diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-17 19:42:10 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-04-17 19:42:10 +0200 |
| commit | 340814e1a325812027f37a78f5052c8c470caa62 (patch) | |
| tree | 7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26824 | |
| parent | 16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff) | |
Add batch of CVEs from CNA
Diffstat (limited to 'active/CVE-2024-26824')
| -rw-r--r-- | active/CVE-2024-26824 | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2024-26824 b/active/CVE-2024-26824 new file mode 100644 index 00000000..f30aef4d --- /dev/null +++ b/active/CVE-2024-26824 @@ -0,0 +1,17 @@ +Description: crypto: algif_hash - Remove bogus SGL free on zero-length error path +References: +Notes: + carnil> Introduced in b6d972f68983 ("crypto: af_alg/hash: Fix recvmsg() after + carnil> sendmsg(MSG_MORE)"). Vulnerable versions: 6.5-rc1. +Bugs: +upstream: released (6.8-rc4) [24c890dd712f6345e382256cae8c97abb0406b70] +6.8-upstream-stable: N/A "Fixed before branching point" +6.7-upstream-stable: released (6.7.6) [775f3c1882a493168e08fdb8cde0865c8f3a8a29] +6.6-upstream-stable: released (6.6.18) [9c82920359b7c1eddaf72069bcfe0ffddf088cd0] +6.1-upstream-stable: N/A "Vulnerable code not present" +5.10-upstream-stable: N/A "Vulnerable code not present" +4.19-upstream-stable: N/A "Vulnerable code not present" +sid: released (6.7.7-1) +6.1-bookworm-security: N/A "Vulnerable code not present" +5.10-bullseye-security: N/A "Vulnerable code not present" +4.19-buster-security: N/A "Vulnerable code not present" |