Add CVE-2023-21264

author: Salvatore Bonaccorso <carnil@debian.org> 2023-08-08 22:23:37 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-08-08 22:23:37 +0200
commit: 181ef41bfc116398b991fc56837fd68ce446487b (patch)
tree: 51bc1f34eddc3ac3af3af690396fdc75d430c44b /active/CVE-2023-21264
parent: d79cb6f93072656000c5e91b14ea6bf6cf2e5c6c (diff)
1 files changed, 19 insertions, 0 deletions
diff --git a/active/CVE-2023-21264 b/active/CVE-2023-21264
new file mode 100644
index 000000000..f0128c4f3
--- /dev/null
+++ b/active/CVE-2023-21264
@@ -0,0 +1,19 @@
+Description:
+References:
+ https://source.android.com/docs/security/bulletin/2023-08-01
+ https://android.googlesource.com/kernel/common/+/b35a06182451f
+ https://android.googlesource.com/kernel/common/+/53625a846a7b4
+Notes:
+ carnil> Commit fixes e82edcc75c4e ("KVM: arm64: Implement do_share()
+ carnil> helper for sharing memory") 5.17-rc1.
+ carnil> Not completely sure if this the issue applies really to the
+ carnil> upstream kernel.
+Bugs:
+upstream: released (6.4-rc5) [09cce60bddd6461a93a5bf434265a47827d1bc6f]
+6.1-upstream-stable: needed
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.3.7-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2023-08-08 22:23:37 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-08-08 22:23:37 +0200
commit	181ef41bfc116398b991fc56837fd68ce446487b (patch)
tree	51bc1f34eddc3ac3af3af690396fdc75d430c44b /active/CVE-2023-21264
parent	d79cb6f93072656000c5e91b14ea6bf6cf2e5c6c (diff)