diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2019-09-21 08:22:48 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2019-09-21 08:22:48 +0200 |
| commit | e528081fe517bcda9fc67bdea0155b57e85e28a5 (patch) | |
| tree | dc67c0c5b5f6c67af1f610ea2d3a0bdecc94b5e7 | |
| parent | 20167db62dd0ae4e79bcf948c34c510e84df9d80 (diff) | |
Track fixes in 4.19.75 and 4.9.194
| -rw-r--r-- | active/CVE-2019-14814 | 4 | ||||
| -rw-r--r-- | active/CVE-2019-14815 | 10 | ||||
| -rw-r--r-- | active/CVE-2019-14816 | 4 | ||||
| -rw-r--r-- | active/CVE-2019-14821 | 4 |
4 files changed, 13 insertions, 9 deletions
diff --git a/active/CVE-2019-14814 b/active/CVE-2019-14814 index 4506708d3..7b09f6b48 100644 --- a/active/CVE-2019-14814 +++ b/active/CVE-2019-14814 @@ -7,8 +7,8 @@ Notes: bwh> for AP". Bugs: upstream: released (5.3) [7caac62ed598a196d6ddf8d9c121e12e082cac3a] -4.19-upstream-stable: needed -4.9-upstream-stable: needed +4.19-upstream-stable: released (4.19.75) [941431c491a68e0428bdfb46bbe4cbc52f7bfabb] +4.9-upstream-stable: released (4.9.194) [21dfacaf201ed13af70a8bd3e66bcf18cdb63b35] 3.16-upstream-stable: pending (3.16.74) [mwifiex-fix-three-heap-overflow-at-parsing-element-in.patch] sid: needed 4.19-buster-security: needed diff --git a/active/CVE-2019-14815 b/active/CVE-2019-14815 index afa632187..8e905dfc7 100644 --- a/active/CVE-2019-14815 +++ b/active/CVE-2019-14815 @@ -5,12 +5,16 @@ References: Notes: bwh> Introduced in 4.10 by commit 113630b581d6 "mwifiex: vendor_ie length bwh> check for parse WMM IEs". + carnil> The bounds-check in mwifiex_set_wmm_paramsare still applied as + carnil> well in older versions e.g. 4.9.194. Put the state again in + carnil> needed for 4.9-stretch-security but just to recheck if this is + carnil> really not needed to track for CVE-2019-14815. Bugs: upstream: released (5.3) [7caac62ed598a196d6ddf8d9c121e12e082cac3a] -4.19-upstream-stable: needed -4.9-upstream-stable: N/A "Vulnerability introduced later" +4.19-upstream-stable: released (4.19.75) [941431c491a68e0428bdfb46bbe4cbc52f7bfabb] +4.9-upstream-stable: released (4.9.194) [21dfacaf201ed13af70a8bd3e66bcf18cdb63b35] 3.16-upstream-stable: N/A "Vulnerability introduced later" sid: needed 4.19-buster-security: needed -4.9-stretch-security: N/A "Vulnerability introduced later" +4.9-stretch-security: needed 3.16-jessie-security: N/A "Vulnerability introduced later" diff --git a/active/CVE-2019-14816 b/active/CVE-2019-14816 index ff2482c40..3f7760b54 100644 --- a/active/CVE-2019-14816 +++ b/active/CVE-2019-14816 @@ -7,8 +7,8 @@ Notes: bwh> beacon_data". Bugs: upstream: released (5.3) [7caac62ed598a196d6ddf8d9c121e12e082cac3a] -4.19-upstream-stable: needed -4.9-upstream-stable: needed +4.19-upstream-stable: released (4.19.75) [941431c491a68e0428bdfb46bbe4cbc52f7bfabb] +4.9-upstream-stable: released (4.9.194) [21dfacaf201ed13af70a8bd3e66bcf18cdb63b35] 3.16-upstream-stable: pending (3.16.74) [mwifiex-fix-three-heap-overflow-at-parsing-element-in.patch] sid: needed 4.19-buster-security: needed diff --git a/active/CVE-2019-14821 b/active/CVE-2019-14821 index 5f86ead75..722ac1a82 100644 --- a/active/CVE-2019-14821 +++ b/active/CVE-2019-14821 @@ -5,8 +5,8 @@ Notes: carnil> (common part)"). Bugs: upstream: pending [b60fe990c6b07ef6d4df67bc0530c7c90a62623a] -4.19-upstream-stable: pending [kvm-coalesced_mmio-add-bounds-checking.patch] -4.9-upstream-stable: pending [kvm-coalesced_mmio-add-bounds-checking.patch] +4.19-upstream-stable: released (4.19.75) [232a6462f43fceeac82bd99ef092b38e3a7ee296] +4.9-upstream-stable: released (4.9.194) [52cb3fd60ec0a1c9b61cd28bae4e8c1d377e7b60] 3.16-upstream-stable: pending (3.16.74) [kvm-coalesced_mmio-add-bounds-checking.patch] sid: pending (5.2.14-1) [bugfix/all/KVM-coalesced_mmio-add-bounds-checking.patch] 4.19-buster-security: pending (4.19.67-2+deb10u1) [bugfix/all/KVM-coalesced_mmio-add-bounds-checking.patch] |