Add CVE-2022-0185/linux

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 19:40:37 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 19:40:37 +0100
commit: deba6526364c94833bfdc716c4495294b41eaf8a (patch)
tree: 4b0d83dc4bd83c1a2528119f993051f4456e47a1 /data/CVE/list
parent: f70c7a8a2ee2755f31f2d149357cbc5baa27c394 (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index c4e53ec1f7..e32722a203 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -704,8 +704,13 @@ CVE-2022-0187
 	RESERVED
 CVE-2022-0186
 	RESERVED
-CVE-2022-0185
+CVE-2022-0185 [vfs: fs_context: fix up param length parsing in legacy_parse_param]
 	RESERVED
+	- linux <unfixed>
+	[buster] - linux <not-affected> (Vulnerable code introduced later)
+	[stretch] - linux <not-affected> (Vulnerable code introduced later)
+	NOTE: Fixed by: https://git.kernel.org/linus/722d94847de29310e8aa03fcbdb41fc92c521756
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/18/7
 CVE-2022-0184 (Insufficiently protected credentials vulnerability in 'TEPRA' PRO SR59 ...)
 	NOT-FOR-US: TEPRA
 CVE-2022-0183 (Missing encryption of sensitive data vulnerability in 'MIRUPASS' PW10  ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 19:40:37 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 19:40:37 +0100
commit	deba6526364c94833bfdc716c4495294b41eaf8a (patch)
tree	4b0d83dc4bd83c1a2528119f993051f4456e47a1 /data/CVE/list
parent	f70c7a8a2ee2755f31f2d149357cbc5baa27c394 (diff)