Add batch of CVEs from CNA

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
commit: 340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree: 7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26869
parent: 16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/active/CVE-2024-26869 b/active/CVE-2024-26869
new file mode 100644
index 00000000..94ccde40
--- /dev/null
+++ b/active/CVE-2024-26869
@@ -0,0 +1,18 @@
+Description: f2fs: fix to truncate meta inode pages forcely
+References:
+Notes:
+ carnil> Introduced in 6aa58d8ad20a ("f2fs: readahead encrypted block during GC")
+ carnil> e3b49ea36802 ("f2fs: invalidate META_MAPPING before IPU/DIO write"). Vulnerable
+ carnil> versions: 4.19-rc1.
+Bugs:
+upstream: released (6.9-rc1) [9f0c4a46be1fe9b97dbe66d49204c1371e3ece65]
+6.8-upstream-stable: released (6.8.2) [04226d8e3c4028dc451e9d8777356ec0f7919253]
+6.7-upstream-stable: released (6.7.11) [77bfdb89cc222fc7bfe198eda77bdc427d5ac189]
+6.6-upstream-stable: released (6.6.23) [c92f2927df860a60ba815d3ee610a944b92a8694]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
commit	340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree	7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26869
parent	16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)