diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-06-22 16:14:26 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-06-22 16:14:26 +0200 |
| commit | a6acbc23fcfbc7f24959d8dfb3079abcd30bca7f (patch) | |
| tree | bb8f96f23ddea58e3b417fecc2444041ff035f41 | |
| parent | fabc7920d5fa91bc5aded7059cb4c4900cd75cbc (diff) | |
Add note for carlifying fix for CVE-2022-2153
| -rw-r--r-- | active/CVE-2022-2153 | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/active/CVE-2022-2153 b/active/CVE-2022-2153 index f23981b7..46ffc078 100644 --- a/active/CVE-2022-2153 +++ b/active/CVE-2022-2153 @@ -6,6 +6,10 @@ Notes: carnil> Fixed as well in 5.16.19 for 5.16.y and 5.17.2 for 5.17.y. The carnil> last commit of the series was as well backported to 5.10.110, carnil> 4.19.238 and 4.9.311. + carnil> According to the oss-security reference the main fix seems to + carnil> be pin-pointed at 00b5f37189d2 ("KVM: x86: Avoid theoretical + carnil> NULL pointer dereference in kvm_irq_delivery_to_apic_fast()") + carnil> which would not yet be included in 5.10.y and older. Bugs: upstream: released (5.18-rc1) [7ec37d1cbe17d8189d9562178d8b29167fe1c31a, 00b5f37189d24ac3ed46cb7f11742094778c46ce, b1e34d325397a33d97d845e312d7cf2a8b646b44] 5.10-upstream-stable: released (5.10.110) [09c771c45c1243e295470225aaee726693fdc242] |