Add CVE-2024-23849

author: Salvatore Bonaccorso <carnil@debian.org> 2024-01-23 21:27:02 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-01-23 21:27:02 +0100
commit: 36754958c4947a6664766614acbb12e3c3aaff7e (patch)
tree: f3ddbcc84c668efdb41e29233fa3391a0c09e756 /active/CVE-2024-23849
parent: 0513b0f6f986b19a7bc25fd37b853d73d4bc2393 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/active/CVE-2024-23849 b/active/CVE-2024-23849
new file mode 100644
index 000000000..12e7e54df
--- /dev/null
+++ b/active/CVE-2024-23849
@@ -0,0 +1,14 @@
+Description: net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
+References:
+ https://lore.kernel.org/netdev/CALGdzuoVdq-wtQ4Az9iottBqC5cv9ZhcE5q8N7LfYFvkRsOVcw@mail.gmail.com/
+ https://lore.kernel.org/netdev/1705715319-19199-1-git-send-email-sharath.srinivasan%40oracle.com/
+Notes:
+Bugs:
+upstream: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-01-23 21:27:02 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-01-23 21:27:02 +0100
commit	36754958c4947a6664766614acbb12e3c3aaff7e (patch)
tree	f3ddbcc84c668efdb41e29233fa3391a0c09e756 /active/CVE-2024-23849
parent	0513b0f6f986b19a7bc25fd37b853d73d4bc2393 (diff)