From a017799330d4e5d96e5c64ccfba008a85ef29f8c Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 13 Apr 2024 16:23:44 +0200
Subject: Add new CVE assigned from CNA

---
 active/CVE-2024-26817 | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 active/CVE-2024-26817

diff --git a/active/CVE-2024-26817 b/active/CVE-2024-26817
new file mode 100644
index 00000000..2d9fe957
--- /dev/null
+++ b/active/CVE-2024-26817
@@ -0,0 +1,15 @@
+Description: amdkfd: use calloc instead of kzalloc to avoid integer overflow
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: pending [3b0daecfeac0103aba8b293df07a0cbaf8b43f29]
+6.8-upstream-stable: released (6.8.6) [0c33d11153949310d76631d8f4a4736519eacd3a]
+6.6-upstream-stable: released (6.6.27) [315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7]
+6.1-upstream-stable: released (6.1.86) [e6768c6737f4c02cba193a3339f0cc2907f0b86a]
+5.10-upstream-stable: released (5.10.215) [fcbd99b3c73309107e3be71f20dff9414df64f91]
+4.19-upstream-stable: released (4.19.312) [e6721ea845fcb93a764a92bd40f1afc0d6c69751]
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
-- 
cgit v1.2.3