[Git][security-tracker-team/security-tracker][master] Add three new CVEs from Linux kernel CNA

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c7870773 by Salvatore Bonaccorso at 2025-06-06T19:14:09+02:00
Add three new CVEs from Linux kernel CNA

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,12 @@
+CVE-2025-38002 [io_uring/fdinfo: grab ctx->uring_lock around io_uring_show_fdinfo()]
+	- linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/d871198ee431d90f5308d53998c1ba1d5db5619a (6.15-rc7)
+CVE-2025-38001 [net_sched: hfsc: Address reentrant enqueue adding class to eltree twice]
+	- linux <unfixed>
+	NOTE: https://git.kernel.org/linus/ac9fe7dd8e730a103ae4481147395cc73492d786
+CVE-2025-38000 [sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()]
+	- linux <unfixed>
+	NOTE: https://git.kernel.org/linus/3f981138109f63232a5fb7165938d4c945cc1b9d (6.15)
 CVE-2025-5736 (A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has ...)
 	NOT-FOR-US: TOTOLINK
 CVE-2025-5735 (A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and cla ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c787077374e5401a124766504a5000c5b25cfd1b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c787077374e5401a124766504a5000c5b25cfd1b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250606/3897e73a/attachment.htm>