Description: user-triggerable read-after-free crash or 1-bit infoleak oracle in open(2)
References:
 https://www.openwall.com/lists/oss-security/2020/01/28/2
Notes:
Bugs:
upstream: released (5.5) [d0cb50185ae9]
4.19-upstream-stable: needed
4.9-upstream-stable: N/A "Introduced in 4.19 with 30aba6656f61"
3.16-upstream-stable: N/A "Introduced in 4.19 with 30aba6656f61"
sid: needed
4.19-buster-security: needed
4.9-stretch-security: N/A "Introduced in 4.19 with 30aba6656f61"
3.16-jessie-security: N/A "Introduced in 4.19 with 30aba6656f61"