Add new batch of CVEs assigned

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
commit: 509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree: f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26809
parent: e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/active/CVE-2024-26809 b/active/CVE-2024-26809
new file mode 100644
index 000000000..dabd9e559
--- /dev/null
+++ b/active/CVE-2024-26809
@@ -0,0 +1,16 @@
+Description: netfilter: nft_set_pipapo: release elements in clone only from destroy path
+References:
+Notes:
+ carnil> Introduced in 9827a0e6e23b ("netfilter: nft_set_pipapo: release elements in
+ carnil> clone from abort path"). Vulnerable versions: 5.10.130 5.15.54 5.18.11 5.19-rc6.
+Bugs:
+upstream: released (6.9-rc1) [b0e256f3dd2ba6532f37c5c22e07cb07a36031ee]
+6.7-upstream-stable: released (6.7.11) [821e28d5b506e6a73ccc367ff792bd894050d48b]
+6.6-upstream-stable: released (6.6.23) [ff90050771412b91e928093ccd8736ae680063c2]
+6.1-upstream-stable: released (6.1.83) [5ad233dc731ab64cdc47b84a5c1f78fff6c024af]
+5.10-upstream-stable: released (5.10.214) [b36b83297ff4910dfc8705402c8abffd4bbf8144]
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
commit	509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree	f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26809
parent	e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)