From b9e9e6d911be6ac1552d5d2fe051c3a1d960004c Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 19 Mar 2024 17:41:18 +0100
Subject: Some CVEs rejected in Linux Kernel CNA

---
 retired/CVE-2021-46907 | 16 ----------------
 retired/CVE-2021-46975 | 16 ----------------
 retired/CVE-2021-47084 | 15 ---------------
 retired/CVE-2021-47085 | 15 ---------------
 4 files changed, 62 deletions(-)
 delete mode 100644 retired/CVE-2021-46907
 delete mode 100644 retired/CVE-2021-46975
 delete mode 100644 retired/CVE-2021-47084
 delete mode 100644 retired/CVE-2021-47085

(limited to 'retired')

diff --git a/retired/CVE-2021-46907 b/retired/CVE-2021-46907
deleted file mode 100644
index df7ed7f3..00000000
--- a/retired/CVE-2021-46907
+++ /dev/null
@@ -1,16 +0,0 @@
-Description: KVM: VMX: Don't use vcpu->run->internal.ndata as an array index
-References:
-Notes:
- carnil> Introduced in 1aa561b1a4c0 ("kvm: x86: Add "last CPU" to some KVM_EXIT
- carnil> information"). Vulnerable versions: 5.9-rc1.
-Bugs:
-upstream: released (5.12-rc8) [04c4f2ee3f68c9a4bf1653d15f1a9a435ae33f7a]
-6.7-upstream-stable: N/A "Fixed before branching point"
-6.6-upstream-stable: N/A "Fixed before branching point"
-6.1-upstream-stable: N/A "Fixed before branching point"
-5.10-upstream-stable: released (5.10.32) [7f64753835a78c7d2cc2932a5808ef3b7fd4c050]
-4.19-upstream-stable: N/A "Vulnerable code not present"
-sid: released (5.10.38-1)
-6.1-bookworm-security: N/A "Fixed before branching point"
-5.10-bullseye-security: N/A "Fixed before branching point"
-4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/retired/CVE-2021-46975 b/retired/CVE-2021-46975
deleted file mode 100644
index a7416215..00000000
--- a/retired/CVE-2021-46975
+++ /dev/null
@@ -1,16 +0,0 @@
-Description: netfilter: conntrack: Make global sysctls readonly in non-init netns
-References:
-Notes:
- carnil> Introduced in d0febd81ae77 ("netfilter: conntrack: re-visit sysctls in
- carnil> unprivileged namespaces"). Vulnerable versions: 5.7-rc1.
-Bugs:
-upstream: released (5.13-rc1) [2671fa4dc0109d3fb581bc3078fdf17b5d9080f6]
-6.7-upstream-stable: N/A "Fixed before branching point"
-6.6-upstream-stable: N/A "Fixed before branching point"
-6.1-upstream-stable: N/A "Fixed before branching point"
-5.10-upstream-stable: released (5.10.35) [d3598eb3915cc0c0d8cab42f4a6258ff44c4033e]
-4.19-upstream-stable: released (4.19.191) [9b288479f7a901a14ce703938596438559d7df55]
-sid: released (5.10.38-1)
-6.1-bookworm-security: N/A "Fixed before branching point"
-5.10-bullseye-security: N/A "Fixed before branching point"
-4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/retired/CVE-2021-47084 b/retired/CVE-2021-47084
deleted file mode 100644
index ea7c2f58..00000000
--- a/retired/CVE-2021-47084
+++ /dev/null
@@ -1,15 +0,0 @@
-Description: hamradio: defer ax25 kfree after unregister_netdev
-References:
-Notes:
- carnil> First introducing commit could not be determined.
-Bugs:
-upstream: released (5.16-rc1) [3e0588c291d6ce225f2b891753ca41d45ba42469]
-6.7-upstream-stable: N/A "Fixed before branching point"
-6.6-upstream-stable: N/A "Fixed before branching point"
-6.1-upstream-stable: N/A "Fixed before branching point"
-5.10-upstream-stable: released (5.10.89) [450121075a6a6f1d50f97225d3396315309d61a1]
-4.19-upstream-stable: released (4.19.223) [896193a02a2981e60c40d4614fd095ce92135ccd]
-sid: released (5.15.15-1)
-6.1-bookworm-security: N/A "Fixed before branching point"
-5.10-bullseye-security: released (5.10.92-1)
-4.19-buster-security: released (4.19.232-1)
diff --git a/retired/CVE-2021-47085 b/retired/CVE-2021-47085
deleted file mode 100644
index c3ea36a3..00000000
--- a/retired/CVE-2021-47085
+++ /dev/null
@@ -1,15 +0,0 @@
-Description: hamradio: improve the incomplete fix to avoid NPD
-References:
-Notes:
- carnil> First introducing commit could not be determined.
-Bugs:
-upstream: released (5.16-rc7) [b2f37aead1b82a770c48b5d583f35ec22aabb61e]
-6.7-upstream-stable: N/A "Fixed before branching point"
-6.6-upstream-stable: N/A "Fixed before branching point"
-6.1-upstream-stable: N/A "Fixed before branching point"
-5.10-upstream-stable: released (5.10.89) [7dd52af1eb5798f590d9d9e1c56ed8f5744ee0ca]
-4.19-upstream-stable: released (4.19.223) [b68f41c6320b2b7fbb54a95f07a69f3dc7e56c59]
-sid: released (5.15.15-1)
-6.1-bookworm-security: N/A "Fixed before branching point"
-5.10-bullseye-security: released (5.10.92-1)
-4.19-buster-security: released (4.19.232-1)
-- 
cgit v1.2.3