[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 3 16:42:45 BST 2024



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19b150a2 by Salvatore Bonaccorso at 2024-05-03T17:42:07+02:00
Merge Linux CVEs from kernel-sec

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,27 @@
+CVE-2022-48675 [IB/core: Fix a nested dead lock as part of ODP flow]
+	- linux 5.19.11-1
+	[bullseye] - linux 5.10.148-1
+	[buster] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/85eaeb5058f0f04dffb124c97c86b4f18db0b833 (6.0-rc5)
+CVE-2022-48674 [erofs: fix pcluster use-after-free on UP platforms]
+	- linux 5.19.11-1
+	NOTE: https://git.kernel.org/linus/2f44013e39984c127c6efedf70e6b5f4e9dcf315 (6.0-rc5)
+CVE-2022-48673 [net/smc: Fix possible access to freed memory in link clear]
+	- linux 5.19.11-1
+	NOTE: https://git.kernel.org/linus/e9b1a4f867ae9c1dbd1d71cd09cbdb3239fb4968 (6.0-rc5)
+CVE-2022-48672 [of: fdt: fix off-by-one error in unflatten_dt_nodes()]
+	- linux 5.19.11-1
+	[bullseye] - linux 5.10.148-1
+	[buster] - linux 4.19.260-1
+	NOTE: https://git.kernel.org/linus/2f945a792f67815abca26fa8a5e863ccf3fa1181 (6.0-rc6)
+CVE-2022-48671 [cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()]
+	- linux 5.19.11-1
+	[bullseye] - linux 5.10.148-1
+	[buster] - linux 4.19.282-1
+	NOTE: https://git.kernel.org/linus/43626dade36fa74d3329046f4ae2d7fdefe401c6 (6.0-rc3)
+CVE-2022-48670 [peci: cpu: Fix use-after-free in adev_release()]
+	- linux 5.19.11-1
+	NOTE: https://git.kernel.org/linus/1c11289b34ab67ed080bbe0f1855c4938362d9cf (6.0-rc4)
 CVE-2024-4418 [stack use-after-free in virNetClientIOEventLoop()]
 	- libvirt <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2278616



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19b150a20b913a1e5f2d9aa63018313d50d8ba39

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/19b150a20b913a1e5f2d9aa63018313d50d8ba39
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240503/9bc4f750/attachment.htm>


More information about the debian-security-tracker-commits mailing list