diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-02 10:56:31 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-02 10:56:31 +0200 |
commit | 394790af91161b751b9411f7737a4207ba5c0b55 (patch) | |
tree | e24f0764bf786f47a569956869194e71add754ec /active/CVE-2024-26665 | |
parent | 612fa53fe5f7ec56deab8572d3abc0d9f345e3c0 (diff) |
Add new batch of CVEs assigned from Linux kernel CNA
Manual fixup for the sid version not correctly detecting 6.6.15-1 as the
right now and instead using 6.7.7-1 one.
Diffstat (limited to 'active/CVE-2024-26665')
-rw-r--r-- | active/CVE-2024-26665 | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26665 b/active/CVE-2024-26665 new file mode 100644 index 000000000..dc63c904d --- /dev/null +++ b/active/CVE-2024-26665 @@ -0,0 +1,16 @@ +Description: tunnels: fix out of bounds access when building IPv6 PMTU error +References: +Notes: + carnil> Introduced in 4cb47a8644cc ("tunnels: PMTU discovery support for directly + carnil> bridged IP packets"). Vulnerable versions: 5.9-rc1. +Bugs: +upstream: released (6.8-rc4) [d75abeec401f8c86b470e7028a13fcdc87e5dd06] +6.7-upstream-stable: released (6.7.5) [7dc9feb8b1705cf00de20563b6bc4831f4c99dab] +6.6-upstream-stable: released (6.6.17) [510c869ffa4068c5f19ff4df51d1e2f3a30aaac1] +6.1-upstream-stable: released (6.1.78) [e37cde7a5716466ff2a76f7f27f0a29b05b9a732] +5.10-upstream-stable: released (5.10.210) [e77bf828f1ca1c47fcff58bdc26b60a9d3dfbe1d] +4.19-upstream-stable: N/A "Vulnerable code not present" +sid: released (6.7.7-1) +6.1-bookworm-security: needed +5.10-bullseye-security: needed +4.19-buster-security: N/A "Vulnerable code not present" |