Add new batch of CVEs assigned

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
commit: 509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree: f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26804
parent: e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26804 b/active/CVE-2024-26804
new file mode 100644
index 00000000..dde28e40
--- /dev/null
+++ b/active/CVE-2024-26804
@@ -0,0 +1,16 @@
+Description: net: ip_tunnel: prevent perpetual headroom growth
+References:
+Notes:
+ carnil> Introduced in 243aad830e8a ("ip_gre: include route header_len in max_headroom
+ carnil> calculation"). Vulnerable versions: 2.6.33.2 2.6.34-rc3.
+Bugs:
+upstream: released (6.8-rc7) [5ae1e9922bbdbaeb9cfbe91085ab75927488ac0f]
+6.7-upstream-stable: released (6.7.9) [049d7989c67e8dd50f07a2096dbafdb41331fb9b]
+6.6-upstream-stable: released (6.6.21) [a0a1db40b23e8ff86dea2786c5ea1470bb23ecb9]
+6.1-upstream-stable: released (6.1.81) [ab63de24ebea36fe73ac7121738595d704b66d96]
+5.10-upstream-stable: released (5.10.212) [2e95350fe9db9d53c701075060ac8ac883b68aee]
+4.19-upstream-stable: needed
+sid: released (6.7.9-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
commit	509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree	f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26804
parent	e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)