[Git][security-tracker-team/security-tracker][master] Reference commits for firrmware-nonfree issues for INTEL-SA-00621

Salvatore Bonaccorso (@carnil) Thu, 01 Sep 2022 11:35:13 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
dc6f49e2 by Salvatore Bonaccorso at 2022-09-01T20:33:13+02:00
Reference commits for firrmware-nonfree issues for INTEL-SA-00621

Not fully confirmed (yet), but they match the information from
INTEL-SA-00621 on upstream publication and related firmware for Intel
Bluetooth 9462, 6560, AX201, AX211, AX210, AX200 and AX201.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -53940,7 +53940,17 @@ CVE-2021-44545 (Improper input validation for some 
Intel(R) PROSet/Wireless WiFi
        - firmware-nonfree <unfixed>
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
        NOTE: Fixed upstream in 20220815
-       TODO: double-check
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075
 CVE-2021-44457
        RESERVED
 CVE-2021-44454 (Improper input validation in a third-party component for 
Intel(R) Quar ...)
@@ -53959,7 +53969,17 @@ CVE-2021-23168 (Out of bounds read for some Intel(R) 
PROSet/Wireless WiFi and Ki
        - firmware-nonfree <unfixed>
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
        NOTE: Fixed upstream in 20220815
-       TODO: double-check
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075
 CVE-2021-23152 (Improper access control in the Intel(R) Advisor software 
before versio ...)
        NOT-FOR-US: Intel
 CVE-2021-23145
@@ -54934,7 +54954,17 @@ CVE-2021-37409 (Improper access control for some 
Intel(R) PROSet/Wireless WiFi a
        - firmware-nonfree <unfixed>
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
        NOTE: Fixed upstream in 20220815
-       TODO: double-check
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075
 CVE-2021-37405
        RESERVED
 CVE-2021-33847 (Improper buffer restrictions in firmware for some Intel(R) 
Wireless Bl ...)
@@ -54951,7 +54981,17 @@ CVE-2021-23223 (Improper initialization for some 
Intel(R) PROSet/Wireless WiFi a
        - firmware-nonfree <unfixed>
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
        NOTE: Fixed upstream in 20220815
-       TODO: double-check
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075
 CVE-2021-23179 (Out of bounds read in firmware for some Intel(R) Wireless 
Bluetooth(R) ...)
        NOT-FOR-US: Intel
 CVE-2021-44464 (Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 
contains ...)
@@ -58617,7 +58657,17 @@ CVE-2022-21181 (Improper input validation for some 
Intel(R) PROSet/Wireless WiFi
        - firmware-nonfree <unfixed>
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00621.html
        NOTE: Fixed upstream in 20220815
-       TODO: double-check
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=63a87d2f1f7ea029e8d32ed03d972947a7bb60fd
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=87d07fd3d3156b7bb1ff9a8000c316c2f68ffd7c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=447ca4a62cca38d656922ce6ba97610db11cf341
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=31d24ca113ed93d0564c78d6c47d362b9f274a7b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=b93bf2c9ce1d4648a8488aa29f2c7e840e6e449b
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=1068c45f16de69c769c500175a91ce1296bb1e27
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=45c5e53ea4964393a12f436bc5c9e2cb1ba6e0a6
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=f7f3d1f40c26fcf1414b9adddb832c4a3afb912c
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=045847edb1ed649d00b5c897615d013833287a04
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=140beaf7d770ea8320c12b6e31a067f9e9d6d441
+       NOTE: 
https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=e6185d5197fd1d8015f1c7663582158b9945c075
 CVE-2022-21180 (Improper input validation for some Intel(R) Processors may 
allow an au ...)
        NOT-FOR-US: Intel
        NOTE: 
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00645.html



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc6f49e2d8e51dec7616c4df7c8b20dced03c3f2

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dc6f49e2d8e51dec7616c4df7c8b20dced03c3f2
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Reference commits for firrmware-nonfree issues for INTEL-SA-00621

Reply via email to