[Git][security-tracker-team/security-tracker][master] Add CVE-2023-39192/linux
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Oct 5 08:06:25 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d4c4dd31 by Salvatore Bonaccorso at 2023-10-05T09:01:31+02:00
Add CVE-2023-39192/linux
- - - - -
3 changed files:
- data/CVE/list
- data/next-oldstable-point-update.txt
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -86,6 +86,10 @@ CVE-2023-3038 (SQL injection vulnerability in HelpDezk Community affecting versi
TODO: check
CVE-2023-3037 (Improper authorization vulnerability in HelpDezk Community affecting v ...)
TODO: check
+CVE-2023-39192 [netfilter: xt_u32: validate user space input]
+ - linux 6.5.3-1
+ NOTE: https://www.zerodayinitiative.com/advisories/ZDI-23-1490/
+ NOTE: https://git.kernel.org/linus/69c5d284f67089b4750d28ff6ac6f52ec224b330 (6.6-rc1)
CVE-2023-39191 (An improper input validation flaw was found in the eBPF subsystem in t ...)
- linux 6.3.7-1 (unimportant)
[bullseye] - linux <not-affected> (Vulnerable code not present)
=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -228,6 +228,8 @@ CVE-2023-44469
[bullseye] - lemonldap-ng 2.0.11+ds-4+deb11u5
CVE-2021-38185
[bullseye] - cpio 2.13+dfsg-7.1~deb11u1
+CVE-2023-39192
+ [bullseye] - linux 5.10.197-1
CVE-2023-1989
[bullseye] - linux 5.10.197-1
CVE-2023-20588
=====================================
data/next-point-update.txt
=====================================
@@ -63,6 +63,8 @@ CVE-2023-43115
[bookworm] - ghostscript 10.0.0~dfsg-11+deb12u2
CVE-2023-44469
[bookworm] - lemonldap-ng 2.16.1+ds-deb12u2
+CVE-2023-39192
+ [bookworm] - linux 6.1.55-1
CVE-2023-25775
[bookworm] - linux 6.1.55-1
CVE-2023-4244
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4c4dd311df2af2efc4e5f8031b415c4b100d5e5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d4c4dd311df2af2efc4e5f8031b415c4b100d5e5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231005/4006f66a/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list