[Git][security-tracker-team/security-tracker][master] CVE-2023-4969/firmware-nonfree: buster postponed
Sylvain Beucler (@beuc)
beuc at debian.org
Wed Jan 24 12:34:14 GMT 2024
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits:
006a456c by Sylvain Beucler at 2024-01-24T13:33:46+01:00
CVE-2023-4969/firmware-nonfree: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1506,6 +1506,7 @@ CVE-2023-4969 (A GPU kernel can read sensitive data from another GPU kernel (eve
- firmware-nonfree <unfixed>
[bookworm] - firmware-nonfree <postponed> (Minor issue, revisit when updates are available)
[bullseye] - firmware-nonfree <no-dsa> (Non-free not supported)
+ [buster] - firmware-nonfree <postponed> (Minor issue, revisit when updates are available)
NOTE: https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/
NOTE: https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6010.html
CVE-2023-4797 (The Newsletters WordPress plugin before 4.9.3 does not properly escape ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/006a456c7811d95c691fb697c0b1aec1bd8c7237
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/006a456c7811d95c691fb697c0b1aec1bd8c7237
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240124/006e0e5d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list