Add CVE-2022-0185/linux

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 19:40:37 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-18 19:40:37 +0100
commit: 934745dde1157cfeb169158d87d0e925e06137ff (patch)
tree: 459e37119d133e305a5941eb05d96e9337ad5d48 /data/CVE/list.2022
parent: 56b4f9611beced94148e0e1367d623431cefa864 (diff)
1 files changed, 6 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 36e1b547b1..88007a9c4d 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -630,8 +630,13 @@ CVE-2022-0187
 	RESERVED
 CVE-2022-0186
 	RESERVED
-CVE-2022-0185
+CVE-2022-0185 [vfs: fs_context: fix up param length parsing in legacy_parse_param]
 	RESERVED
+	- linux <unfixed>
+	[buster] - linux <not-affected> (Vulnerable code introduced later)
+	[stretch] - linux <not-affected> (Vulnerable code introduced later)
+	NOTE: Fixed by: https://git.kernel.org/linus/722d94847de29310e8aa03fcbdb41fc92c521756
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/18/7
 CVE-2022-0184 (Insufficiently protected credentials vulnerability in 'TEPRA' PRO SR59 ...)
 	NOT-FOR-US: TEPRA
 CVE-2022-0183 (Missing encryption of sensitive data vulnerability in 'MIRUPASS' PW10  ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 19:40:37 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-18 19:40:37 +0100
commit	934745dde1157cfeb169158d87d0e925e06137ff (patch)
tree	459e37119d133e305a5941eb05d96e9337ad5d48 /data/CVE/list.2022
parent	56b4f9611beced94148e0e1367d623431cefa864 (diff)