Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2020-02-09 21:22:45 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-02-09 21:22:45 +0100
commit: 30e923c9029fa0f9ba1976670c8ee73cbf02169e (patch)
tree: 87b0fd686e9a24569aaaf32fc5792062600f7517 /retired/CVE-2019-19922
parent: 00d322afed3dc04e74ab0037716e96278c5b8ac6 (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/retired/CVE-2019-19922 b/retired/CVE-2019-19922
new file mode 100644
index 00000000..cfe4f6e3
--- /dev/null
+++ b/retired/CVE-2019-19922
@@ -0,0 +1,18 @@
+Description: sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices
+References:
+ https://github.com/kubernetes/kubernetes/issues/67577
+ https://relistan.com/the-kernel-may-be-slowing-down-your-app
+ https://bugzilla.kernel.org/show_bug.cgi?id=198197
+Notes:
+ bwh> Apparently introduced in 4.18 by commit 512ac999d275 "sched/fair:
+ bwh> Fix bandwidth timer clock drift condition", which was backported to
+ bwh> 3.16 and 4.14.
+Bugs:
+upstream: released (5.4-rc1) [de53fd7aedb100f03e5d2231cfce0e4993282425]
+4.19-upstream-stable: released (4.19.84) [502bd151448c2c76a927b26783e5538875c534ff]
+4.9-upstream-stable: N/A "Vulnerability introduced later"
+3.16-upstream-stable: released (3.16.81) [61749beefb4a12af7d91424bcd58ffdc072dad63]
+sid: released (5.3.9-1)
+4.19-buster-security: released (4.19.87-1)
+4.9-stretch-security: N/A "Vulnerability introduced later"
+3.16-jessie-security: released (3.16.81-1)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-02-09 21:22:45 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-02-09 21:22:45 +0100
commit	30e923c9029fa0f9ba1976670c8ee73cbf02169e (patch)
tree	87b0fd686e9a24569aaaf32fc5792062600f7517 /retired/CVE-2019-19922
parent	00d322afed3dc04e74ab0037716e96278c5b8ac6 (diff)