[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 8 19:36:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d39e9c4b by Salvatore Bonaccorso at 2025-04-08T20:33:15+02:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,44 @@
+CVE-2025-22017 [devlink: fix xa_alloc_cyclic() error handling]
+ - linux 6.12.21-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/f3b97b7d4bf316c3991e5634c9f4847c2df35478 (6.14)
+CVE-2025-22016 [dpll: fix xa_alloc_cyclic() error handling]
+ - linux 6.12.21-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/3614bf90130d60f191a5fe218d04f6251c678e13 (6.14)
+CVE-2025-22015 [mm/migrate: fix shmem xarray update during migration]
+ - linux 6.12.21-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/60cf233b585cdf1f3c5e52d1225606b86acd08b0 (6.14)
+CVE-2025-22014 [soc: qcom: pdr: Fix the potential deadlock]
+ - linux 6.12.21-1
+ NOTE: https://git.kernel.org/linus/2eeb03ad9f42dfece63051be2400af487ddb96d2 (6.14)
+CVE-2025-22013 [KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state]
+ - linux 6.12.21-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/fbc7e61195e23f744814e78524b73b59faa54ab4 (6.14-rc3)
+CVE-2025-22012 [Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on apps_smmu"]
+ - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/f00db31d235946853fb430de8c6aa1295efc8353 (6.14)
+CVE-2025-22011 [ARM: dts: bcm2711: Fix xHCI power-domain]
+ - linux 6.12.21-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/f44fa354a0715577ca32b085f6f60bcf32c748dd (6.14)
+CVE-2025-22010 [RDMA/hns: Fix soft lockup during bt pages loop]
+ - linux 6.12.21-1
+ NOTE: https://git.kernel.org/linus/25655580136de59ec89f09089dd28008ea440fc9 (6.14)
+CVE-2025-22009 [regulator: dummy: force synchronous probing]
+ - linux 6.12.21-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/8619909b38eeebd3e60910158d7d68441fc954e9 (6.14)
+CVE-2025-22008 [regulator: check that dummy regulator has been probed before using it]
+ - linux 6.12.21-1
+ NOTE: https://git.kernel.org/linus/2c7a50bec4958f1d1c84d19cde518d0e96a676fd (6.14)
CVE-2025-31498 [use-after-free]
- c-ares 1.34.5-1
[bookworm] - c-ares <not-affected> (Vulnerable code not present)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d39e9c4b04a21ca8bb1f53083a1e7284ef9dcb74
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d39e9c4b04a21ca8bb1f53083a1e7284ef9dcb74
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250408/1d084fdc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list