Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
006a456c by Sylvain Beucler at 2024-01-24T13:33:46+01:00
CVE-2023-4969/firmware-nonfree: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1506,6 +1506,7 @@ CVE-2023-4969 (A GPU kernel can read sensitive data from
another GPU kernel (eve
- firmware-nonfree <unfixed>
[bookworm] - firmware-nonfree <postponed> (Minor issue, revisit when
updates are available)
[bullseye] - firmware-nonfree <no-dsa> (Non-free not supported)
+ [buster] - firmware-nonfree <postponed> (Minor issue, revisit when
updates are available)
NOTE:
https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/
NOTE:
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6010.html
CVE-2023-4797 (The Newsletters WordPress plugin before 4.9.3 does not properly
escape ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/006a456c7811d95c691fb697c0b1aec1bd8c7237
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/006a456c7811d95c691fb697c0b1aec1bd8c7237
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
