Update note for CVE-2019-19927

author: Salvatore Bonaccorso <carnil@debian.org> 2020-01-16 15:37:36 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-01-16 15:58:36 +0100
commit: dabfac780381355622d1a8fa14150989bca29a40 (patch)
tree: fa10777e4390d7935454ba25656efe5559de46c9 /active
parent: 0986384ef9159b656b2a727ac22766e65d530948 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/active/CVE-2019-19927 b/active/CVE-2019-19927
index 49757d9d5..cd4f8e5be 100644
--- a/active/CVE-2019-19927
+++ b/active/CVE-2019-19927
@@ -8,6 +8,8 @@ Notes:
  carnil> One of the commits, a66477b0efe5 ("drm/ttm: fix out-of-bounds
  carnil> read in ttm_put_pages() v2") was as well backported to 4.19.37.
  carnil> What is relevant to the supported branches to be backported?
+ carnil> All three commits need to be applied, cf.
+ carnil> https://lore.kernel.org/stable/20200116064439.GA62849@google.com/
 Bugs:
 upstream: released (5.1-rc6) [453393369dc9806d2455151e329c599684762428, a66477b0efe511d98dde3e4aaeb189790e6f0a39, ac1e516d5a4c56bf0cb4a3dfc0672f689131cfd4]
 4.19-upstream-stable:
author	Salvatore Bonaccorso <carnil@debian.org>	2020-01-16 15:37:36 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-01-16 15:58:36 +0100
commit	dabfac780381355622d1a8fa14150989bca29a40 (patch)
tree	fa10777e4390d7935454ba25656efe5559de46c9 /active
parent	0986384ef9159b656b2a727ac22766e65d530948 (diff)