Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0b8fe61f by Salvatore Bonaccorso at 2019-09-07T09:03:59Z
Merge already the linux changes for 9.10 point release in advance
- - - - -
2 changed files:
- data/CVE/list
- data/next-oldstable-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -338,6 +338,7 @@ CVE-2019-15927 (An issue was discovered in the Linux kernel
before 4.20.2. An ou
CVE-2019-15926 (An issue was discovered in the Linux kernel before 5.2.3. Out
of bound ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.189-1
NOTE:
https://git.kernel.org/linus/5d6751eaff672ea77642e74e92e6c0ac7f9709ab
CVE-2019-15925 (An issue was discovered in the Linux kernel before 5.2.3. An
out of bo ...)
- linux 5.2.6-1
@@ -362,6 +363,7 @@ CVE-2017-18595 (An issue was discovered in the Linux kernel
before 4.14.11. A do
CVE-2019-15924 (An issue was discovered in the Linux kernel before 5.0.11.
fm10k_init_ ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/01ca667133d019edc9f0a1f70a272447c84ec41f
CVE-2019-15923 (An issue was discovered in the Linux kernel before 5.0.9.
There is a N ...)
- linux 5.2.6-1 (unimportant)
@@ -699,6 +701,7 @@ CVE-2019-15789
CVE-2019-15807 (In the Linux kernel before 5.1.13, there is a memory leak in
drivers/s ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/3b0541791453fbe7f42867e310e0c9eb6295364d
CVE-2019-15788 (Clara Genomics Analysis before 0.2.0 has an integer overflow
for cudap ...)
NOT-FOR-US: Clara Genomics Analysis
@@ -1043,6 +1046,7 @@ CVE-2019-15667
CVE-2019-15666 (An issue was discovered in the Linux kernel before 5.0.19.
There is an ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
[jessie] - linux 3.16.72-1
NOTE:
https://git.kernel.org/linus/b805d78d300bcf2c83d6df7da0c818b0fee41427
CVE-2019-15665
@@ -1408,6 +1412,7 @@ CVE-2019-15539
CVE-2019-15538 (An issue was discovered in xfs_setattr_nonsize in
fs/xfs/xfs_iops.c in ...)
- linux <unfixed>
[buster] - linux 4.19.67-2
+ [stretch] - linux 4.9.189-2
[jessie] - linux <not-affected> (Vulnerable code introduced later)
NOTE:
https://git.kernel.org/linus/1fb254aa983bf190cfd685d40c64a480a9bafaee
CVE-2019-15537 (The proxystatistics module before 3.1.0 for SimpleSAMLphp
allows SQL I ...)
@@ -2157,6 +2162,7 @@ CVE-2019-15240
RESERVED
CVE-2019-15292 (An issue was discovered in the Linux kernel before 5.0.9.
There is a u ...)
- linux 4.19.37-1
+ [stretch] - linux 4.9.184-1
CVE-2019-15291 (An issue was discovered in the Linux kernel through 5.2.9.
There is a ...)
- linux <unfixed>
NOTE: https://www.openwall.com/lists/oss-security/2019/08/20/2
@@ -2213,18 +2219,22 @@ CVE-2019-15222 (An issue was discovered in the Linux
kernel before 5.2.8. There
CVE-2019-15221 (An issue was discovered in the Linux kernel before 5.1.17.
There is a ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.185-1
NOTE:
https://git.kernel.org/linus/3450121997ce872eb7f1248417225827ea249710
CVE-2019-15220 (An issue was discovered in the Linux kernel before 5.2.1.
There is a u ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.189-1
NOTE:
https://git.kernel.org/linus/6e41e2257f1094acc37618bf6c856115374c6922
CVE-2019-15219 (An issue was discovered in the Linux kernel before 5.1.8.
There is a N ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/9a5729f68d3a82786aea110b1bfe610be318f80a
CVE-2019-15218 (An issue was discovered in the Linux kernel before 5.1.8.
There is a N ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/31e0456de5be379b10fea0fa94a681057114a96e
CVE-2019-15217 (An issue was discovered in the Linux kernel before 5.2.3.
There is a N ...)
- linux 5.2.6-1
@@ -2233,10 +2243,12 @@ CVE-2019-15216 (An issue was discovered in the Linux
kernel before 5.0.14. There
{DLA-1884-1}
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/ef61eb43ada6c1d6b94668f0f514e4c268093ff3
CVE-2019-15215 (An issue was discovered in the Linux kernel before 5.2.6.
There is a u ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.189-1
NOTE:
https://git.kernel.org/linus/eff73de2b1600ad8230692f00bc0ab49b166512a
CVE-2019-15214 (An issue was discovered in the Linux kernel before 5.0.10.
There is a ...)
{DLA-1884-1}
@@ -2248,10 +2260,12 @@ CVE-2019-15213 (An issue was discovered in the Linux
kernel before 5.2.3. There
CVE-2019-15212 (An issue was discovered in the Linux kernel before 5.1.8.
There is a d ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
NOTE:
https://git.kernel.org/linus/3864d33943b4a76c6e64616280e98d2410b1190f
CVE-2019-15211 (An issue was discovered in the Linux kernel before 5.2.6.
There is a u ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.189-1
NOTE:
https://git.kernel.org/linus/c666355e60ddb4748ead3bdd983e3f7f2224aaf0
CVE-2018-20978 (The wp-all-import plugin before 3.4.7 for WordPress has XSS.
...)
NOT-FOR-US: Wordpress plugin
@@ -13866,6 +13880,7 @@ CVE-2019-11488 (Incorrect Access Control in the Account
Access / Password Reset
NOT-FOR-US: SimplyBook.me Enterprise
CVE-2019-11487 (The Linux kernel before 5.1-rc5 allows page->_refcount
reference co ...)
- linux 4.19.37-1
+ [stretch] - linux 4.9.184-1
[jessie] - linux <ignored> (Minor issue and high risk of regression)
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1752
NOTE: https://lwn.net/Articles/786044/
@@ -17412,6 +17427,7 @@ CVE-2019-10143 (** DISPUTED ** It was discovered
freeradius up to and including
CVE-2019-10142 (A flaw was found in the Linux kernel's freescale hypervisor
manager im ...)
- linux 5.2.6-1 (unimportant)
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.184-1
[jessie] - linux 3.16.70-1
NOTE: Fixed by:
https://git.kernel.org/linus/6a024330650e24556b8a18cc654ad00cfecf6c6c
NOTE: CONFIG_FSL_HV_MANAGER not enabled in kernel builds in Debian.
@@ -20225,6 +20241,7 @@ CVE-2019-9507
CVE-2019-9506 (The Bluetooth BR/EDR specification up to and including version
5.1 per ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.185-1
NOTE: Hardware issue, but mitigation in Linux kernel can be applied:
NOTE:
https://git.kernel.org/linus/d5bb334a8e171b262e48f378bd2096c0ea458265 (5.2-rc1)
NOTE:
https://git.kernel.org/linus/693cd8ce3f882524a5d06f7800dd8492411877b3 (5.2-rc6)
@@ -35521,12 +35538,12 @@ CVE-2018-20512 (EPON CPE-WiFi devices 2.0.4-X000 are
vulnerable to escalation of
NOT-FOR-US: EPON CPE-WiFi devices
CVE-2018-20510 (The print_binder_transaction_ilocked function in
drivers/android/binde ...)
- linux 4.16.5-1
- [stretch] - linux <postponed> (Vulnerable code present but not enabled,
will be fixed with rebase to 4.9.181)
+ [stretch] - linux 4.9.184-1
[jessie] - linux 3.16.57-1
NOTE:
https://git.kernel.org/linus/8ca86f1639ec5890d400fff9211aca22d0a392eb
CVE-2018-20509 (The print_binder_ref_olocked function in
drivers/android/binder.c in t ...)
- linux 4.14.2-1
- [stretch] - linux <ignored> (debugfs restricted to root by default)
+ [stretch] - linux 4.9.184-1
[jessie] - linux <ignored> (debugfs restricted to root by default)
NOTE: https://security.netapp.com/advisory/ntap-20190517-0002/
CVE-2018-20508 (CrashFix 1.0.4 has SQL Injection via the User[status]
parameter. This ...)
@@ -46107,6 +46124,7 @@ CVE-2019-0137
CVE-2019-0136 (Insufficient access control in the Intel(R) PROSet/Wireless
WiFi Softw ...)
- linux 5.2.6-1
[buster] - linux 4.19.67-1
+ [stretch] - linux 4.9.185-1
NOTE:
https://git.kernel.org/linus/79c92ca42b5a3e0ea172ea2ce8df8e125af237da
NOTE:
https://git.kernel.org/linus/588f7d39b3592a36fb7702ae3b8bdd9be4621e2f
CVE-2019-0135 (Improper permissions in the installer for Intel(R) Accelerated
Storage ...)
=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -85,50 +85,6 @@ CVE-2017-11746
[stretch] - tenshi 0.13-2.1~deb9u1
CVE-2019-13031
[stretch] - lemonldap-ng 1.9.7-3+deb9u2
-CVE-2019-15924
- [stretch] - linux 4.9.184-1
-CVE-2019-11487
- [stretch] - linux 4.9.184-1
-CVE-2019-10142
- [stretch] - linux 4.9.184-1
-CVE-2015-8553
- [stretch] - linux 4.9.184-1
-CVE-2018-20510
- [stretch] - linux 4.9.184-1
-CVE-2018-20509
- [stretch] - linux 4.9.184-1
-CVE-2019-15212
- [stretch] - linux 4.9.184-1
-CVE-2019-15216
- [stretch] - linux 4.9.184-1
-CVE-2019-15218
- [stretch] - linux 4.9.184-1
-CVE-2019-15219
- [stretch] - linux 4.9.184-1
-CVE-2019-15292
- [stretch] - linux 4.9.184-1
-CVE-2019-10142
- [stretch] - linux 4.9.184-1
-CVE-2019-15666
- [stretch] - linux 4.9.184-1
-CVE-2019-15807
- [stretch] - linux 4.9.184-1
-CVE-2019-0136
- [stretch] - linux 4.9.185-1
-CVE-2019-15221
- [stretch] - linux 4.9.185-1
-CVE-2019-9506
- [stretch] - linux 4.9.185-1
-CVE-2019-15220
- [stretch] - linux 4.9.189-1
-CVE-2019-15211
- [stretch] - linux 4.9.189-1
-CVE-2019-15215
- [stretch] - linux 4.9.189-1
-CVE-2019-15926
- [stretch] - linux 4.9.189-1
-CVE-2019-15538
- [stretch] - linux 4.9.189-2
CVE-2019-10153
[stretch] - fence-agents 4.0.25-1+deb9u1
CVE-2016-10711
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b8fe61fcd75ac3dfeff538cdb7ed380d2982419
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b8fe61fcd75ac3dfeff538cdb7ed380d2982419
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
