[Git][security-tracker-team/security-tracker][master] Add three CVEs fixed in 4.19.118-1 to buster in 10.4

Salvatore Bonaccorso carnil at debian.org
Sat May 16 14:24:42 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
16b2ba8e by Salvatore Bonaccorso at 2020-05-16T15:24:29+02:00
Add three CVEs fixed in 4.19.118-1 to buster in 10.4

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25825,6 +25825,7 @@ CVE-2019-19769 (In the Linux kernel 5.3.10, there is a use-after-free (read) in
 	NOTE: https://git.kernel.org/linus/6d390e4b5d48ec03bb87e63cf0a2bff5f4e116da
 CVE-2019-19768 (In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the ...)
 	- linux 5.5.13-1
+	[buster] - linux 4.19.118-1
 	NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=205711
 CVE-2019-19767 (The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as d ...)
 	{DLA-2114-1 DLA-2068-1}
@@ -29977,6 +29978,7 @@ CVE-2020-1750
 CVE-2020-1749 [net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup]
 	RESERVED
 	- linux 5.4.6-1
+	[buster] - linux 4.19.118-1
 	NOTE: https://git.kernel.org/linus/6c8991f41546c3c472503dff1ea9daaddf9331c2
 CVE-2020-1748
 	RESERVED
@@ -36555,6 +36557,7 @@ CVE-2020-0068 (In crus_afe_get_param of msm-cirrus-playback.c, there is a possib
 	NOT-FOR-US: Android
 CVE-2020-0067 (In f2fs_xattr_generic_list of xattr.c, there is a possible out of boun ...)
 	- linux 5.5.13-1
+	[buster] - linux 4.19.118-1
 	[jessie] - linux <ignored> (f2fs is not supportable)
 	NOTE: https://git.kernel.org/linus/688078e7f36c293dae25b338ddc9e0a2790f6e06
 CVE-2020-0066 (In the netlink driver, there is a possible out of bounds write due to  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16b2ba8e8bec0711446fecba48e776d84f4a83ca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/16b2ba8e8bec0711446fecba48e776d84f4a83ca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200516/7e789f63/attachment.html>


More information about the debian-security-tracker-commits mailing list