Update information for CVE-2024-26589

author: Salvatore Bonaccorso <carnil@debian.org> 2024-03-11 20:37:44 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-03-11 20:37:44 +0100
commit: 9692e05dc710491496f03b5e348e96656592ca39 (patch)
tree: cec7a3bd7914793b627741a8eed30d5ddc996ce4
parent: 110be3dd20b331e050c195cfb18ad343501c4908 (diff)
1 files changed, 5 insertions, 3 deletions
diff --git a/active/CVE-2024-26589 b/active/CVE-2024-26589
index aa3a8526..af35b771 100644
--- a/active/CVE-2024-26589
+++ b/active/CVE-2024-26589
@@ -1,10 +1,12 @@
 Description: bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
 References:
 Notes:
- carnil> Commit fixes d58e468b1112 ("flow_dissector: implements flow
- carnil> dissector BPF hook") in 4.20-rc1.
+ carnil> Introduced in d58e468b1112 ("flow_dissector: implements flow dissector BPF
+ carnil> hook"). Vulnerable versions: 4.20-rc1.
 Bugs:
-upstream: released (6.8-c1) [22c7fa171a02d310e3a3f6ed46a698ca8a0060ed]
+upstream: released (6.8-rc1) [22c7fa171a02d310e3a3f6ed46a698ca8a0060ed]
+6.7-upstream-stable: released (6.7.2) [1b500d5d6cecf98dd6ca88bc9e7ae1783c83e6d3]
+6.6-upstream-stable: released (6.6.14) [e8d3872b617c21100c5ee4f64e513997a68c2e3d]
 6.1-upstream-stable: released (6.1.75) [4108b86e324da42f7ed425bd71632fd844300dc8]
 5.10-upstream-stable: needed
 4.19-upstream-stable: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-03-11 20:37:44 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-03-11 20:37:44 +0100
commit	9692e05dc710491496f03b5e348e96656592ca39 (patch)
tree	cec7a3bd7914793b627741a8eed30d5ddc996ce4
parent	110be3dd20b331e050c195cfb18ad343501c4908 (diff)