From 5a9e000eb5833adb3c6e8345bed0f0e1deb8b677 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Fri, 10 Apr 2020 11:11:37 +0200
Subject: Update status for CVE-2020-8832/linux

---
 data/CVE/2020.list | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 7359ec447b..16b1305eb0 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -6202,9 +6202,13 @@ CVE-2020-8834 (KVM in the Linux kernel on Power8 processors has a conflicting us
 CVE-2020-8833
 	RESERVED
 CVE-2020-8832 (The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 (" ...)
-	- linux <undetermined>
-	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1817047
-	TODO: check (in kernel-sec) if we have incomplete fix
+	- linux 4.16.5-1
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1862840
+	NOTE: The CVE is for an incomplete fix for CVE-2019-14615 which technically only
+	NOTE: affects upstream versions (and downstreams) which applied the fix fo
+	NOTE: CVE-2019-14615 which is bc8a76a152c5 ("drm/i915/gen9: Clear residual context
+	NOTE: state on context switch"). But there is need to apply as well the prerequistite
+	NOTE: d2b4b97933f5 ("drm/i915: Record the default hw state after reset upon load").
 CVE-2020-8831
 	RESERVED
 CVE-2020-8830
-- 
cgit v1.2.3