diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-19 20:59:36 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-19 20:59:36 +0100 |
commit | 777231bbb15095b8bb3fd699482486e89040ebf9 (patch) | |
tree | 54e45d239663608ca89b23d921ddee03a1ecf7d8 /retired | |
parent | bd5180ed9683fec84fb4c02d0a6b3ff98b1210f0 (diff) |
Retire some CVEs
Diffstat (limited to 'retired')
-rw-r--r-- | retired/CVE-2019-18675 | 19 | ||||
-rw-r--r-- | retired/CVE-2019-19053 | 15 | ||||
-rw-r--r-- | retired/CVE-2019-19966 | 14 |
3 files changed, 48 insertions, 0 deletions
diff --git a/retired/CVE-2019-18675 b/retired/CVE-2019-18675 new file mode 100644 index 000000000..545e12d1c --- /dev/null +++ b/retired/CVE-2019-18675 @@ -0,0 +1,19 @@ +Description: integer overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c +References: + https://deshal3v.github.io/blog/kernel-research/mmap_exploitation + https://lore.kernel.org/lkml/20200108161619.7999-1-tiwai@suse.de/ + https://lore.kernel.org/lkml/20191111114615.GA418224@kroah.com/ +Notes: + bwh> Introduced in 2.6.17 by commit ab33d5071de7 "V4L/DVB (3376): Add cpia2 + bwh> camera support". The general issue has already beedn fixed by commit + bwh> be83bbf80682 "mmap: introduce sane default mmap limits" which went into + bwh> 4.17 and was backported to all live stable branches. +Bugs: +upstream: released (4.17-rc5) [be83bbf806822b1b89e0a0f23cd87cddc409e429] +4.19-upstream-stable: N/A "Fixed before branch point" +4.9-upstream-stable: released (4.9.108) [7a40374c34e8c25062b0d7e2d2152ff8b7af1274] +3.16-upstream-stable: released (3.16.60) [72d8a061cbfbee3a357d38ef80688df9e878de43] +sid: released (4.16.16-1) +4.19-buster-security: N/A "Fixed before branch point" +4.9-stretch-security: released (4.9.110-1) +3.16-jessie-security: released (3.16.64-1) diff --git a/retired/CVE-2019-19053 b/retired/CVE-2019-19053 new file mode 100644 index 000000000..12c4c1bad --- /dev/null +++ b/retired/CVE-2019-19053 @@ -0,0 +1,15 @@ +Description: rpmsg: char: release allocated memory +References: + https://github.com/torvalds/linux/commit/bbe692e349e2a1edf3fe0a29a0e05899c9c94d51 +Notes: + bwh> Introduced in 4.20 by commit ccf45b18ce89 ("rpmsg: char: Migrate to + bwh> iter versions of read and write". +Bugs: +upstream: released (5.5-rc1) [bbe692e349e2a1edf3fe0a29a0e05899c9c94d51] +4.19-upstream-stable: N/A "Vulnerability introduced later" +4.9-upstream-stable: N/A "Vulnerable code not present" +3.16-upstream-stable: N/A "Vulnerable code not present" +sid: released (5.4.13-1) +4.19-buster-security: N/A "Vulnerability introduced later" +4.9-stretch-security: N/A "Vulnerable code not present" +3.16-jessie-security: N/A "Vulnerable code not present" diff --git a/retired/CVE-2019-19966 b/retired/CVE-2019-19966 new file mode 100644 index 000000000..bd16ce135 --- /dev/null +++ b/retired/CVE-2019-19966 @@ -0,0 +1,14 @@ +Description: media: cpia2: Fix use-after-free in cpia2_exit +References: +Notes: + bwh> Introduced in 2.6.17 by commit ab33d5071de7 "V4L/DVB (3376): Add cpia2 + bwh> camera support". +Bugs: +upstream: released (5.2-rc1) [dea37a97265588da604c6ba80160a287b72c7bfd] +4.19-upstream-stable: released (4.19.47) [bdf3da72ae79f0cfb88c720dedabe16b0d67334b] +4.9-upstream-stable: released (4.9.180) [14734c3c582387e84c4c7c8c9469c274b41ff2b3] +3.16-upstream-stable: released (3.16.81) [56c2514ac65214bfcf60b6df324e3a1d2f31e3b2] +sid: released (5.2.6-1) +4.19-buster-security: released (4.19.67-1) +4.9-stretch-security: released (4.9.184-1) +3.16-jessie-security: released (3.16.81-1) |