[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
01c0bdde by Salvatore Bonaccorso at 2026-06-08T20:08:52+02:00
Merge Linux CVEs from kernel-sec

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,95 @@
+CVE-2026-46308 [pmdomain: mediatek: fix use-after-free in 
scpsys_get_bus_protection_legacy()]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/ec1fcddb3117d9452210e838fd37389ee61e10e8 (7.1-rc3)
+CVE-2026-46305 [staging: rtl8723bs: os_dep: avoid NULL pointer dereference in 
rtw_cbuf_alloc]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/bc851db06045a40c18233dd76ef0562d7f8bb6db (7.1-rc3)
+CVE-2026-46297 [net: libwx: use request_irq for VF misc interrupt]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/7a33345153eeeda195c55f15be27074e4c3b5109 (7.1-rc3)
+CVE-2026-46295 [KVM: x86: Do IRR scan in __kvm_apic_update_irr even if PIR is 
empty]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/33fd0ccd2590b470b65adcca288615ad3b5e3e06 (7.1-rc3)
+CVE-2026-46290 [x86/efi: Fix graceful fault handling after FPU softirq changes]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/088f65e206087bf903743bd18417261d7a4c9644 (7.1-rc3)
+CVE-2026-46289 [lib/scatterlist: fix length calculations in extract_kvec_to_sg]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/07b7d66e65d9cfe6b9c2c34aa22cfcaac37a5c45 (7.1-rc1)
+CVE-2026-46307 [wifi: ath5k: do not access array OOB]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/d748603f12baff112caa3ab7d39f50100f010dbd (7.1-rc3)
+CVE-2026-46306 [flow_dissector: do not dissect PPPoE PFC frames]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/d6c19b31a3c1d519fabdcf0aa239e6b6109b9473 (7.1-rc1)
+CVE-2026-46304 [nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/aade8abd8b868b6ffa9697aadaea28ec7f65bee6 (7.1-rc2)
+CVE-2026-46303 [isofs: validate Rock Ridge CE continuation extent against 
volume size]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/a36d990f591320e9dd379ab30063ebfe91d47e1f (7.1-rc2)
+CVE-2026-46302 [selinux: allow multiple opens of /sys/fs/selinux/policy]
+       - linux 7.0.7-1
+       NOTE: 
https://git.kernel.org/linus/a02cd6805562305f936e807da83e253b719dd965 (7.1-rc3)
+CVE-2026-46301 [spi: topcliff-pch: fix use-after-free on unbind]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/9d72732fe70c11424bc90ed466c7ccfa58b42a9a (7.1-rc1)
+CVE-2026-46299 [hfsplus: fix held lock freed on hfsplus_fill_super()]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/90c500e4fd83fa33c09bc7ee23b6d9cc487ac733 (7.1-rc1)
+CVE-2026-46298 [pseries/papr-hvpipe: Fix race with interrupt handler]
+       - linux 7.0.7-1
+       [trixie] - linux <not-affected> (Vulnerable code not present)
+       [bookworm] - linux <not-affected> (Vulnerable code not present)
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/7a4f0846ee6cc8cf44ae0046ed42e3259d1dd45b (7.1-rc3)
+CVE-2026-46296 [spi: s3c64xx: fix NULL-deref on driver unbind]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/45daacbead8a009844bd5dba6cfa731332184d17 (7.1-rc1)
+CVE-2026-46294 [dm: fix a buffer overflow in ioctl processing]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/2fa49cc884f6496a915c35621ba4da35649bf159 (7.1-rc1)
+CVE-2026-46293 [clk: microchip: mpfs-ccc: fix out of bounds access during 
output registration]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       [bullseye] - linux <not-affected> (Vulnerable code not present)
+       NOTE: 
https://git.kernel.org/linus/2f7ae8ab6aa73daaf080d5332110357c29df9c36 (7.1-rc1)
+CVE-2026-46292 [pmdomain: core: Fix detach procedure for virtual devices in 
genpd]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/26735dfdd8930d9ef1fa92e590a9bf77726efdf6 (7.1-rc3)
+CVE-2026-46291 [crypto: caam - guard HMAC key hex dumps in hash_digest_key]
+       - linux 7.0.7-1
+       [trixie] - linux 6.12.88-1
+       NOTE: 
https://git.kernel.org/linus/177730a273b18e195263ed953853273e901b5064 (7.1-rc1)
 CVE-2026-46288 [of: unittest: fix use-after-free in of_unittest_changeset()]
        - linux 7.0.4-1
        [trixie] - linux 6.12.86-1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01c0bdde48b2b5ff90a6703e81bdb08a3365065b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01c0bdde48b2b5ff90a6703e81bdb08a3365065b
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits