Retire CVE-2023-4394

author: Salvatore Bonaccorso <carnil@debian.org> 2023-08-17 22:27:51 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2023-08-17 22:27:51 +0200
commit: 8de2ac596dad56eeb97e48e25ed100872984c77e (patch)
tree: b494b774c85c21dc1abccf6af47b6d02e58e5961 /retired
parent: e4ae1340fca2b9b86df238a2f0d4214259cade9a (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2023-4394 b/retired/CVE-2023-4394
new file mode 100644
index 00000000..0f20d414
--- /dev/null
+++ b/retired/CVE-2023-4394
@@ -0,0 +1,17 @@
+Description: btrfs: fix possible memory leak in btrfs_get_dev_args_from_path()
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=2219263
+ https://patchwork.kernel.org/project/linux-btrfs/patch/20220815151606.3479183-1-r33s3n6@gmail.com/
+Notes:
+ carnil> Commit fixes faa775c41d655 ("btrfs: add a
+ carnil> btrfs_get_dev_args_from_path helper") in 5.16-rc1 (and
+ carnil> backported to 5.15.54)
+Bugs:
+upstream: released (6.0-rc3) [9ea0106a7a3d8116860712e3f17cd52ce99f6707]
+6.1-upstream-stable: N/A "Fixed before branch point"
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (5.19.6-1)
+6.1-bookworm-security: N/A "Fixed before branch point"
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2023-08-17 22:27:51 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2023-08-17 22:27:51 +0200
commit	8de2ac596dad56eeb97e48e25ed100872984c77e (patch)
tree	b494b774c85c21dc1abccf6af47b6d02e58e5961 /retired
parent	e4ae1340fca2b9b86df238a2f0d4214259cade9a (diff)