Add batch of CVEs from CNA

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
commit: 340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree: 7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26839
parent: 16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2024-26839 b/active/CVE-2024-26839
new file mode 100644
index 000000000..2f3f2bcf1
--- /dev/null
+++ b/active/CVE-2024-26839
@@ -0,0 +1,17 @@
+Description: IB/hfi1: Fix a memleak in init_credit_return
+References:
+Notes:
+ carnil> Introduced in 7724105686e7 ("IB/hfi1: add driver files"). Vulnerable versions:
+ carnil> 4.3-rc1.
+Bugs:
+upstream: released (6.8-rc6) [809aa64ebff51eb170ee31a95f83b2d21efa32e2]
+6.8-upstream-stable: N/A "Fixed before branching point"
+6.7-upstream-stable: released (6.7.7) [8412c86e89cc78d8b513cb25cf2157a2adf3670a]
+6.6-upstream-stable: released (6.6.19) [b41d0ade0398007fb746213f09903d52a920e896]
+6.1-upstream-stable: released (6.1.80) [f0d857ce31a6bc7a82afcdbadb8f7417d482604b]
+5.10-upstream-stable: released (5.10.211) [3fa240bb6b2dbb3e7a3ee1440a4889cbb6207eb7]
+4.19-upstream-stable: released (4.19.308) [2e4f9f20b32658ef3724aa46f7aef4908d2609e3]
+sid: released (6.7.7-1)
+6.1-bookworm-security: released (6.1.82-1)
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
commit	340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree	7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26839
parent	16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)