Retire inactive issues

2 files changed, 28 insertions, 0 deletions

diff --git a/retired/CVE-2022-1651 b/retired/CVE-2022-1651
new file mode 100644
index 000000000..1d54b1173
--- /dev/null
+++ b/retired/CVE-2022-1651
@@ -0,0 +1,15 @@
+Description: virt: acrn: fix a memory leak in acrn_dev_ioctl()
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2083455
+ https://lore.kernel.org/all/20220308092047.1008409-1-butterflyhuangxx@gmail.com/
+Notes:
+ bwh> This driver was added in 5.12-rc1.
+Bugs:
+upstream: released (5.18-rc1) [ecd1735f14d6ac868ae5d8b7a2bf193fa11f388b]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+4.9-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.17.3-1)
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
+4.9-stretch-security: N/A "Vulnerable code not present"
diff --git a/retired/CVE-2022-20008 b/retired/CVE-2022-20008
new file mode 100644
index 000000000..da492f071
--- /dev/null
+++ b/retired/CVE-2022-20008
@@ -0,0 +1,13 @@
+Description: mmc: block: fix read single on recovery logic
+References:
+ https://source.android.com/security/bulletin/2022-05-01
+Notes:
+Bugs:
+upstream:  released (5.17-rc5) [54309fde1a352ad2674ebba004a79f7d20b9f037]
+5.10-upstream-stable: released (5.10.102) [ab2b4e65a130d67478bd5b35ca9004b2075805fa]
+4.19-upstream-stable: released (4.19.231) [c91b06297563e84ac072464fe6cc141cc15435f0]
+4.9-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.16.11-1)
+5.10-bullseye-security: released (5.10.103-1)
+4.19-buster-security: released (4.19.232-1)
+4.9-stretch-security: N/A "Vulnerable code not present"