[Git][security-tracker-team/security-tracker][master] Merge Linux CVE updates from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 18 20:42:36 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
89c1000d by Salvatore Bonaccorso at 2024-06-18T21:41:41+02:00
Merge Linux CVE updates from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,20 @@
+CVE-2024-36977 [usb: dwc3: Wait unconditionally after issuing EndXfer command]
+ - linux 6.8.11-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ [buster] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/1d26ba0944d398f88aaf997bda3544646cf21945 (6.10-rc1)
+CVE-2024-36976 [Revert "media: v4l2-ctrls: show all owned controls in log_status"]
+ - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/eba63df7eb1f95df6bfb67722a35372b6994928d (6.10-rc1)
+CVE-2024-36975 [KEYS: trusted: Do not use WARN when encode fails]
+ - linux 6.8.11-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ [buster] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/050bf3c793a07f96bd1e2fd62e1447f731ed733b (6.10-rc1)
+CVE-2024-36974 [net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP]
+ - linux <unfixed>
+ [buster] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/f921a58ae20852d188f70842431ce6519c4fdc36 (6.10-rc3)
CVE-2024-6084 (A vulnerability has been found in itsourcecode Pool of Bethesda Online ...)
NOT-FOR-US: itsourcecode Pool of Bethesda Online Reservation System
CVE-2024-6083 (A vulnerability, which was classified as critical, was found in PHPVib ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89c1000df7a5af293b1b5d322f2942bf7fd0210b
--
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/89c1000df7a5af293b1b5d322f2942bf7fd0210b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240618/99cf162d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list