[Git][security-tracker-team/security-tracker][master] Update information on CVE-2024-2193 and CVE-2024-26602

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Mar 12 19:52:39 GMT 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a02e61d0 by Salvatore Bonaccorso at 2024-03-12T20:51:03+01:00
Update information on CVE-2024-2193 and CVE-2024-26602

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -37,6 +37,12 @@ CVE-2023-28746 [RFDS: Register File Data Sampling]
 	NOTE: https://www.openwall.com/lists/oss-security/2024/03/12/13
 	NOTE: https://xenbits.xen.org/xsa/advisory-452.html
 	NOTE: https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/register-file-data-sampling.html
+CVE-2024-2193 [GhostRace: Speculative Race Conditions]
+	- linux <unfixed>
+	- xen <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2024/03/12/14
+	NOTE: https://www.vusec.net/projects/ghostrace/
+	NOTE: https://xenbits.xen.org/xsa/advisory-453.html
 CVE-2024-28199 (phlex is an open source framework for building object-oriented views i ...)
 	TODO: check
 CVE-2024-28163 (Under certain conditions, Support Web Pages of SAP NetWeaver Process I ...)
@@ -4332,6 +4338,7 @@ CVE-2024-26601 (In the Linux kernel, the following vulnerability has been resolv
 CVE-2024-26602 (In the Linux kernel, the following vulnerability has been resolved:  s ...)
 	- linux 6.7.7-1
 	NOTE: https://git.kernel.org/linus/944d5fe50f3f03daacfea16300e656a1691c4a23 (6.8-rc6)
+	NOTE: https://www.vusec.net/projects/ghostrace/
 CVE-2024-26603 (In the Linux kernel, the following vulnerability has been resolved:  x ...)
 	- linux 6.7.7-1
 	[bullseye] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a02e61d0d9bfbaa1684309c7bdd6d8b9a9ec0b9e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a02e61d0d9bfbaa1684309c7bdd6d8b9a9ec0b9e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240312/e63b53e1/attachment.htm>

More information about the debian-security-tracker-commits mailing list