[Git][security-tracker-team/security-tracker][master] Merge changes for stretch and linux/4.9.161-1

Salvatore Bonaccorso carnil at debian.org
Sat Apr 27 09:29:16 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8ef1b25c by Salvatore Bonaccorso at 2019-04-27T08:28:22Z
Merge changes for stretch and linux/4.9.161-1

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -11292,11 +11292,13 @@ CVE-2019-7223 (InvoicePlane 1.5 has stored XSS via the index.php/invoices/ajax/s
 CVE-2019-7222 (The KVM implementation in the Linux kernel through 4.20.5 has an Infor ...)
 	{DLA-1731-1}
 	- linux 4.19.20-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://git.kernel.org/linus/353c0956a618a07ba4bbe7ad00ff29fe70e8412a
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1759&desc=2
 CVE-2019-7221 (The KVM implementation in the Linux kernel through 4.20.5 has a Use-af ...)
 	{DLA-1731-1}
 	- linux 4.19.20-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://git.kernel.org/linus/ecec76885bcfe3294685dc363fd1273df0d5d65f
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1760
 CVE-2019-7220
@@ -11904,6 +11906,7 @@ CVE-2019-6975 (Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x befo
 CVE-2019-6974 (In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm ...)
 	{DLA-1731-1}
 	- linux 4.19.20-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://git.kernel.org/linus/cfa39381173d5f969daf43582c95ad679189cbc9
 CVE-2019-6973 (Sricam IP CCTV cameras are vulnerable to denial of service via multipl ...)
 	NOT-FOR-US: Sricam IP CCTV cameras
@@ -19178,6 +19181,7 @@ CVE-2019-3820 (It was discovered that the gnome-shell lock screen since version
 CVE-2019-3819 (A flaw was found in the Linux kernel in the function hid_debug_events_ ...)
 	{DLA-1731-1}
 	- linux 4.19.20-1
+	[stretch] - linux 4.9.161-1
 	NOTE: Proposed patch: https://marc.info/?l=linux-input&m=154841031101012&w=2
 CVE-2019-3818 (The kube-rbac-proxy container before version 0.4.1 as used in Red Hat  ...)
 	NOT-FOR-US: kube-rbac-proxy
@@ -19452,6 +19456,7 @@ CVE-2019-3702
 CVE-2019-3701 (An issue was discovered in can_can_gw_rcv in net/can/gw.c in the Linux ...)
 	{DLA-1731-1}
 	- linux 4.19.20-1 (unimportant)
+	[stretch] - linux 4.9.161-1
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1120386
 	NOTE: https://marc.info/?l=linux-netdev&m=154651842302479&w=2
 CVE-2019-3700
@@ -21715,6 +21720,7 @@ CVE-2018-20170 (** DISPUTED ** OpenStack Keystone through 14.0.1 has a user enum
 CVE-2018-20169 (An issue was discovered in the Linux kernel before 4.19.9. The USB sub ...)
 	{DLA-1731-1}
 	- linux 4.19.9-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://git.kernel.org/linus/704620afc70cf47abb9d6a1a57f3825d2bca49cf
 CVE-2018-20168 (Google gVisor before 2018-08-22 reuses a pagetable in a different leve ...)
 	NOT-FOR-US: gVisor
@@ -25198,6 +25204,7 @@ CVE-2018-19986
 CVE-2018-19985 (The function hso_get_config_data in drivers/net/usb/hso.c in the Linux ...)
 	{DLA-1731-1}
 	- linux 4.19.13-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://git.kernel.org/linus/5146f95df782b0ac61abde36567e718692725c89
 CVE-2018-19984
 	RESERVED
@@ -26539,6 +26546,7 @@ CVE-2018-19825
 CVE-2018-19824 (In the Linux kernel through 4.19.6, a local user could exploit a use-a ...)
 	{DLA-1731-1}
 	- linux 4.19.9-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1118152
 CVE-2018-19823
 	RESERVED
@@ -37186,6 +37194,7 @@ CVE-2018-16885 (A flaw was found in the Linux kernel that allows the userspace t
 CVE-2018-16884 (A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares ...)
 	{DLA-1731-1}
 	- linux 4.19.16-1
+	[stretch] - linux 4.9.161-1
 	NOTE: https://patchwork.kernel.org/cover/10733767/
 	NOTE: https://patchwork.kernel.org/patch/10733769/
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1660375
@@ -43081,6 +43090,7 @@ CVE-2018-14626 (PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and Po
 	NOTE: https://downloads.powerdns.com/patches/2018-06/
 CVE-2018-14625 (A flaw was found in the Linux Kernel where an attacker may be able to  ...)
 	- linux 4.19.9-1
+	[stretch] - linux 4.9.161-1
 	[jessie] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://syzkaller.appspot.com/bug?extid=bd391451452fb0b93039
 CVE-2018-14624 (A vulnerability was discovered in 389-ds-base through versions 1.3.7.1 ...)
@@ -65885,6 +65895,7 @@ CVE-2018-1000029 (mcholste Enterprise Log Search and Archive (ELSA) version revi
 	NOT-FOR-US: mcholste Enterprise Log Search and Archive
 CVE-2018-1000026 (Linux Linux kernel version at least v4.8 onwards, probably well before ...)
 	- linux 4.16.5-1
+	[stretch] - linux 4.9.161-1
 	[jessie] - linux-4.9 <unfixed>
 	NOTE: https://patchwork.ozlabs.org/patch/859410/
 	NOTE: http://lists.openwall.net/netdev/2018/01/16/40
@@ -67470,7 +67481,7 @@ CVE-2018-5954 (phpFreeChat 1.7 and earlier allows remote attackers to cause a de
 CVE-2018-5953 (The swiotlb_print_info function in lib/swiotlb.c in the Linux kernel t ...)
 	{DLA-1731-1}
 	- linux 4.15.4-1
-	[stretch] - linux <ignored> (kernel log restricted to root by default)
+	[stretch] - linux 4.9.161-1
 CVE-2018-5952
 	RESERVED
 CVE-2018-5951


=====================================
data/next-point-update.txt
=====================================
@@ -10,28 +10,6 @@ CVE-2018-1000872
 	[stretch] - python-pykmip 0.5.0-4+deb9u1
 CVE-2019-7443
 	[stretch] - kauth 5.28.0-2+deb9u1
-CVE-2018-20169
-	[stretch] - linux 4.9.161-1
-CVE-2018-19824
-	[stretch] - linux 4.9.161-1
-CVE-2018-14625
-	[stretch] - linux 4.9.161-1
-CVE-2018-19985
-	[stretch] - linux 4.9.161-1
-CVE-2018-16884
-	[stretch] - linux 4.9.161-1
-CVE-2019-3701
-	[stretch] - linux 4.9.161-1
-CVE-2019-7222
-	[stretch] - linux 4.9.161-1
-CVE-2019-6974
-	[stretch] - linux 4.9.161-1
-CVE-2019-7221
-	[stretch] - linux 4.9.161-1
-CVE-2019-3819
-	[stretch] - linux 4.9.161-1
-CVE-2018-1000026
-	[stretch] - linux 4.9.161-1
 CVE-2019-9213
 	[stretch] - linux 4.9.168-1
 CVE-2019-8980



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ef1b25ce2c343136eb6e7010d1eef7e5b18033b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ef1b25ce2c343136eb6e7010d1eef7e5b18033b
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190427/51171d5d/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list