[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Jun 9 13:54:39 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
03d203f3 by Salvatore Bonaccorso at 2026-06-09T14:51:34+02:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2026-52907 [media: rockchip: rkcif: fix off by one bugs]
+ - linux 7.0.4-1
+ [trixie] - linux <not-affected> (Vulnerable code not present)
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/e4056b84af0fc18c84b4e5741df04ecd8ca17973 (7.1-rc1)
+CVE-2026-52906 [9p: fix access mode flags being ORed instead of replaced]
+ - linux 7.0.4-1
+ [trixie] - linux <not-affected> (Vulnerable code not present)
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/da2346a48a5a1fed86c3fe3d73c0b60e7b3027c9 (7.1-rc1)
+CVE-2026-52905 [mm/damon/core: disallow non-power of two min_region_sz on damon_start()]
+ - linux 7.0.4-1
+ [trixie] - linux <not-affected> (Vulnerable code not present)
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/95093e5cb4c5b50a5b1a4b79f2942b62744bd66a (7.1-rc1)
+CVE-2026-52904 [drm/nouveau: fix nvkm_device leak on aperture removal failure]
+ - linux 7.0.4-1
+ [trixie] - linux 6.12.86-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/6597ff1d8de3f583be169587efeafd8af134e138 (7.1-rc1)
+CVE-2026-46332 [greybus: gb-beagleplay: bound bootloader receive buffering]
+ - linux 7.0.4-1
+ [trixie] - linux 6.12.86-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/1214bf28965ceaf584fb20d357731264dd2e10e1 (7.1-rc1)
CVE-2026-46329 [erofs: handle end of filesystem properly for file-backed mounts]
- linux 6.18.14-1
[trixie] - linux 6.12.85-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03d203f329c7263a9cf05df1756bcaaff2df6378
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03d203f329c7263a9cf05df1756bcaaff2df6378
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260609/06250e8a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list