[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Feb 10 16:52:14 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9578d46d by Salvatore Bonaccorso at 2025-02-10T17:51:47+01:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,40 @@
+CVE-2025-21693 [mm: zswap: properly synchronize freeing resources during CPU hotunplug]
+ - linux 6.12.12-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/12dcb0ef540629a281533f9dedc1b6b8e14cfb65 (6.13)
+CVE-2025-21692 [net: sched: fix ets qdisc OOB Indexing]
+ - linux 6.12.12-1
+ [bookworm] - linux 6.1.128-1
+ NOTE: https://git.kernel.org/linus/d62b04fca4340a0d468d7853bd66e511935a18cb (6.14-rc1)
+CVE-2025-21691 [cachestat: fix page cache statistics permission checking]
+ - linux 6.12.12-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/5f537664e705b0bf8b7e329861f20128534f6a83 (6.14-rc1)
+CVE-2025-21690 [scsi: storvsc: Ratelimit warning logs to prevent VM denial of service]
+ - linux 6.12.12-1
+ [bookworm] - linux 6.1.128-1
+ NOTE: https://git.kernel.org/linus/d2138eab8cde61e0e6f62d0713e45202e8457d6d (6.14-rc1)
+CVE-2025-21689 [USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb()]
+ - linux 6.12.12-1
+ [bookworm] - linux 6.1.128-1
+ NOTE: https://git.kernel.org/linus/575a5adf48b06a2980c9eeffedf699ed5534fade (6.14-rc1)
+CVE-2025-21688 [drm/v3d: Assign job pointer to NULL before signaling the fence]
+ - linux 6.12.12-1
+ [bookworm] - linux 6.1.128-1
+ NOTE: https://git.kernel.org/linus/6e64d6b3a3c39655de56682ec83e894978d23412 (6.14-rc1)
+CVE-2025-21687 [vfio/platform: check the bounds of read/write syscalls]
+ - linux 6.12.12-1
+ [bookworm] - linux 6.1.128-1
+ NOTE: https://git.kernel.org/linus/ce9ff21ea89d191e477a02ad7eabf4f996b80a69 (6.14-rc1)
+CVE-2025-21686 [io_uring/rsrc: require cloned buffers to share accounting contexts]
+ - linux 6.12.12-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/19d340a2988d4f3e673cded9dde405d727d7e248 (6.14-rc1)
+CVE-2024-57950 [drm/amd/display: Initialize denominator defaults to 1]
+ - linux 6.12.12-1
+ NOTE: https://git.kernel.org/linus/36b23e3baf9129d5b6c3a3a85b6b7ffb75ae287c (6.13)
CVE-2025-21685 (In the Linux kernel, the following vulnerability has been resolved: p ...)
- linux 6.12.11-1
[bookworm] - linux <not-affected> (Vulnerable code not present)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9578d46d79f7df624e22e91596fd308fdec26c25
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9578d46d79f7df624e22e91596fd308fdec26c25
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250210/c9ac51a0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list