Add new batch of CVEs assigned from Linux kernel CNA

Manual fixup for the sid version not correctly detecting 6.6.15-1 as the right now and instead using 6.7.7-1 one.
author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-02 10:56:31 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-02 10:56:31 +0200
commit: 394790af91161b751b9411f7737a4207ba5c0b55 (patch)
tree: e24f0764bf786f47a569956869194e71add754ec /active/CVE-2024-26677
parent: 612fa53fe5f7ec56deab8572d3abc0d9f345e3c0 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26677 b/active/CVE-2024-26677
new file mode 100644
index 00000000..16073634
--- /dev/null
+++ b/active/CVE-2024-26677
@@ -0,0 +1,16 @@
+Description: rxrpc: Fix delayed ACKs to not set the reference serial number
+References:
+Notes:
+ carnil> Introduced in 17926a79320a ("[AF_RXRPC]: Provide secure RxRPC sockets for use
+ carnil> by userspace and kernel both"). Vulnerable versions: 2.6.22-rc1.
+Bugs:
+upstream: released (6.8-rc4) [e7870cf13d20f56bfc19f9c3e89707c69cf104ef]
+6.7-upstream-stable: released (6.7.5) [63719f490e6a89896e9a463d2b45e8203eab23ae]
+6.6-upstream-stable: released (6.6.17) [200cb50b9e154434470c8969d32474d38475acc2]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: released (6.7.7-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-02 10:56:31 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-02 10:56:31 +0200
commit	394790af91161b751b9411f7737a4207ba5c0b55 (patch)
tree	e24f0764bf786f47a569956869194e71add754ec /active/CVE-2024-26677
parent	612fa53fe5f7ec56deab8572d3abc0d9f345e3c0 (diff)