From fd435f58f59e6cca547192c1ec292b60d3e5d51e Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Thu, 10 Sep 2020 10:30:05 +0200 Subject: Retire CVE-2020-25220 --- active/CVE-2020-25220 | 14 -------------- retired/CVE-2020-25220 | 14 ++++++++++++++ 2 files changed, 14 insertions(+), 14 deletions(-) delete mode 100644 active/CVE-2020-25220 create mode 100644 retired/CVE-2020-25220 diff --git a/active/CVE-2020-25220 b/active/CVE-2020-25220 deleted file mode 100644 index d6218be6..00000000 --- a/active/CVE-2020-25220 +++ /dev/null @@ -1,14 +0,0 @@ -Description: cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() -References: - https://www.spinics.net/lists/stable/msg405099.html -Notes: - carnil> Exists because of a backporting issue in the v4.9.y, v4.14.y - carnil> and v4.19.y stable series when backporting fix for CVE-2020- - carnil> 14356. -Bugs: -upstream: N/A "Vulnerable code not present" -4.19-upstream-stable: released (4.19.140) [38de4308c5c3319ae9c815b6d6aa8d2b5804bace] -4.9-upstream-stable: released (4.9.233) [f3b1d647251a94a6968a35e3d685dc8b1b24c3ff] -sid: N/A "Vulnerable code not present" -4.19-buster-security: N/A "No released version contains broken backport" -4.9-stretch-security: N/A "No released version contains broken backport" diff --git a/retired/CVE-2020-25220 b/retired/CVE-2020-25220 new file mode 100644 index 00000000..d6218be6 --- /dev/null +++ b/retired/CVE-2020-25220 @@ -0,0 +1,14 @@ +Description: cgroup: add missing skcd->no_refcnt check in cgroup_sk_clone() +References: + https://www.spinics.net/lists/stable/msg405099.html +Notes: + carnil> Exists because of a backporting issue in the v4.9.y, v4.14.y + carnil> and v4.19.y stable series when backporting fix for CVE-2020- + carnil> 14356. +Bugs: +upstream: N/A "Vulnerable code not present" +4.19-upstream-stable: released (4.19.140) [38de4308c5c3319ae9c815b6d6aa8d2b5804bace] +4.9-upstream-stable: released (4.9.233) [f3b1d647251a94a6968a35e3d685dc8b1b24c3ff] +sid: N/A "Vulnerable code not present" +4.19-buster-security: N/A "No released version contains broken backport" +4.9-stretch-security: N/A "No released version contains broken backport" -- cgit v1.2.3