[Git][security-tracker-team/security-tracker][master] Sync status of some linux CVEs with kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 1 20:24:02 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
df1aa63a by Salvatore Bonaccorso at 2024-05-01T21:22:21+02:00
Sync status of some linux CVEs with kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,8 +1,5 @@
CVE-2024-27392 [nvme: host: fix double-free of struct nvme_id_ns in ns_update_nuse()]
- - linux <unfixed>
- [bookworm] - linux <not-affected> (Vulnerable code not present)
- [bullseye] - linux <not-affected> (Vulnerable code not present)
- [buster] - linux <not-affected> (Vulnerable code not present)
+ - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/8d0d2447394b13fb22a069f0330f9c49b7fff9d3 (6.9-rc1)
CVE-2024-27391 [wifi: wilc1000: do not realloc workqueue everytime an interface is added]
- linux 6.7.12-1
@@ -65,22 +62,13 @@ CVE-2024-27072 [media: usbtv: Remove useless locks in usbtv_video_free()]
- linux <unfixed>
NOTE: https://git.kernel.org/linus/65e6a2773d655172143cc0b927cdc89549842895 (6.9-rc1)
CVE-2024-27071 [backlight: hx8357: Fix potential NULL pointer dereference]
- - linux <unfixed>
- [bookworm] - linux <not-affected> (Vulnerable code not present)
- [bullseye] - linux <not-affected> (Vulnerable code not present)
- [buster] - linux <not-affected> (Vulnerable code not present)
+ - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b1ba8bcb2d1ffce11b308ce166c9cc28d989e3b9 (6.9-rc1)
CVE-2024-27070 [f2fs: fix to avoid use-after-free issue in f2fs_filemap_fault]
- - linux <unfixed>
- [bookworm] - linux <not-affected> (Vulnerable code not present)
- [bullseye] - linux <not-affected> (Vulnerable code not present)
- [buster] - linux <not-affected> (Vulnerable code not present)
+ - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/eb70d5a6c932d9d23f4bb3e7b83782c21ac4b064 (6.9-rc1)
CVE-2024-27069 [ovl: relax WARN_ON in ovl_verify_area()]
- - linux <unfixed>
- [bookworm] - linux <not-affected> (Vulnerable code not present)
- [bullseye] - linux <not-affected> (Vulnerable code not present)
- [buster] - linux <not-affected> (Vulnerable code not present)
+ - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/77a28aa476873048024ad56daf8f4f17d58ee48e (6.9-rc1)
CVE-2024-27068 [thermal/drivers/mediatek/lvts_thermal: Fix a memory leak in an error handling path]
- linux 6.7.12-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df1aa63aea5ff25dcbbda48939d1ed17910a85c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/df1aa63aea5ff25dcbbda48939d1ed17910a85c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240501/3ee85b11/attachment.htm>
More information about the debian-security-tracker-commits
mailing list