[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-36357 and CVE-2024-36350
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Jul 30 13:01:07 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0168cbb2 by Salvatore Bonaccorso at 2025-07-30T14:00:34+02:00
Update status for CVE-2024-36357 and CVE-2024-36350
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6663,6 +6663,7 @@ CVE-2024-36357 (A transient execution vulnerability in some AMD processors may a
NOTE: https://aka.ms/enter-exit-leak
NOTE: https://www.microsoft.com/en-us/research/wp-content/uploads/2025/07/Enter-Exit-SP26.pdf
NOTE: https://gitlab.com/kernel-firmware/linux-firmware/-/commit/331eac9144402d6cfa02ff3b2888a40bb9a7a01a
+ NOTE: https://gitlab.com/kernel-firmware/linux-firmware/-/commit/3768c184de68a85b9df6697e7f93a2f61de90a99
CVE-2024-36350 (A transient execution vulnerability in some AMD processors may allow a ...)
- amd64-microcode <unfixed> (bug #1109035)
- linux 6.12.37-1
@@ -6674,6 +6675,7 @@ CVE-2024-36350 (A transient execution vulnerability in some AMD processors may a
NOTE: https://aka.ms/enter-exit-leak
NOTE: https://www.microsoft.com/en-us/research/wp-content/uploads/2025/07/Enter-Exit-SP26.pdf
NOTE: https://gitlab.com/kernel-firmware/linux-firmware/-/commit/331eac9144402d6cfa02ff3b2888a40bb9a7a01a
+ NOTE: https://gitlab.com/kernel-firmware/linux-firmware/-/commit/3768c184de68a85b9df6697e7f93a2f61de90a99
CVE-2025-7346 (Any unauthenticated attacker can bypass the localhost restrictions po ...)
- pyload <itp> (bug #1001980)
CVE-2025-7327 (The Widget for Google Reviews plugin for WordPress is vulnerable to Di ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0168cbb28089c569ddf4376bd97a2683a967d50d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0168cbb28089c569ddf4376bd97a2683a967d50d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250730/d06a0b44/attachment.htm>
More information about the debian-security-tracker-commits
mailing list