Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ac80404a by Salvatore Bonaccorso at 2022-10-16T18:40:33+02:00
Track linux fixes via unstable upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -698,25 +698,25 @@ CVE-2022-42724 (app/Controller/UsersController.php in
MISP before 2.4.164 allows
CVE-2022-42723
RESERVED
CVE-2022-42722 (In the Linux kernel 5.8 through 5.19.x before 5.19.16, local
attackers ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2
NOTE:
https://lore.kernel.org/netdev/[email protected]/T/#u
NOTE: https://github.com/PurpleVsGreen/beacown
CVE-2022-42721 (A list management bug in BSS handling in the mac80211 stack in
the Lin ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2
NOTE:
https://lore.kernel.org/netdev/[email protected]/T/#u
NOTE: https://github.com/PurpleVsGreen/beacown
CVE-2022-42720 (Various refcounting bugs in the multi-BSS handling in the
mac80211 sta ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2
NOTE:
https://lore.kernel.org/netdev/[email protected]/T/#u
NOTE: https://github.com/PurpleVsGreen/beacown
CVE-2022-42719 (A use-after-free in the mac80211 stack when parsing a
multi-BSSID elem ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2
NOTE:
https://lore.kernel.org/netdev/[email protected]/T/#u
@@ -3048,7 +3048,7 @@ CVE-2022-41676
CVE-2022-41675
RESERVED
CVE-2022-41674 (An issue was discovered in the Linux kernel before 5.19.16.
Attackers ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://www.openwall.com/lists/oss-security/2022/10/13/2
NOTE:
https://lore.kernel.org/netdev/[email protected]/T/#u
@@ -19822,7 +19822,7 @@ CVE-2022-2309 (NULL Pointer Dereference allows
attackers to cause a denial of se
NOTE: https://huntr.dev/bounties/8264e74f-edda-4c40-9956-49de635105ba/
NOTE:
https://github.com/lxml/lxml/commit/86368e9cf70a0ad23cccd5ee32de847149af0c6f
(lxml-4.9.1)
CVE-2022-2308 (A flaw was found in vDPA with VDUSE backend. There are
currently no ch ...)
- - linux <unfixed>
+ - linux 6.0.2-1
[bullseye] - linux <not-affected> (Vulnerable code not present)
[buster] - linux <not-affected> (Vulnerable code not present)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2103900
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac80404a96dd8b2bdaf9796d7708f20813a05461
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ac80404a96dd8b2bdaf9796d7708f20813a05461
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
