Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-02-09 21:22:45 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-02-09 21:22:45 +0100
commit: 30e923c9029fa0f9ba1976670c8ee73cbf02169e (patch)
tree: 87b0fd686e9a24569aaaf32fc5792062600f7517 /retired/CVE-2018-ebpf-filter-dos
parent: 00d322afed3dc04e74ab0037716e96278c5b8ac6 (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/retired/CVE-2018-ebpf-filter-dos b/retired/CVE-2018-ebpf-filter-dos
new file mode 100644
index 00000000..20753e96
--- /dev/null
+++ b/retired/CVE-2018-ebpf-filter-dos
@@ -0,0 +1,13 @@
+Description: Ability to fill entire module space with eBPF JIT socket filters
+References:
+Notes:
+ bwh> This should be minor for Debian because we don't enable JIT by default.
+Bugs:
+upstream: released (4.20-rc1) [ede95a63b5e84ddeea6b0c473b36ab8bfd8c6ce3]
+4.19-upstream-stable: released (4.19.47) [43caa29c99db5a41b204e8ced01b00e151335ca8]
+4.9-upstream-stable: released (4.9.190) [c98446e1bab6253ddce7144cc2a91c400a323839]
+3.16-upstream-stable: N/A "eBPF not implemented"
+sid: released (5.2.6-1)
+4.19-buster-security: released (4.19.67-1)
+4.9-stretch-security: released (4.9.210-1)
+3.16-jessie-security: N/A "eBPF not implemented"
author	Salvatore Bonaccorso <carnil@debian.org>	2020-02-09 21:22:45 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-02-09 21:22:45 +0100
commit	30e923c9029fa0f9ba1976670c8ee73cbf02169e (patch)
tree	87b0fd686e9a24569aaaf32fc5792062600f7517 /retired/CVE-2018-ebpf-filter-dos
parent	00d322afed3dc04e74ab0037716e96278c5b8ac6 (diff)