Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
65d4319a by Salvatore Bonaccorso at 2026-03-25T18:26:43+01:00
Merge Linux CVEs from kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30,6 +30,8 @@ CVE-2026-23391 [netfilter: xt_CT: drop pending enqueued
packets on template remo
CVE-2026-23390 [tracing/dma: Cap dma_map_sg tracepoint arrays to prevent
buffer overflow]
- linux 6.18.13-1
[trixie] - linux 6.12.74-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE:
https://git.kernel.org/linus/daafcc0ef0b358d9d622b6e3b7c43767aa3814ee (6.19)
CVE-2026-23384 [RDMA/ionic: Fix kernel stack leak in ionic_create_cq()]
- linux 6.19.8-1
@@ -504,6 +506,8 @@ CVE-2026-23286 [atm: lec: fix null-ptr-deref in
lec_arp_clear_vccs]
NOTE:
https://git.kernel.org/linus/101bacb303e89dc2e0640ae6a5e0fb97c4eb45bb (7.0-rc3)
CVE-2026-23285 [drbd: fix null-pointer dereference on local read error]
- linux 6.19.8-1
+ [bookworm] - linux <not-affected> (Vulnerable code not present)
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
NOTE:
https://git.kernel.org/linus/0d195d3b205ca90db30d70d09d7bb6909aac178f (7.0-rc2)
CVE-2026-23284 [net: ethernet: mtk_eth_soc: Reset prog ptr to old_prog in case
of error in mtk_xdp_setup()]
- linux 6.19.8-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/65d4319ae06565f82a3c079b72d5e55f9eee6d01
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/65d4319ae06565f82a3c079b72d5e55f9eee6d01
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
