[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri May 8 14:43:50 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ff493c4e by Salvatore Bonaccorso at 2026-05-08T15:42:56+02:00
Merge Linux CVEs from kernel-sec

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,99 @@
+CVE-2026-43335 [interconnect: qcom: sm8450: Fix NULL pointer dereference in icc_link_nodes()]
+	- linux 6.19.12-1
+	[trixie] - linux <not-affected> (Vulnerable code not present)
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/dbbd550d7c8d90d3af9fe8a12a9caff077ddb8e3 (7.0-rc7)
+CVE-2026-43333 [bpf: reject direct access to nullable PTR_TO_BUF pointers]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/b0db1accbc7395657c2b79db59fa9fae0d6656f3 (7.0-rc7)
+CVE-2026-43332 [thermal: core: Fix thermal zone device registration error path]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/9e07e3b81807edd356e1f794cffa00a428eff443 (7.0-rc7)
+CVE-2026-43330 [crypto: caam - fix overflow on long hmac keys]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/80688afb9c35b3934ce2d6be9973758915e2e0ef (7.0-rc7)
+CVE-2026-43324 [USB: dummy-hcd: Fix interrupt synchronization error]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/2ca9e46f8f1f5a297eb0ac83f79d35d5b3a02541 (7.0-rc7)
+CVE-2026-43323 [sched/fair: Fix zero_vruntime tracking fix]
+	- linux 6.19.12-1
+	[trixie] - linux <not-affected> (Vulnerable code not present)
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/1319ea57529e131822bab56bf417c8edc2db9ae8 (7.0-rc7)
+CVE-2026-43322 [Bluetooth: hci_sync: Fix UAF in le_read_features_complete]
+	- linux 6.19.12-1
+	[trixie] - linux <not-affected> (Vulnerable code not present)
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/035c25007c9e698bef3826070ee34bb6d778020c (7.0-rc7)
+CVE-2026-43339 [ipv6: prevent possible UaF in addrconf_permanent_addr()]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/fd63f185979b047fb22a0dfc6bd94d0cab6a6a70 (7.0-rc7)
+CVE-2026-43338 [btrfs: reserve enough transaction items for qgroup ioctls]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	NOTE: https://git.kernel.org/linus/f9a4e3015db1aeafbef407650eb8555445ca943e (7.0-rc5)
+CVE-2026-43337 [drm/amd/display: Fix NULL pointer dereference in dcn401_init_hw()]
+	- linux 6.19.12-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/e927b36ae18b66b49219eaa9f46edc7b4fdbb25e (7.0-rc7)
+CVE-2026-43336 [lib/crypto: chacha: Zeroize permuted_state before it leaves scope]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/e5046823f8fa3677341b541a25af2fcb99a5b1e0 (7.0-rc7)
+CVE-2026-43334 [Bluetooth: SMP: force responder MITM requirements before building the pairing response]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/d05111bfe37bfd8bd4d2dfe6675d6bdeef43f7c7 (7.0-rc7)
+CVE-2026-43331 [x86/kexec: Disable KCOV instrumentation after load_segments()]
+	- linux 6.19.12-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/917e3ad3321e75ca0223d5ccf26ceda116aa51e1 (7.0-rc7)
+CVE-2026-43329 [netfilter: flowtable: strictly check for maximum number of actions]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/76522fcdbc3a02b568f5d957f7e66fc194abb893 (7.0-rc7)
+CVE-2026-43328 [cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/6dcf9d0064ce2f3e3dfe5755f98b93abe6a98e1e (7.0-rc7)
+CVE-2026-43327 [USB: dummy-hcd: Fix locking/synchronization error]
+	- linux 6.19.12-1
+	[trixie] - linux 6.12.85-1
+	[bookworm] - linux 6.1.170-1
+	NOTE: https://git.kernel.org/linus/616a63ff495df12863692ab3f9f7b84e3fa7a66d (7.0-rc7)
+CVE-2026-43326 [sched_ext: Fix SCX_KICK_WAIT deadlock by deferring wait to balance callback]
+	- linux 6.19.12-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/415cb193bb9736f0e830286c72a6fa8eb2a9cc5c (7.0-rc7)
+CVE-2026-43325 [wifi: iwlwifi: mvm: don't send a 6E related command when not supported]
+	- linux 6.19.12-1
+	[bookworm] - linux <not-affected> (Vulnerable code not present)
+	[bullseye] - linux <not-affected> (Vulnerable code not present)
+	NOTE: https://git.kernel.org/linus/323156c3541e23da7e582008a7ac30cd51b60acd (7.0-rc7)
 CVE-2026-43315 [KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding]
 	- linux 6.19.6-1
 	[trixie] - linux 6.12.85-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff493c4e494d89759340a67b4de993154dc19424

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff493c4e494d89759340a67b4de993154dc19424
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260508/9568ed2c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list