diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-09-03 23:54:23 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-09-03 23:54:23 +0200 |
| commit | 18ff2d6aa6fe6fd382d954549b1cf9daea158ee2 (patch) | |
| tree | 09084cf3e2ac54f23b7c50a59568530c36e2e73f | |
| parent | df64357a1f226ecf439a5bc42ca7675a18262201 (diff) | |
Add CVE-2020-14385
| -rw-r--r-- | active/CVE-2020-14385 | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/active/CVE-2020-14385 b/active/CVE-2020-14385 new file mode 100644 index 00000000..a70aa820 --- /dev/null +++ b/active/CVE-2020-14385 @@ -0,0 +1,14 @@ +Description: xfs: fix boundary test in xfs_attr_shortform_verify +References: + https://lore.kernel.org/linux-xfs/63722af5-2d8d-2455-17ee-988defd3126f@redhat.com/ + https://bugzilla.redhat.com/show_bug.cgi?id=1874800 +Notes: + carnil> Introduced in 4.16-rc1 with 1e1bbd8e7ee06 ("xfs: create + carnil> structure verifier function for shortform xattrs"). +Bugs: +upstream: pending [f4020438fab05364018c91f7e02ebdd192085933] +4.19-upstream-stable: needed +4.9-upstream-stable: N/A "Vulnerable code introduced later" +sid: needed +4.19-buster-security: needed +4.9-stretch-security: N/A "Vulnerable code introduced later" |