[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Mar 18 19:54:29 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ff8404a4 by Salvatore Bonaccorso at 2026-03-18T20:53:24+01:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,21 @@
+CVE-2026-23268 [apparmor: fix unprivileged local user can do privileged policy management]
+ - linux 6.19.6-2
+ [trixie] - linux 6.12.74-2
+ [bookworm] - linux 6.1.164-1
+ [bullseye] - linux 5.10.251-1
+ NOTE: https://git.kernel.org/linus/6601e13e82841879406bf9f369032656f441a425 (7.0-rc4)
+ NOTE: https://www.qualys.com/2026/03/10/crack-armor.txt
+CVE-2026-23269 [apparmor: validate DFA start states are in bounds in unpack_pdb]
+ - linux 6.19.6-2
+ [trixie] - linux 6.12.74-2
+ [bookworm] - linux 6.1.164-1
+ [bullseye] - linux 5.10.251-1
+ NOTE: https://git.kernel.org/linus/9063d7e2615f4a7ab321de6b520e23d370e58816 (7.0-rc4)
+ NOTE: https://www.qualys.com/2026/03/10/crack-armor.txt
+CVE-2026-23270 [net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and shared blocks]
+ - linux 6.19.8-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ NOTE: https://git.kernel.org/linus/11cb63b0d1a0685e0831ae3c77223e002ef18189 (7.0-rc3)
CVE-2026-23266 [fbdev: rivafb: fix divide error in nv3_arb()]
- linux 6.18.13-1
[trixie] - linux 6.12.74-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff8404a4da6e7ee49bee88b3e5f1461304d5e53d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff8404a4da6e7ee49bee88b3e5f1461304d5e53d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260318/3238bd67/attachment.htm>
More information about the debian-security-tracker-commits
mailing list