[Git][security-tracker-team/security-tracker][master] Track fixed version for some CVEs via linux upload to unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
68cd3fc1 by Salvatore Bonaccorso at 2020-12-17T07:15:04+01:00
Track fixed version for some CVEs via linux upload to unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1824,10 +1824,10 @@ CVE-2020-29663 (Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where r
 CVE-2020-29662
 	RESERVED
 CVE-2020-29661 (A locking issue was discovered in the tty subsystem of the Linux kerne ...)
-	- linux <unfixed>
+	- linux 5.9.15-1
 	NOTE: https://git.kernel.org/linus/54ffccbf053b5b6ca4f6e45094b942fab92a25fc
 CVE-2020-29660 (A locking inconsistency issue was discovered in the tty subsystem of t ...)
-	- linux <unfixed>
+	- linux 5.9.15-1
 	NOTE: https://git.kernel.org/linus/c8bcd9c5be24fb9e6132e97da5a35e55a83e36b9
 CVE-2020-29659 (A buffer overflow in the web server of Flexense DupScout Enterprise 10 ...)
 	NOT-FOR-US: Flexense DupScout Enterprise
@@ -2561,10 +2561,10 @@ CVE-2020-29570 (An issue was discovered in Xen through 4.14.x. Recording of the
 	[stretch] - xen <end-of-life> (DSA 4602-1)
 	NOTE: https://xenbits.xen.org/xsa/advisory-358.html
 CVE-2020-29569 (An issue was discovered in the Linux kernel through 5.10.1, as used wi ...)
-	- linux <unfixed>
+	- linux 5.9.15-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-350.html
 CVE-2020-29568 (An issue was discovered in Xen through 4.14.x. Some OSes (such as Linu ...)
-	- linux <unfixed>
+	- linux 5.9.15-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-349.html
 CVE-2020-29567 (An issue was discovered in Xen 4.14.x. When moving IRQs between CPUs t ...)
 	- xen 4.14.0+88-g1d1d1f5391-1
@@ -5945,7 +5945,7 @@ CVE-2020-28589
 	RESERVED
 CVE-2020-28588 [lib/syscall: fix syscall registers retrieval on 32-bit platforms]
 	RESERVED
-	- linux <unfixed>
+	- linux 5.9.15-1
 	[buster] - linux <not-affected> (Vulnerable code not present)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/4f134b89a24b965991e7c345b9a4591821f7c2a6
@@ -9446,7 +9446,7 @@ CVE-2020-27836
 	NOT-FOR-US: OpenShift
 CVE-2020-27835 [IB/hfi1: Ensure correct mm is used at all times]
 	RESERVED
-	- linux <unfixed>
+	- linux 5.9.15-1
 	NOTE: https://git.kernel.org/linus/3d2a9d642512c21a12d19b9250e7a835dcb41a79
 CVE-2020-27834 [attacker can send the same request over and over again without changing the CSRF token]
 	RESERVED
@@ -9465,7 +9465,7 @@ CVE-2020-27831
 	NOT-FOR-US: Quay
 CVE-2020-27830 [Linux kernel NULL-ptr deref bug in spk_ttyio_receive_buf2]
 	RESERVED
-	- linux <unfixed>
+	- linux 5.9.15-1
 	[stretch] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/12/07/1
 	NOTE: https://git.kernel.org/linus/f0992098cadb4c9c6a00703b66cafe604e178fea



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68cd3fc17653c612e6d29d5c3aaae752c53bc89b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68cd3fc17653c612e6d29d5c3aaae752c53bc89b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201217/62687d74/attachment.html>