/
GSD-2023-1002409.json
61 lines (61 loc) · 2.61 KB
/
GSD-2023-1002409.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
{
"GSD": {
"vendor_name": "Linux",
"product_name": "Kernel",
"product_version": "versions from v4.15 to before v5.4.232",
"vulnerability_type": "unspecified",
"affected_component": "unspecified",
"attack_vector": "unspecified",
"impact": "unspecified",
"credit": "",
"references": [
"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=f404ca4c7ea8e650ba09ba87c71c7a89c865d5be",
"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=7896accedf5bf1277d2f305718e36dc8bac7e321"
],
"extended_references": [
{
"type": "commit",
"value": "f404ca4c7ea8e650ba09ba87c71c7a89c865d5be",
"note": "introduced"
},
{
"type": "commit",
"value": "7896accedf5bf1277d2f305718e36dc8bac7e321",
"note": "fixed"
}
],
"reporter": "joshbressers",
"reporter_id": 1692786,
"notes": "",
"description": "IB/hfi1: Restore allocated resources on failed copyout\n\nThis is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven.\nThis ID is fixed in Linux Kernel version v5.4.232 by commit 7896accedf5bf1277d2f305718e36dc8bac7e321, it was introduced in version v4.15 by commit f404ca4c7ea8e650ba09ba87c71c7a89c865d5be. For more details please see the references link."
},
"OSV": {
"id": "GSD-2023-1002409",
"modified": "2023-03-07T14:42:59.434720Z",
"published": "2023-03-07T14:42:59.434720Z",
"summary": "IB/hfi1: Restore allocated resources on failed copyout",
"details": "IB/hfi1: Restore allocated resources on failed copyout\n\nThis is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven.\nThis ID is fixed in Linux Kernel version v5.4.232 by commit 7896accedf5bf1277d2f305718e36dc8bac7e321, it was introduced in version v4.15 by commit f404ca4c7ea8e650ba09ba87c71c7a89c865d5be. For more details please see the references link.",
"affected": [
{
"package": {
"name": "Kernel",
"ecosystem": "Linux"
},
"ranges": [
{
"type": "GIT",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/",
"events": [
{
"introduced": "f404ca4c7ea8e650ba09ba87c71c7a89c865d5be"
},
{
"limit": "7896accedf5bf1277d2f305718e36dc8bac7e321"
}
]
}
]
}
]
}
}