[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Jul 3 09:56:52 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cb7ee977 by Salvatore Bonaccorso at 2025-07-03T10:56:35+02:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,9 +1,25 @@
+CVE-2025-38099 [Bluetooth: Disable SCO support if READ_VOICE_SETTING is unsupported/broken]
+ - linux 6.12.32-1
+ NOTE: https://git.kernel.org/linus/14d17c78a4b1660c443bae9d38c814edea506f62 (6.15-rc1)
+CVE-2025-38098 [drm/amd/display: Don't treat wb connector as physical in create_validate_stream_for_sink]
+ - linux 6.12.32-1
+ NOTE: https://git.kernel.org/linus/cbf4890c6f28fb1ad733e14613fbd33c2004bced (6.15-rc1)
+CVE-2025-38097 [espintcp: remove encap socket caching to avoid reference leak]
+ - linux 6.12.32-1
+ NOTE: https://git.kernel.org/linus/028363685bd0b7a19b4a820f82dd905b1dc83999 (6.15)
+CVE-2025-38096 [wifi: iwlwifi: don't warn when if there is a FW error]
+ - linux 6.12.32-1
+ NOTE: https://git.kernel.org/linus/c7f50d0433a016d43681592836a3d484817bfb34 (6.15-rc1)
CVE-2025-5944 (The Element Pack Addons for Elementor plugin for WordPress is vulnerab ...)
NOT-FOR-US: WordPress plugin
CVE-2025-38095 (In the Linux kernel, the following vulnerability has been resolved: d ...)
- TODO: check
+ - linux 6.12.30-1
+ [bookworm] - linux 6.1.140-1
+ NOTE: https://git.kernel.org/linus/72c7d62583ebce7baeb61acce6057c361f73be4a (6.15-rc7)
CVE-2025-38094 (In the Linux kernel, the following vulnerability has been resolved: n ...)
- TODO: check
+ - linux 6.12.30-1
+ [bookworm] - linux 6.1.140-1
+ NOTE: https://git.kernel.org/linus/c92d6089d8ad7d4d815ebcedee3f3907b539ff1f (6.15-rc7)
CVE-2024-9017 (The PeepSo Core: Groups plugin for WordPress is vulnerable to Stored C ...)
NOT-FOR-US: WordPress plugin
CVE-2025-6943 (Secret Server version 11.7 and earlier is vulnerable to a SQL report c ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb7ee977be6d329151917005d2f090fce8da93ca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb7ee977be6d329151917005d2f090fce8da93ca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250703/baf38342/attachment.htm>
More information about the debian-security-tracker-commits
mailing list