index 00000000..0105f00e --- /dev/null +++ b/retired/CVE-2021-42327 @@ -0,0 +1,22 @@ +Description: drm/amdgpu: fix out of bounds write +References: + https://lists.freedesktop.org/archives/amd-gfx/2021-October/070170.html + https://cgit.freedesktop.org/drm/drm/commit/?id=f23750b5b3d98653b31d4469592935ef6364ad67 +Notes: + bwh> Introduced in 5.10 by commit 918698d5c2b5 "drm/amd/display: Return the + bwh> number of bytes parsed than allocated". This actually introduced the + bwh> same bug in many debugfs write operations in the same source file. + bwh> One of these is fixed in drm-next, so should be in upstream 5.16-rc1. + carnil> Not directly covered by CVE-2021-42327, but 3f4e54bd312d + carnil> ("drm/amdgpu: Fix even more out of bound writes from debugfs") + carnil> should then be applied as well. + carnil> Fixed as well in 5.14.16 for the 5.14.y series. +Bugs: +upstream: released (5.15) [5afa7898ab7a0ec9c28556a91df714bf3c2f725e] +5.10-upstream-stable: released (5.10.77) [eb3b6805e3e9d98b2507201fd061a231988ce623] +4.19-upstream-stable: N/A "Vulnerability introduced later" +4.9-upstream-stable: N/A "Vulnerability introduced later" +sid: released (5.14.16-1) +5.10-bullseye-security: released (5.10.84-1) +4.19-buster-security: N/A "Vulnerability introduced later" +4.9-stretch-security: N/A "Vulnerability introduced later" |