From b475b51974bc3dfbad83ffe1e97e5f1bd7e910f5 Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 10 Jun 2022 13:03:25 +0200
Subject: more advisory text

---
 dsa-texts/5.10.120-1 | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/dsa-texts/5.10.120-1 b/dsa-texts/5.10.120-1
index 8ed29880..86084079 100644
--- a/dsa-texts/5.10.120-1
+++ b/dsa-texts/5.10.120-1
@@ -7,15 +7,21 @@ leaks.
 
 CVE-2022-0494
 
-    Description
+    The scsi_ioctl() was susceptible to an information leak only
+    exploitable by users with CAP_SYS_ADMIN or CAP_SYS_RAWIO
+    capabilities.
 
 CVE-2022-1012
 
-    Description
+    The randomisation when calculating port offsets in the IP implementation
+    was enhanced.
 
 CVE-2022-1729
 
-    Description
+    Norbert Slusarek discovered a race condition in the perf subsystem
+    which could result in local privilege escalation to root. The default
+    settings in Debian prevent exploitation unless more permissive settings
+    have been applied in the kernel.perf_event_paranoid sysctl.
 
 CVE-2022-1786
 
-- 
cgit v1.2.3