[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
27db892d by Salvatore Bonaccorso at 2026-01-23T17:22:22+01:00
Merge Linux CVEs from kernel-sec

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,30 @@
+CVE-2025-71155 [KVM: s390: Fix gmap_helper_zap_one_page() again]
+	- linux 6.18.5-1
+	[trixie] - linux <not-affected> (Vulnerable code not present)
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/2f393c228cc519ddf19b8c6c05bf15723241aa96 (6.19-rc1)
+CVE-2025-71157 [RDMA/core: always drop device refcount in ib_del_sub_device_and_put()]
+	- linux 6.18.5-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/fa3c411d21ebc26ffd175c7256c37cefa35020aa (6.19-rc4)
+CVE-2025-71156 [gve: defer interrupt enabling until NAPI registration]
+	- linux 6.18.5-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/3d970eda003441f66551a91fda16478ac0711617 (6.19-rc4)
+CVE-2025-71154 [net: usb: rtl8150: fix memory leak on usb_submit_urb() failure]
+	- linux 6.18.5-1
+	NOTE: https://git.kernel.org/linus/12cab1191d9890097171156d06bfa8d31f1e39c8 (6.19-rc4)
+CVE-2025-71153 [ksmbd: Fix memory leak in get_file_all_info()]
+	- linux 6.18.5-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/0c56693b06a68476ba113db6347e7897475f9e4c (6.19-rc4)
+CVE-2025-71152 [net: dsa: properly keep track of conduit reference]
+	- linux 6.18.5-1
+	NOTE: https://git.kernel.org/linus/06e219f6a706c367c93051f408ac61417643d2f9 (6.19-rc4)
 CVE-2025-71151 [cifs: Fix memory and information leak in smb3_reconfigure()]
 	- linux 6.18.3-1
 	[bookworm] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27db892d0e5bc0995cbd847b1c56882e46f51591

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/27db892d0e5bc0995cbd847b1c56882e46f51591
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260123/770d3953/attachment.htm>