[Git][security-tracker-team/security-tracker][master] Merge already the linux changes for 9.10 point release in advance

Salvatore Bonaccorso carnil at debian.org
Sat Sep 7 10:04:52 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b8fe61f by Salvatore Bonaccorso at 2019-09-07T09:03:59Z
Merge already the linux changes for 9.10 point release in advance

- - - - -


2 changed files:

- data/CVE/list
- data/next-oldstable-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -338,6 +338,7 @@ CVE-2019-15927 (An issue was discovered in the Linux kernel before 4.20.2. An ou
 CVE-2019-15926 (An issue was discovered in the Linux kernel before 5.2.3. Out of bound ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.189-1
 	NOTE: https://git.kernel.org/linus/5d6751eaff672ea77642e74e92e6c0ac7f9709ab
 CVE-2019-15925 (An issue was discovered in the Linux kernel before 5.2.3. An out of bo ...)
 	- linux 5.2.6-1
@@ -362,6 +363,7 @@ CVE-2017-18595 (An issue was discovered in the Linux kernel before 4.14.11. A do
 CVE-2019-15924 (An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_ ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/01ca667133d019edc9f0a1f70a272447c84ec41f
 CVE-2019-15923 (An issue was discovered in the Linux kernel before 5.0.9. There is a N ...)
 	- linux 5.2.6-1 (unimportant)
@@ -699,6 +701,7 @@ CVE-2019-15789
 CVE-2019-15807 (In the Linux kernel before 5.1.13, there is a memory leak in drivers/s ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/3b0541791453fbe7f42867e310e0c9eb6295364d
 CVE-2019-15788 (Clara Genomics Analysis before 0.2.0 has an integer overflow for cudap ...)
 	NOT-FOR-US: Clara Genomics Analysis
@@ -1043,6 +1046,7 @@ CVE-2019-15667
 CVE-2019-15666 (An issue was discovered in the Linux kernel before 5.0.19. There is an ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	[jessie] - linux 3.16.72-1
 	NOTE: https://git.kernel.org/linus/b805d78d300bcf2c83d6df7da0c818b0fee41427
 CVE-2019-15665
@@ -1408,6 +1412,7 @@ CVE-2019-15539
 CVE-2019-15538 (An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in ...)
 	- linux <unfixed>
 	[buster] - linux 4.19.67-2
+	[stretch] - linux 4.9.189-2
 	[jessie] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: https://git.kernel.org/linus/1fb254aa983bf190cfd685d40c64a480a9bafaee
 CVE-2019-15537 (The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL I ...)
@@ -2157,6 +2162,7 @@ CVE-2019-15240
 	RESERVED
 CVE-2019-15292 (An issue was discovered in the Linux kernel before 5.0.9. There is a u ...)
 	- linux 4.19.37-1
+	[stretch] - linux 4.9.184-1
 CVE-2019-15291 (An issue was discovered in the Linux kernel through 5.2.9. There is a  ...)
 	- linux <unfixed>
 	NOTE: https://www.openwall.com/lists/oss-security/2019/08/20/2
@@ -2213,18 +2219,22 @@ CVE-2019-15222 (An issue was discovered in the Linux kernel before 5.2.8. There
 CVE-2019-15221 (An issue was discovered in the Linux kernel before 5.1.17. There is a  ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.185-1
 	NOTE: https://git.kernel.org/linus/3450121997ce872eb7f1248417225827ea249710
 CVE-2019-15220 (An issue was discovered in the Linux kernel before 5.2.1. There is a u ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.189-1
 	NOTE: https://git.kernel.org/linus/6e41e2257f1094acc37618bf6c856115374c6922
 CVE-2019-15219 (An issue was discovered in the Linux kernel before 5.1.8. There is a N ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/9a5729f68d3a82786aea110b1bfe610be318f80a
 CVE-2019-15218 (An issue was discovered in the Linux kernel before 5.1.8. There is a N ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/31e0456de5be379b10fea0fa94a681057114a96e
 CVE-2019-15217 (An issue was discovered in the Linux kernel before 5.2.3. There is a N ...)
 	- linux 5.2.6-1
@@ -2233,10 +2243,12 @@ CVE-2019-15216 (An issue was discovered in the Linux kernel before 5.0.14. There
 	{DLA-1884-1}
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/ef61eb43ada6c1d6b94668f0f514e4c268093ff3
 CVE-2019-15215 (An issue was discovered in the Linux kernel before 5.2.6. There is a u ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.189-1
 	NOTE: https://git.kernel.org/linus/eff73de2b1600ad8230692f00bc0ab49b166512a
 CVE-2019-15214 (An issue was discovered in the Linux kernel before 5.0.10. There is a  ...)
 	{DLA-1884-1}
@@ -2248,10 +2260,12 @@ CVE-2019-15213 (An issue was discovered in the Linux kernel before 5.2.3. There
 CVE-2019-15212 (An issue was discovered in the Linux kernel before 5.1.8. There is a d ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	NOTE: https://git.kernel.org/linus/3864d33943b4a76c6e64616280e98d2410b1190f
 CVE-2019-15211 (An issue was discovered in the Linux kernel before 5.2.6. There is a u ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.189-1
 	NOTE: https://git.kernel.org/linus/c666355e60ddb4748ead3bdd983e3f7f2224aaf0
 CVE-2018-20978 (The wp-all-import plugin before 3.4.7 for WordPress has XSS. ...)
 	NOT-FOR-US: Wordpress plugin
@@ -13866,6 +13880,7 @@ CVE-2019-11488 (Incorrect Access Control in the Account Access / Password Reset
 	NOT-FOR-US: SimplyBook.me Enterprise
 CVE-2019-11487 (The Linux kernel before 5.1-rc5 allows page->_refcount reference co ...)
 	- linux 4.19.37-1
+	[stretch] - linux 4.9.184-1
 	[jessie] - linux <ignored> (Minor issue and high risk of regression)
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1752
 	NOTE: https://lwn.net/Articles/786044/
@@ -17412,6 +17427,7 @@ CVE-2019-10143 (** DISPUTED ** It was discovered freeradius up to and including
 CVE-2019-10142 (A flaw was found in the Linux kernel's freescale hypervisor manager im ...)
 	- linux 5.2.6-1 (unimportant)
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.184-1
 	[jessie] - linux 3.16.70-1
 	NOTE: Fixed by: https://git.kernel.org/linus/6a024330650e24556b8a18cc654ad00cfecf6c6c
 	NOTE: CONFIG_FSL_HV_MANAGER not enabled in kernel builds in Debian.
@@ -20225,6 +20241,7 @@ CVE-2019-9507
 CVE-2019-9506 (The Bluetooth BR/EDR specification up to and including version 5.1 per ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.185-1
 	NOTE: Hardware issue, but mitigation in Linux kernel can be applied:
 	NOTE: https://git.kernel.org/linus/d5bb334a8e171b262e48f378bd2096c0ea458265 (5.2-rc1)
 	NOTE: https://git.kernel.org/linus/693cd8ce3f882524a5d06f7800dd8492411877b3 (5.2-rc6)
@@ -35521,12 +35538,12 @@ CVE-2018-20512 (EPON CPE-WiFi devices 2.0.4-X000 are vulnerable to escalation of
 	NOT-FOR-US: EPON CPE-WiFi devices
 CVE-2018-20510 (The print_binder_transaction_ilocked function in drivers/android/binde ...)
 	- linux 4.16.5-1
-	[stretch] - linux <postponed> (Vulnerable code present but not enabled, will be fixed with rebase to 4.9.181)
+	[stretch] - linux 4.9.184-1
 	[jessie] - linux 3.16.57-1
 	NOTE: https://git.kernel.org/linus/8ca86f1639ec5890d400fff9211aca22d0a392eb
 CVE-2018-20509 (The print_binder_ref_olocked function in drivers/android/binder.c in t ...)
 	- linux 4.14.2-1
-	[stretch] - linux <ignored> (debugfs restricted to root by default)
+	[stretch] - linux 4.9.184-1
 	[jessie] - linux <ignored> (debugfs restricted to root by default)
 	NOTE: https://security.netapp.com/advisory/ntap-20190517-0002/
 CVE-2018-20508 (CrashFix 1.0.4 has SQL Injection via the User[status] parameter. This  ...)
@@ -46107,6 +46124,7 @@ CVE-2019-0137
 CVE-2019-0136 (Insufficient access control in the Intel(R) PROSet/Wireless WiFi Softw ...)
 	- linux 5.2.6-1
 	[buster] - linux 4.19.67-1
+	[stretch] - linux 4.9.185-1
 	NOTE: https://git.kernel.org/linus/79c92ca42b5a3e0ea172ea2ce8df8e125af237da
 	NOTE: https://git.kernel.org/linus/588f7d39b3592a36fb7702ae3b8bdd9be4621e2f
 CVE-2019-0135 (Improper permissions in the installer for Intel(R) Accelerated Storage ...)


=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -85,50 +85,6 @@ CVE-2017-11746
 	[stretch] - tenshi 0.13-2.1~deb9u1
 CVE-2019-13031
 	[stretch] - lemonldap-ng 1.9.7-3+deb9u2
-CVE-2019-15924
-	[stretch] - linux 4.9.184-1
-CVE-2019-11487
-	[stretch] - linux 4.9.184-1
-CVE-2019-10142
-	[stretch] - linux 4.9.184-1
-CVE-2015-8553
-	[stretch] - linux 4.9.184-1
-CVE-2018-20510
-	[stretch] - linux 4.9.184-1
-CVE-2018-20509
-	[stretch] - linux 4.9.184-1
-CVE-2019-15212
-	[stretch] - linux 4.9.184-1
-CVE-2019-15216
-	[stretch] - linux 4.9.184-1
-CVE-2019-15218
-	[stretch] - linux 4.9.184-1
-CVE-2019-15219
-	[stretch] - linux 4.9.184-1
-CVE-2019-15292
-	[stretch] - linux 4.9.184-1
-CVE-2019-10142
-	[stretch] - linux 4.9.184-1
-CVE-2019-15666
-	[stretch] - linux 4.9.184-1
-CVE-2019-15807
-	[stretch] - linux 4.9.184-1
-CVE-2019-0136
-	[stretch] - linux 4.9.185-1
-CVE-2019-15221
-	[stretch] - linux 4.9.185-1
-CVE-2019-9506
-	[stretch] - linux 4.9.185-1
-CVE-2019-15220
-	[stretch] - linux 4.9.189-1
-CVE-2019-15211
-	[stretch] - linux 4.9.189-1
-CVE-2019-15215
-	[stretch] - linux 4.9.189-1
-CVE-2019-15926
-	[stretch] - linux 4.9.189-1
-CVE-2019-15538
-	[stretch] - linux 4.9.189-2
 CVE-2019-10153
 	[stretch] - fence-agents 4.0.25-1+deb9u1
 CVE-2016-10711



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b8fe61fcd75ac3dfeff538cdb7ed380d2982419

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b8fe61fcd75ac3dfeff538cdb7ed380d2982419
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190907/4e3a82bd/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list