Retire several more CVEs

While we have not yet released the 5.10.191-1 DSA it does not matter if they are alredy retired. We have tagged 5.10.191-1 in git and working on the DSA can be done indepently.
author: Salvatore Bonaccorso <carnil@debian.org> 2023-08-17 14:05:02 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-08-17 14:05:02 +0200
commit: 7108b67fdb16ae22436d11a45d0541de42641e2c (patch)
tree: b8a89b296cec8bce62efef1364b44dca69c9d86a /retired/CVE-2023-35828
parent: 828c92322780d598ea229eb47121eace48d3e71a (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2023-35828 b/retired/CVE-2023-35828
new file mode 100644
index 00000000..20edc7f6
--- /dev/null
+++ b/retired/CVE-2023-35828
@@ -0,0 +1,14 @@
+Description: usb: gadget: udc: renesas_usb3: Fix use after free bug in renesas_usb3_remove due to race condition
+References:
+ https://lore.kernel.org/lkml/CAJedcCwkuznS1kSTvJXhzPoavcZDWNhNMshi-Ux0spSVRwU=RA%40mail.gmail.com/T/
+Notes:
+ carnil> USB_RENESAS_USB3 not enabled in Debian.
+Bugs:
+upstream: released (6.4-rc1) [2b947f8769be8b8181dc795fd292d3e7120f5204]
+6.1-upstream-stable: released (6.1.28) [df2380520926bdbc264cffab0f45da9a21f304c8]
+5.10-upstream-stable: released (5.10.180) [36c237b202a406ba441892eabcf44e60dae7ad73]
+4.19-upstream-stable: released (4.19.283) [ad03fe033a71ed1fd2cb68a067198ae0e342f991]
+sid: released (6.3.7-1)
+6.1-bookworm-security: released (6.1.37-1)
+5.10-bullseye-security: released (5.10.191-1)
+4.19-buster-security: released (4.19.289-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2023-08-17 14:05:02 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-08-17 14:05:02 +0200
commit	7108b67fdb16ae22436d11a45d0541de42641e2c (patch)
tree	b8a89b296cec8bce62efef1364b44dca69c9d86a /retired/CVE-2023-35828
parent	828c92322780d598ea229eb47121eace48d3e71a (diff)