Add new CVEs allocated by kernel CNAHEAD master

author: Salvatore Bonaccorso <carnil@debian.org> 2024-05-13 17:53:01 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-05-13 17:53:01 +0200
commit: 11388058203c577145a9a495eaa0b011a1f58f75 (patch)
tree: c80fb411147c271374680845da343599b7998152 /active
parent: 4eed2349b7d8ebb148d848c25f6aca4446ee7858 (diff)
6 files changed, 94 insertions, 0 deletions
diff --git a/active/CVE-2023-52655 b/active/CVE-2023-52655
new file mode 100644
index 00000000..27fb823e
--- /dev/null
+++ b/active/CVE-2023-52655
@@ -0,0 +1,15 @@
+Description: usb: aqc111: check packet for fixup for true limit
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: released (6.7-rc3) [ccab434e674ca95d483788b1895a70c21b7f016a]
+6.8-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: released (6.6.8) [2ebf775f0541ae0d474836fa0cf3220e502f8e3e]
+6.1-upstream-stable: released (6.1.69) [82c386d73689a45d5ee8c1290827bce64056dddd]
+5.10-upstream-stable: released (5.10.205) [d69581c17608d81824dd497d9a54b6a5b6139975]
+4.19-upstream-stable: needed
+sid: released (6.6.8-1)
+6.1-bookworm-security: released (6.1.69-1)
+5.10-bullseye-security: released (5.10.205-1)
+4.19-buster-security: needed
diff --git a/active/CVE-2023-52656 b/active/CVE-2023-52656
new file mode 100644
index 00000000..f94fd68e
--- /dev/null
+++ b/active/CVE-2023-52656
@@ -0,0 +1,15 @@
+Description: io_uring: drop any code related to SCM_RIGHTS
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: released (6.8-rc1) [6e5e6d274956305f1fc0340522b38f5f5be74bdb]
+6.8-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: needed
+6.1-upstream-stable: released (6.1.83) [a3812a47a32022ca76bf46ddacdd823dc2aabf8b]
+5.10-upstream-stable: released (5.10.214) [a6771f343af90a25f3a14911634562bb5621df02]
+4.19-upstream-stable: needed
+sid: released (6.7.12-1)
+6.1-bookworm-security: released (6.1.85-1)
+5.10-bullseye-security: released (5.10.216-1)
+4.19-buster-security: needed
diff --git a/active/CVE-2024-27398 b/active/CVE-2024-27398
new file mode 100644
index 00000000..691bfcdb
--- /dev/null
+++ b/active/CVE-2024-27398
@@ -0,0 +1,17 @@
+Description: Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
+References:
+Notes:
+ carnil> Introduced in ba316be1b6a0 ("Bluetooth: schedule SCO timeouts with
+ carnil> delayed_work"). Vulnerable versions: 4.14.263 4.19.207 5.4.148 5.10.67 5.13.19
+ carnil> 5.14.6 5.15-rc1.
+Bugs:
+upstream: released (6.9) [483bc08181827fc475643272ffb69c533007e546]
+6.8-upstream-stable: needed
+6.6-upstream-stable: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
diff --git a/active/CVE-2024-27399 b/active/CVE-2024-27399
new file mode 100644
index 00000000..b14fe169
--- /dev/null
+++ b/active/CVE-2024-27399
@@ -0,0 +1,16 @@
+Description: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
+References:
+Notes:
+ carnil> Introduced in 3df91ea20e74 ("Bluetooth: Revert to mutexes from RCU list").
+ carnil> Vulnerable versions: 3.4-rc1.
+Bugs:
+upstream: released (6.9) [adf0398cee86643b8eacde95f17d073d022f782c]
+6.8-upstream-stable: needed
+6.6-upstream-stable: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
diff --git a/active/CVE-2024-27400 b/active/CVE-2024-27400
new file mode 100644
index 00000000..a45b5d64
--- /dev/null
+++ b/active/CVE-2024-27400
@@ -0,0 +1,16 @@
+Description: drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
+References:
+Notes:
+ carnil> Introduced in 94aeb4117343 ("drm/amdgpu: fix ftrace event amdgpu_bo_move always
+ carnil> move on same heap"). Vulnerable versions: 5.15.149 6.1.77 6.6.16 6.7.4 6.8-rc1.
+Bugs:
+upstream: released (6.9-rc7) [d3a9331a6591e9df64791e076f6591f440af51c3]
+6.8-upstream-stable: needed
+6.6-upstream-stable: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/active/CVE-2024-27401 b/active/CVE-2024-27401
new file mode 100644
index 00000000..5e186855
--- /dev/null
+++ b/active/CVE-2024-27401
@@ -0,0 +1,15 @@
+Description: firewire: nosy: ensure user_length is taken into account when fetching packet contents
+References:
+Notes:
+ carnil> First introducing commit could not be determined.
+Bugs:
+upstream: released (6.9-rc7) [38762a0763c10c24a4915feee722d7aa6e73eb98]
+6.8-upstream-stable: needed
+6.6-upstream-stable: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-05-13 17:53:01 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-05-13 17:53:01 +0200
commit	11388058203c577145a9a495eaa0b011a1f58f75 (patch)
tree	c80fb411147c271374680845da343599b7998152 /active
parent	4eed2349b7d8ebb148d848c25f6aca4446ee7858 (diff)