[Git][security-tracker-team/security-tracker][master] Add CVE-2023-31315/amd64-microcode
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Aug 10 16:48:02 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
29cd5b71 by Salvatore Bonaccorso at 2024-08-10T17:47:38+02:00
Add CVE-2023-31315/amd64-microcode
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -130,7 +130,10 @@ CVE-2024-22114 (User with no permission to any of the Hosts can access and view
CVE-2023-38018 (IBM Aspera Shares 1.10.0 PL2 does not invalidate session after a passw ...)
NOT-FOR-US: IBM
CVE-2023-31315 (Improper validation in a model specific register (MSR) could allow a m ...)
- TODO: check
+ - amd64-microcode <unfixed>
+ [bookworm] - amd64-microcode <postponed> (Might be batched in the next point release)
+ [bullseye] - amd64-microcode <postponed> (Might be batched in last point release)
+ NOTE: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html
CVE-2024-41890 (Missing Release of Resource after Effective Lifetime vulnerability in ...)
NOT-FOR-US: Apache Answer
CVE-2024-41888 (Missing Release of Resource after Effective Lifetime vulnerability in ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29cd5b7185e80dbc4a75272b1f10c621752b4b3f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29cd5b7185e80dbc4a75272b1f10c621752b4b3f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240810/764b43cf/attachment.htm>
More information about the debian-security-tracker-commits
mailing list