[Git][security-tracker-team/security-tracker][master] Sync some CVEs for linux with kernel-sec tracking

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Oct 27 19:44:50 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c0ed555 by Salvatore Bonaccorso at 2021-10-27T20:44:16+02:00
Sync some CVEs for linux with kernel-sec tracking

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2796,6 +2796,8 @@ CVE-2021-42328
 	RESERVED
 CVE-2021-42327 (dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu ...)
 	- linux <unfixed>
+	[buster] - linux <not-affected> (Vulnerability introduced later)
+	[stretch] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: https://lists.freedesktop.org/archives/amd-gfx/2021-October/070170.html
 CVE-2021-42326 (Redmine before 4.1.5 and 4.2.x before 4.2.3 may disclose the names of  ...)
 	{DLA-2787-1}
@@ -7183,6 +7185,7 @@ CVE-2021-40440 (Microsoft Dynamics Business Central Cross-site Scripting Vulnera
 CVE-2021-3764 [DoS in ccp_run_aes_gcm_cmd() function]
 	RESERVED
 	- linux 5.14.12-1
+	[stretch] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1997467
 	NOTE: https://git.kernel.org/linus/505d9dcb0f7ddf9d075e729523a33d38642ae680 (5.15-rc4)
 CVE-2021-3763
@@ -7867,6 +7870,7 @@ CVE-2021-3745
 CVE-2021-3744 [crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()]
 	RESERVED
 	- linux 5.14.12-1
+	[stretch] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2000627
 	NOTE: https://git.kernel.org/linus/505d9dcb0f7ddf9d075e729523a33d38642ae680 (5.15-rc4)
 CVE-2021-40153 (squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the file ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c0ed555ed2697280cc2079748936653d15226e2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3c0ed555ed2697280cc2079748936653d15226e2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211027/f2b20b12/attachment.htm>

More information about the debian-security-tracker-commits mailing list