[Git][security-tracker-team/security-tracker][master] Track fixes for linux via unstable

Salvatore Bonaccorso (@carnil) Sat, 03 Feb 2024 02:35:22 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
ee909d6c by Salvatore Bonaccorso at 2024-02-03T11:34:41+01:00
Track fixes for linux via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -648,11 +648,11 @@ CVE-2024-1098 (A vulnerability was found in Rebuild up to 
3.5.5 and classified a
 CVE-2024-1087
        REJECTED
 CVE-2024-1086 (A use-after-free vulnerability in the Linux kernel's netfilter: 
nf_tab ...)
-       - linux <unfixed>
+       - linux 6.6.15-1
        NOTE: https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660
        NOTE: 
https://git.kernel.org/linus/f342de4e2f33e0e39165d8639387aa6c19dff660 (6.8-rc2)
 CVE-2024-1085 (A use-after-free vulnerability in the Linux kernel's netfilter: 
nf_tab ...)
-       - linux <unfixed>
+       - linux 6.6.15-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        [buster] - linux <not-affected> (Vulnerable code not present)
        NOTE: https://kernel.dance/b1db244ffd041a49ecc9618e8feb6b5c1afcdaa7
@@ -2373,7 +2373,7 @@ CVE-2023-46839 [pci: phantom functions assigned to 
incorrect contexts]
        [buster] - xen <end-of-life> (DSA 4677-1)
        NOTE: https://xenbits.xen.org/xsa/advisory-449.html
 CVE-2023-46838 (Transmit requests in Xen's virtual network protocol can 
consist of mul ...)
-       - linux <unfixed>
+       - linux 6.6.15-1
        NOTE: https://xenbits.xen.org/xsa/advisory-448.html
        NOTE: 
https://git.kernel.org/linus/c7ec4f2d684e17d69bbdd7c4324db0ef5daac26a
 CVE-2024-23771 (darkhttpd before 1.15 uses strcmp (which is not constant time) 
to veri ...)
@@ -10679,7 +10679,7 @@ CVE-2023-6647 (A vulnerability, which was classified as 
critical, has been found
 CVE-2023-6646 (A vulnerability classified as problematic has been found in 
linkding 1 ...)
        NOT-FOR-US: linkding
 CVE-2023-50431 (sec_attest_info in 
drivers/accel/habanalabs/common/habanalabs_ioctl.c  ...)
-       - linux <unfixed>
+       - linux 6.6.15-1
        [bullseye] - linux <not-affected> (Vulnerable code not present)
        [buster] - linux <not-affected> (Vulnerable code not present)
        NOTE: 
https://lists.freedesktop.org/archives/dri-devel/2023-November/431772.html



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee909d6caf9a47b7eaffd69491f5bc87f0c3a28a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee909d6caf9a47b7eaffd69491f5bc87f0c3a28a
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Track fixes for linux via unstable

Reply via email to