Add batch of CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2024-02-28 14:17:38 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-02-28 14:17:38 +0100
commit: 96eb71c2764b6a2a7eebf2a2857b79f63ab11ab8 (patch)
tree: 200ad73aeb963037b49c68a73dd052dbcdc23a49 /active/CVE-2021-47024
parent: 27d479cc385da9a8bd22874dd4a098a4b0190950 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2021-47024 b/active/CVE-2021-47024
new file mode 100644
index 000000000..bbd1a7769
--- /dev/null
+++ b/active/CVE-2021-47024
@@ -0,0 +1,16 @@
+Description: vsock/virtio: free queued packets when closing socket
+References:
+Notes:
+ carnil> Introduced in ac03046ece2b ("vsock/virtio: free packets during the socket
+ carnil> release"). Vulnerable versions: 4.9.179 4.14.122 4.19.46 5.0.19 5.1.5 5.2-rc2.
+Bugs:
+upstream: released (5.13-rc1) [8432b8114957235f42e070a16118a7f750de9d39]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: N/A "Fixed before branching point"
+5.10-upstream-stable: released (5.10.37) [b605673b523fe33abeafb2136759bcbc9c1e6ebf]
+4.19-upstream-stable: needed
+sid: released (5.10.38-1)
+6.1-bookworm-security: N/A "Fixed before branching point"
+5.10-bullseye-security: N/A "Fixed before branching point"
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-02-28 14:17:38 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-02-28 14:17:38 +0100
commit	96eb71c2764b6a2a7eebf2a2857b79f63ab11ab8 (patch)
tree	200ad73aeb963037b49c68a73dd052dbcdc23a49 /active/CVE-2021-47024
parent	27d479cc385da9a8bd22874dd4a098a4b0190950 (diff)