Add batch of CVEs from CNA

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-17 19:42:10 +0200
commit: 340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree: 7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26920
parent: 16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/active/CVE-2024-26920 b/active/CVE-2024-26920
new file mode 100644
index 000000000..07bbfce49
--- /dev/null
+++ b/active/CVE-2024-26920
@@ -0,0 +1,18 @@
+Description: tracing/trigger: Fix to return error if failed to alloc snapshot
+References:
+Notes:
+ carnil> Introduced in 0bbe7f719985 ("tracing: Fix the race between registering
+ carnil> 'snapshot' event trigger and triggering 'snapshot' operation"). Vulnerable
+ carnil> versions: 4.4.220 4.9.220 4.14.177 4.19.117 5.4.34 5.5.19 5.6.6 5.7-rc2.
+Bugs:
+upstream: released (6.8-rc3) [0958b33ef5a04ed91f61cef4760ac412080c4e08]
+6.8-upstream-stable: N/A "Fixed before branching point"
+6.7-upstream-stable: released (6.7.6) [4b001ef14baab16b553a002cb9979e31b8fc0c6b]
+6.6-upstream-stable: released (6.6.18) [6022c065c9ec465d84cebff8f480db083e4ee06b]
+6.1-upstream-stable: released (6.1.79) [36be97e9eb535fe3008a5cb040b1e56f29f2e398]
+5.10-upstream-stable: released (5.10.210) [56cfbe60710772916a5ba092c99542332b48e870]
+4.19-upstream-stable: released (4.19.307) [bcf4a115a5068f3331fafb8c176c1af0da3d8b19]
+sid: released (6.7.7-1)
+6.1-bookworm-security: released (6.1.82-1)
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-17 19:42:10 +0200
commit	340814e1a325812027f37a78f5052c8c470caa62 (patch)
tree	7ef5ef0ab7ed2d3c56b2a1da4e9fb0373757586a /active/CVE-2024-26920
parent	16ca5f383c524df1ff66a64d96eba1266dd6e1dc (diff)