Add CVE-2023-1076

author: Salvatore Bonaccorso <carnil@debian.org> 2023-02-28 07:43:10 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-02-28 07:43:10 +0100
commit: 38e97f76b6a50d7a577a30421754c15514d09bca (patch)
tree: 877ea37a485159906225c39de2018b213346140c /active/CVE-2023-1076
parent: f539540b6f0217025fe31f209b6347af07907910 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/active/CVE-2023-1076 b/active/CVE-2023-1076
new file mode 100644
index 000000000..5922c4686
--- /dev/null
+++ b/active/CVE-2023-1076
@@ -0,0 +1,15 @@
+Description: tap: tap_open(): correctly initialize socket uid
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2173435
+ https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=66b2c338adce580dfce2199591e65e2bab889cff
+ https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=a096ccca6e503a5c575717ff8a36ace27510ab0a
+Notes:
+ carnil> Commit fixes 86741ec25462 ("net: core: Add a UID field to struct sock.").
+Bugs:
+upstream: pending [66b2c338adce580dfce2199591e65e2bab889cff, a096ccca6e503a5c575717ff8a36ace27510ab0a]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2023-02-28 07:43:10 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-02-28 07:43:10 +0100
commit	38e97f76b6a50d7a577a30421754c15514d09bca (patch)
tree	877ea37a485159906225c39de2018b213346140c /active/CVE-2023-1076
parent	f539540b6f0217025fe31f209b6347af07907910 (diff)