[Git][security-tracker-team/security-tracker][master] Sync CVEs for linux with kernel-sec for fixes via unstable
Salvatore Bonaccorso
carnil at debian.org
Sun Jan 19 10:27:48 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0e8fea85 by Salvatore Bonaccorso at 2020-01-19T11:27:10+01:00
Sync CVEs for linux with kernel-sec for fixes via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7718,7 +7718,7 @@ CVE-2019-19966 (In the Linux kernel before 5.1.6, there is a use-after-free in c
NOTE: https://git.kernel.org/linus/dea37a97265588da604c6ba80160a287b72c7bfd
CVE-2019-19965 (In the Linux kernel through 5.4.6, there is a NULL pointer dereference ...)
{DLA-2068-1}
- - linux <unfixed>
+ - linux 5.4.13-1
NOTE: https://git.kernel.org/linus/f70267f379b5e5e11bdc5d72a56bf17e5feed01f
CVE-2019-19964
RESERVED
@@ -14647,7 +14647,7 @@ CVE-2019-19079 (A memory leak in the qrtr_tun_write_iter() function in net/qrtr/
[jessie] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/a21b7f0cff1906a93a0130b74713b15a0b36481d
CVE-2019-19078 (A memory leak in the ath10k_usb_hif_tx_sg() function in drivers/net/wi ...)
- - linux <unfixed>
+ - linux 5.4.13-1
[stretch] - linux <not-affected> (Vulnerable code not present)
[jessie] - linux <not-affected> (Vulnerable code not present)
CVE-2019-19077 (A memory leak in the bnxt_re_create_srq() function in drivers/infiniba ...)
@@ -14688,21 +14688,21 @@ CVE-2019-19069 (A memory leak in the fastrpc_dma_buf_attach() function in driver
[jessie] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/fc739a058d99c9297ef6bfd923b809d85855b9a9
CVE-2019-19068 (A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net ...)
- - linux <unfixed>
+ - linux 5.4.13-1
[jessie] - linux <not-affected> (Vulnerable code not present)
CVE-2019-19067 (** DISPUTED ** Four memory leaks in the acp_hw_init() function in driv ...)
- linux 5.3.9-1 (unimportant)
NOTE: https://git.kernel.org/linus/57be09c6e8747bf48704136d9e3f92bfb93f5725
CVE-2019-19066 (A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/ ...)
{DLA-2068-1}
- - linux <unfixed>
+ - linux 5.4.13-1
CVE-2019-19065 (A memory leak in the sdma_init() function in drivers/infiniband/hw/hfi ...)
- linux 5.3.9-1
[stretch] - linux <not-affected> (Vulnerability introduced later)
[jessie] - linux <not-affected> (Vulnerability introduced later)
NOTE: https://git.kernel.org/linus/34b3be18a04ecdc610aae4c48e5d1b799d8689f6
CVE-2019-19064 (** DISPUTED ** A memory leak in the fsl_lpspi_probe() function in driv ...)
- - linux <unfixed> (unimportant)
+ - linux 5.4.13-1 (unimportant)
CVE-2019-19063 (Two memory leaks in the rtl_usb_probe() function in drivers/net/wirele ...)
- linux 5.4.8-1 (unimportant)
CVE-2019-19062 (A memory leak in the crypto_report() function in crypto/crypto_user_ba ...)
@@ -14729,7 +14729,7 @@ CVE-2019-19057 (Two memory leaks in the mwifiex_pcie_init_evt_ring() function in
- linux 5.4.8-1
CVE-2019-19056 (A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() function in drive ...)
{DLA-2068-1}
- - linux <unfixed>
+ - linux 5.4.13-1
CVE-2019-19055 (** DISPUTED ** A memory leak in the nl80211_get_ftm_responder_stats() ...)
- linux 5.4.6-1 (unimportant)
[buster] - linux <not-affected> (Vulnerable code introduced later)
@@ -14740,7 +14740,7 @@ CVE-2019-19054 (A memory leak in the cx23888_ir_probe() function in drivers/medi
- linux <unfixed> (unimportant)
NOTE: Memory leak on probe only.
CVE-2019-19053 (A memory leak in the rpmsg_eptdev_write_iter() function in drivers/rpm ...)
- - linux <unfixed>
+ - linux 5.4.13-1
[buster] - linux <not-affected> (Vulnerable code not present)
[stretch] - linux <not-affected> (Vulnerable code not present)
[jessie] - linux <not-affected> (Vulnerable code not present)
@@ -15351,7 +15351,7 @@ CVE-2019-18810 (A memory leak in the komeda_wb_connector_add() function in drive
NOTE: https://git.kernel.org/linus/a0ecd6fdbf5d648123a7315c695fb6850d702835
NOTE: CONFIG_DRM_KOMEDA not enabled in Debian builds.
CVE-2019-18809 (A memory leak in the af9005_identify_state() function in drivers/media ...)
- - linux <unfixed>
+ - linux 5.4.13-1
[jessie] - linux <not-affected> (Bug introduced later)
CVE-2019-18808 (A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ ...)
- linux <unfixed> (unimportant)
@@ -29479,7 +29479,7 @@ CVE-2019-14902
RESERVED
CVE-2019-14901 (A heap overflow flaw was found in the Linux kernel, all versions 3.x.x ...)
{DLA-2068-1}
- - linux <unfixed>
+ - linux 5.4.13-1
NOTE: https://www.openwall.com/lists/oss-security/2019/11/22/2
CVE-2019-14900
RESERVED
@@ -29498,7 +29498,7 @@ CVE-2019-14896 (A heap-based buffer overflow vulnerability was found in the Linu
NOTE: https://www.openwall.com/lists/oss-security/2019/11/22/1
CVE-2019-14895 (A heap-based buffer overflow was discovered in the Linux kernel, all v ...)
{DLA-2068-1}
- - linux <unfixed>
+ - linux 5.4.13-1
NOTE: https://www.openwall.com/lists/oss-security/2019/11/22/1
CVE-2019-14894
RESERVED
@@ -30407,7 +30407,7 @@ CVE-2019-14617
CVE-2019-14616
RESERVED
CVE-2019-14615 (Insufficient control flow in certain data structures for some Intel(R) ...)
- - linux <unfixed>
+ - linux 5.4.13-1
[jessie] - linux <not-affected> (Driver doesn't support this hardware)
NOTE: https://git.kernel.org/linus/bc8a76a152c5f9ef3b48104154a65a68a8b76946
CVE-2019-14614
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e8fea8588c23c1fcaef837e6b3e2ac83d6c4351
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e8fea8588c23c1fcaef837e6b3e2ac83d6c4351
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200119/df385279/attachment.html>
More information about the debian-security-tracker-commits
mailing list