[Git][security-tracker-team/security-tracker][master] new linux issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Tue Oct 17 19:54:30 BST 2023 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6a243a80 by Moritz Mühlenhoff at 2023-10-17T20:53:58+02:00
new linux issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -312,7 +312,8 @@ CVE-2023-5588 (A vulnerability was found in kphrx pleroma. It has been classifie
 CVE-2023-5587 (A vulnerability was found in SourceCodester Free Hospital Management S ...)
 	NOT-FOR-US: SourceCodester
 CVE-2023-45898 (The Linux kernel before 6.5.4 has an es1 use-after-free in fs/ext4/ext ...)
-	TODO: check
+	- linux 6.5.6-1
+	NOTE: https://git.kernel.org/linus/768d612f79822d30a1e7d132a4d4b05337ce42ec
 CVE-2023-45757 (Security vulnerability in Apache bRPC <=1.6.0 on all platforms allows  ...)
 	NOT-FOR-US: Apache bRPC
 CVE-2023-45580 (Buffer Overflow vulnerability in DI-7003GV2.D1 v.23.08.25D1 and before ...)
@@ -340,7 +341,8 @@ CVE-2023-44809 (D-Link device DIR-820L 1.05B03 is vulnerable to Insecure Permiss
 CVE-2023-44808 (D-Link DIR-820L 1.05B03 has a stack overflow vulnerability in the sub_ ...)
 	NOT-FOR-US: D-Link
 CVE-2023-40791 (extract_user_to_sg in lib/scatterlist.c in the Linux kernel before 6.4 ...)
-	TODO: check
+	- linux 6.4.13-1
+	NOTE: https://git.kernel.org/linus/f443fd5af5dbd531f880d3645d5dd36976cf087f
 CVE-2023-40790
 	REJECTED
 CVE-2023-40377 (Backup, Recovery, and Media Services (BRMS) for IBM i 7.2, 7.3, and 7. ...)
@@ -382,11 +384,14 @@ CVE-2023-5586 (NULL Pointer Dereference in GitHub repository gpac/gpac prior to
 CVE-2023-5585 (A vulnerability was found in SourceCodester Online Motorcycle Rental S ...)
 	NOT-FOR-US: SourceCodester
 CVE-2023-45871 (An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c i ...)
-	TODO: check
+	- linux 6.5.3-1
+	NOTE: https://git.kernel.org/linus/bb5ed01cd2428cd25b1c88a3a9cba87055eb289f
 CVE-2023-45863 (An issue was discovered in lib/kobject.c in the Linux kernel before 6. ...)
-	TODO: check
+	- linux 6.4.11-1
+	NOTE: https://git.kernel.org/linus/3bb2a01caa813d3a1845d378bbe4169ef280d394
 CVE-2023-45862 (An issue was discovered in drivers/usb/storage/ene_ub6250.c for the EN ...)
-	TODO: check
+	- linux 6.4.11-1
+	NOTE: https://git.kernel.org/linus/ce33e64c1788912976b61314b56935abd4bc97ef
 CVE-2023-40378 (IBM Directory Server for IBM i contains a local privilege escalation v ...)
 	NOT-FOR-US: IBM
 CVE-2023-5582 (A vulnerability, which was classified as problematic, has been found i ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a243a801a61794b6aa6f57b816e99ee7632b841

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a243a801a61794b6aa6f57b816e99ee7632b841
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231017/2d20ce31/attachment.htm>

More information about the debian-security-tracker-commits mailing list