Add new assigned CVEs

Key issue remaining is yet to find the correct version in unstable due to branching for a release. Up to now the script will otherwise mark 5.10.40-1 as fixed in the bullseye branch, which is not correct as this was before the branching point and at same point mark an experimental version for the fix in sid. The rest seems to work reasonable now but will need a review later.
author: Salvatore Bonaccorso <carnil@debian.org> 2024-03-01 22:44:17 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-03-01 22:44:53 +0100
commit: 47b8f95b2c6a287f933ae7baac7b4c6be0d5951c (patch)
tree: a05d623ccfc194b9eb6ca82ed6b0986c2b310b46 /active/CVE-2021-47076
parent: 3a986a63a8120ce5be3821cd1cfacd8d3ea9f503 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/active/CVE-2021-47076 b/active/CVE-2021-47076
new file mode 100644
index 000000000..e499ec49c
--- /dev/null
+++ b/active/CVE-2021-47076
@@ -0,0 +1,15 @@
+Description: RDMA/rxe: Return CQE error if invalid lkey was supplied
+References:
+Notes:
+ carnil> Introduced in 8700e3e7c485 ("Soft RoCE driver"). Vulnerable versions: 4.8-rc1.
+Bugs:
+upstream: released (5.13-rc3) [dc07628bd2bbc1da768e265192c28ebd301f509d]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: N/A "Fixed before branching point"
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: released (5.14.6-1)
+6.1-bookworm-security: N/A "Fixed before branching point"
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-03-01 22:44:17 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-03-01 22:44:53 +0100
commit	47b8f95b2c6a287f933ae7baac7b4c6be0d5951c (patch)
tree	a05d623ccfc194b9eb6ca82ed6b0986c2b310b46 /active/CVE-2021-47076
parent	3a986a63a8120ce5be3821cd1cfacd8d3ea9f503 (diff)