From 3908a6015a5614e3d7c9e969d2c6fd6a7342a401 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Sun, 25 Feb 2024 17:36:21 +0100 Subject: Retire all recent assigned CVEs already fixed everywhere --- retired/CVE-2021-46904 | 16 ++++++++++++++++ retired/CVE-2021-46905 | 17 +++++++++++++++++ retired/CVE-2022-48626 | 14 ++++++++++++++ 3 files changed, 47 insertions(+) create mode 100644 retired/CVE-2021-46904 create mode 100644 retired/CVE-2021-46905 create mode 100644 retired/CVE-2022-48626 (limited to 'retired') diff --git a/retired/CVE-2021-46904 b/retired/CVE-2021-46904 new file mode 100644 index 00000000..11d61712 --- /dev/null +++ b/retired/CVE-2021-46904 @@ -0,0 +1,16 @@ +Description: net: hso: fix null-ptr-deref during tty device unregistration +References: +Notes: + carnil> Introduced in 72dc1c096c705 ("HSO: add option hso driver"). Vulnerable + carnil> versions: 2.6.27-rc1. +Bugs: +upstream: released (5.12-rc7) [8a12f8836145ffe37e9c8733dce18c22fb668b66] +6.7-upstream-stable: N/A "Fixed before branching point" +6.6-upstream-stable: N/A "Fixed before branching point" +6.1-upstream-stable: N/A "Fixed before branching point" +5.10-upstream-stable: released (5.10.30) [dc195928d7e4ec7b5cfc6cd10dc4c8d87a7c72ac] +4.19-upstream-stable: released (4.19.187) [92028d7a31e55d53e41cff679156b9432cffcb36] +sid: released (5.10.38-1) +6.1-bookworm-security: N/A "Fixed before branching point" +5.10-bullseye-security: N/A "Fixed before branching point" +4.19-buster-security: released (4.19.194-1) diff --git a/retired/CVE-2021-46905 b/retired/CVE-2021-46905 new file mode 100644 index 00000000..26e5cb73 --- /dev/null +++ b/retired/CVE-2021-46905 @@ -0,0 +1,17 @@ +Description: net: hso: fix NULL-deref on disconnect regression +References: +Notes: + carnil> Introduced in 8a12f8836145 ("net: hso: fix null-ptr-deref during tty device + carnil> unregistration"). Vulnerable versions: 4.4.268 4.9.268 4.14.232 4.19.187 + carnil> 5.4.112 5.10.30 5.11.14 5.12-rc7. +Bugs: +upstream: released (5.13-rc1) [2ad5692db72874f02b9ad551d26345437ea4f7f3] +6.7-upstream-stable: N/A "Fixed before branching point" +6.6-upstream-stable: N/A "Fixed before branching point" +6.1-upstream-stable: N/A "Fixed before branching point" +5.10-upstream-stable: released (5.10.33) [90642ee9eb581a13569b1c0bd57e85d962215273] +4.19-upstream-stable: released (4.19.189) [5c17cfe155d21954b4c7e2a78fa771cebcd86725] +sid: released (5.10.38-1) +6.1-bookworm-security: N/A "Fixed before branching point" +5.10-bullseye-security: N/A "Fixed before branching point" +4.19-buster-security: released (4.19.194-1) diff --git a/retired/CVE-2022-48626 b/retired/CVE-2022-48626 new file mode 100644 index 00000000..ca1c47f1 --- /dev/null +++ b/retired/CVE-2022-48626 @@ -0,0 +1,14 @@ +Description: moxart: fix potential use-after-free on remove path +References: +Notes: +Bugs: +upstream: released (5.17-rc4) [bd2db32e7c3e35bd4d9b8bbff689434a50893546] +6.7-upstream-stable: N/A "Fixed before branching point" +6.6-upstream-stable: N/A "Fixed before branching point" +6.1-upstream-stable: N/A "Fixed before branching point" +5.10-upstream-stable: released (5.10.100) [be93028d306dac9f5b59ebebd9ec7abcfc69c156] +4.19-upstream-stable: released (4.19.229) [9c25d5ff1856b91bd4365e813f566cb59aaa9552] +sid: released (5.16.10-1) +6.1-bookworm-security: N/A "Fixed before branching point" +5.10-bullseye-security: N/A "Fixed before branching point" +4.19-buster-security: released (4.19.232-1) -- cgit v1.2.3