Add CVE-2023-0386

author: Salvatore Bonaccorso <carnil@debian.org> 2023-03-23 08:12:36 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-03-23 08:12:36 +0100
commit: fc2094df1fd1727d08afc85816bf04af5cd1ebee (patch)
tree: a9d6a697fcfb5449aa6348e89beef7682c4a9dbd /active/CVE-2023-0386
parent: 4d21630100d0aa649fc46e48cbeb6b1b8dff7fda (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/active/CVE-2023-0386 b/active/CVE-2023-0386
new file mode 100644
index 000000000..145bc1379
--- /dev/null
+++ b/active/CVE-2023-0386
@@ -0,0 +1,13 @@
+Description: ovl: fail on invalid uid/gid mapping at copy up
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2159505
+Notes:
+ carnil> Issue different from CVE-2021-3847.
+Bugs:
+upstream: released (6.2-rc6) [4f11ada10d0ad3fd53e2bd67806351de63a4f9c3]
+6.1-upstream-stable: released (6.1.9) [42fea1c35254c49cce07c600d026cbc00c6d3c81]
+5.10-upstream-stable:
+4.19-upstream-stable:
+sid: released (6.1.11-1)
+5.10-bullseye-security:
+4.19-buster-security:
author	Salvatore Bonaccorso <carnil@debian.org>	2023-03-23 08:12:36 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-03-23 08:12:36 +0100
commit	fc2094df1fd1727d08afc85816bf04af5cd1ebee (patch)
tree	a9d6a697fcfb5449aa6348e89beef7682c4a9dbd /active/CVE-2023-0386
parent	4d21630100d0aa649fc46e48cbeb6b1b8dff7fda (diff)