summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2022-06-10 21:25:08 +0200
committerSalvatore Bonaccorso <carnil@debian.org>2022-06-10 21:25:08 +0200
commit38b2a2143fa5309ece58e625c1404f38c8c6dc78 (patch)
tree23fc7d7b06ec54883eae785390a4bd146abd0755
parentee612dca1f1445ceb82b0c53dea3ea0643f427a1 (diff)
Wrap texts in preparation of the advisory
-rw-r--r--dsa-texts/5.10.120-124
1 files changed, 13 insertions, 11 deletions
diff --git a/dsa-texts/5.10.120-1 b/dsa-texts/5.10.120-1
index 44ad389a..7c73e6db 100644
--- a/dsa-texts/5.10.120-1
+++ b/dsa-texts/5.10.120-1
@@ -13,20 +13,21 @@ CVE-2022-0494
CVE-2022-1012
- The randomisation when calculating port offsets in the IP implementation
- was enhanced.
+ The randomisation when calculating port offsets in the IP
+ implementation was enhanced.
CVE-2022-1729
Norbert Slusarek discovered a race condition in the perf subsystem
- which could result in local privilege escalation to root. The default
- settings in Debian prevent exploitation unless more permissive settings
- have been applied in the kernel.perf_event_paranoid sysctl.
+ which could result in local privilege escalation to root. The
+ default settings in Debian prevent exploitation unless more
+ permissive settings have been applied in the
+ kernel.perf_event_paranoid sysctl.
CVE-2022-1786
- Kyle Zeng discovered a use-after-free in the io_uring subsystem which
- way result in local privilege escalation to root.
+ Kyle Zeng discovered a use-after-free in the io_uring subsystem
+ which way result in local privilege escalation to root.
CVE-2022-1789 / CVE-2022-1852
@@ -46,8 +47,8 @@ CVE-2022-1972
CVE-2022-1974 / CVE-2022-1975
- Duoming Zhou discovered that the NFC netlink interface was suspectible
- to denial of service.
+ Duoming Zhou discovered that the NFC netlink interface was
+ suspectible to denial of service.
CVE-2022-21499
@@ -56,8 +57,9 @@ CVE-2022-21499
CVE-2022-28893
- Felix Fu discovered a use-after-free in the implementation of the Remote Procedure
- Call (SunRPC) protocol, which could in denial of service or an information leak.
+ Felix Fu discovered a use-after-free in the implementation of the
+ Remote Procedure Call (SunRPC) protocol, which could in denial of
+ service or an information leak.
TODO: CVE-2022-1734 in data/CVE/list with '[bullseye] - linux 5.10.120-1'

© 2014-2024 Faster IT GmbH | imprint | privacy policy