Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: ff8404a4 by Salvatore Bonaccorso at 2026-03-18T20:53:24+01:00 Merge Linux CVEs from kernel-sec - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,21 @@ +CVE-2026-23268 [apparmor: fix unprivileged local user can do privileged policy management] + - linux 6.19.6-2 + [trixie] - linux 6.12.74-2 + [bookworm] - linux 6.1.164-1 + [bullseye] - linux 5.10.251-1 + NOTE: https://git.kernel.org/linus/6601e13e82841879406bf9f369032656f441a425 (7.0-rc4) + NOTE: https://www.qualys.com/2026/03/10/crack-armor.txt +CVE-2026-23269 [apparmor: validate DFA start states are in bounds in unpack_pdb] + - linux 6.19.6-2 + [trixie] - linux 6.12.74-2 + [bookworm] - linux 6.1.164-1 + [bullseye] - linux 5.10.251-1 + NOTE: https://git.kernel.org/linus/9063d7e2615f4a7ab321de6b520e23d370e58816 (7.0-rc4) + NOTE: https://www.qualys.com/2026/03/10/crack-armor.txt +CVE-2026-23270 [net/sched: Only allow act_ct to bind to clsact/ingress qdiscs and shared blocks] + - linux 6.19.8-1 + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/11cb63b0d1a0685e0831ae3c77223e002ef18189 (7.0-rc3) CVE-2026-23266 [fbdev: rivafb: fix divide error in nv3_arb()] - linux 6.18.13-1 [trixie] - linux 6.12.74-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff8404a4da6e7ee49bee88b3e5f1461304d5e53d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff8404a4da6e7ee49bee88b3e5f1461304d5e53d You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
