Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 03d203f3 by Salvatore Bonaccorso at 2026-06-09T14:51:34+02:00 Merge Linux CVEs from kernel-sec - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,33 @@ +CVE-2026-52907 [media: rockchip: rkcif: fix off by one bugs] + - linux 7.0.4-1 + [trixie] - linux <not-affected> (Vulnerable code not present) + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/e4056b84af0fc18c84b4e5741df04ecd8ca17973 (7.1-rc1) +CVE-2026-52906 [9p: fix access mode flags being ORed instead of replaced] + - linux 7.0.4-1 + [trixie] - linux <not-affected> (Vulnerable code not present) + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/da2346a48a5a1fed86c3fe3d73c0b60e7b3027c9 (7.1-rc1) +CVE-2026-52905 [mm/damon/core: disallow non-power of two min_region_sz on damon_start()] + - linux 7.0.4-1 + [trixie] - linux <not-affected> (Vulnerable code not present) + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/95093e5cb4c5b50a5b1a4b79f2942b62744bd66a (7.1-rc1) +CVE-2026-52904 [drm/nouveau: fix nvkm_device leak on aperture removal failure] + - linux 7.0.4-1 + [trixie] - linux 6.12.86-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/6597ff1d8de3f583be169587efeafd8af134e138 (7.1-rc1) +CVE-2026-46332 [greybus: gb-beagleplay: bound bootloader receive buffering] + - linux 7.0.4-1 + [trixie] - linux 6.12.86-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/1214bf28965ceaf584fb20d357731264dd2e10e1 (7.1-rc1) CVE-2026-46329 [erofs: handle end of filesystem properly for file-backed mounts] - linux 6.18.14-1 [trixie] - linux 6.12.85-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03d203f329c7263a9cf05df1756bcaaff2df6378 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03d203f329c7263a9cf05df1756bcaaff2df6378 You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
