[Git][security-tracker-team/security-tracker][master] Track fixed version for linux issues via unstable

Tue Mar 15 07:00:10 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6ca096a8 by Salvatore Bonaccorso at 2022-03-15T07:59:36+01:00
Track fixed version for linux issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3482,7 +3482,7 @@ CVE-2022-25810
 	RESERVED
 CVE-2022-0742 [ipv6: fix skb drops in igmp6_event_query() and igmp6_event_report()]
 	RESERVED
-	- linux <unfixed>
+	- linux 5.16.14-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
 	[buster] - linux <not-affected> (Vulnerable code not present)
 	[stretch] - linux <not-affected> (Vulnerable code not present)
@@ -5881,7 +5881,7 @@ CVE-2022-24959 (An issue was discovered in the Linux kernel before 5.16.5. There
 	[stretch] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: https://git.kernel.org/linus/29eb31542787e1019208a2e1047bb7c76c069536 (5.17-rc2)
 CVE-2022-24958 (drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 m ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: Fixed by: https://git.kernel.org/linus/89f3594d0de58e8a57d92d497dea9fee3d4b9cda (5.17-rc1)
 	NOTE: Fixed by: https://git.kernel.org/linus/501e38a5531efbd77d5c73c0ba838a889bfc1d74 (5.17-rc1)
 CVE-2022-24957
@@ -9015,7 +9015,7 @@ CVE-2022-23962
 CVE-2022-23961
 	RESERVED
 CVE-2022-23960 (Certain Arm Cortex and Neoverse processors through 2022-03-08 do not p ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://www.vusec.net/projects/bhi-spectre-bhb/
 	NOTE: https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/spectre-bhb
 	NOTE: https://xenbits.xen.org/xsa/advisory-398.html
@@ -12360,25 +12360,25 @@ CVE-2022-23044
 CVE-2022-23043 (Zenario CMS 9.2 allows an authenticated admin user to bypass the file  ...)
 	NOT-FOR-US: Zenario CMS
 CVE-2022-23042 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23041 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23040 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23039 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23038 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23037 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23036 (Linux PV device frontends vulnerable to attacks by backends T[his CNA  ...)
-	- linux <unfixed>
+	- linux 5.16.14-1
 	NOTE: https://xenbits.xen.org/xsa/advisory-396.html
 CVE-2022-23035 (Insufficient cleanup of passed-through device IRQs The management of I ...)
 	- xen 4.16.0+51-g0941d6cb-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ca096a8bc529fa5b9854a7ab8dbc4399293df3d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ca096a8bc529fa5b9854a7ab8dbc4399293df3d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220315/161d2c9f/attachment.htm>
