From 1db90afe636cc4c2e99f885e3067269dacc209b6 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 19 Mar 2024 17:38:46 +0100
Subject: Update status for three CVEs

---
 active/CVE-2024-23196 | 10 +++++-----
 active/CVE-2024-24860 | 16 +++++++++-------
 active/CVE-2024-24861 | 14 +++++++-------
 3 files changed, 21 insertions(+), 19 deletions(-)

diff --git a/active/CVE-2024-23196 b/active/CVE-2024-23196
index 1a274aa9..d3b89dd4 100644
--- a/active/CVE-2024-23196
+++ b/active/CVE-2024-23196
@@ -4,10 +4,10 @@ References:
 Notes:
 Bugs:
 upstream: released (6.5-rc1) [1f4a08fed450db87fbb5ff5105354158bdbe1a22]
-6.1-upstream-stable:
-5.10-upstream-stable:
+6.1-upstream-stable: released (6.1.47) [cdd412b528dee6e0851c4735d6676ec138da13a4]
+5.10-upstream-stable: released (5.10.192) [9f9eed451176ffcac6b5ba0f6dae1a6b4a1cb0eb]
 4.19-upstream-stable:
-sid: released (6.5.3-1)
-6.1-bookworm-security:
-5.10-bullseye-security:
+sid: released (6.4.13-1)
+6.1-bookworm-security: released (6.1.52-1)
+5.10-bullseye-security: released (5.10.197-1)
 4.19-buster-security:
diff --git a/active/CVE-2024-24860 b/active/CVE-2024-24860
index 4d05464f..618d9412 100644
--- a/active/CVE-2024-24860
+++ b/active/CVE-2024-24860
@@ -2,12 +2,14 @@ Description:
 References:
  https://bugzilla.openanolis.cn/show_bug.cgi?id=8151
 Notes:
+ carnil> Introduced by 18f81241b74f ("Bluetooth: Move {min,max}_key_size
+ carnil> debugfs ...") in 5.6-rc1.
 Bugs:
 upstream: released (6.8-rc1) [da9065caa594d19b26e1a030fd0cc27bd365d685]
-6.1-upstream-stable:
-5.10-upstream-stable:
-4.19-upstream-stable:
-sid:
-6.1-bookworm-security:
-5.10-bullseye-security:
-4.19-buster-security:
+6.1-upstream-stable: released (6.1.75) [96860d9ad462db61f4eeb09934235c38eab655c4]
+5.10-upstream-stable: released (5.10.209) [394c6c0b6d9bdd7d6ebca35ca9cfbabf44c0c257]
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: released (6.6.15-1)
+6.1-bookworm-security: released (6.1.76-1)
+5.10-bullseye-security: released (5.10.209-1)
+4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/active/CVE-2024-24861 b/active/CVE-2024-24861
index 0a00bd09..5890407f 100644
--- a/active/CVE-2024-24861
+++ b/active/CVE-2024-24861
@@ -4,10 +4,10 @@ References:
 Notes:
 Bugs:
 upstream: pending [36d503ad547d1c75758a6fcdbec2806f1b6aeb41]
-6.1-upstream-stable:
-5.10-upstream-stable:
-4.19-upstream-stable:
-sid:
-6.1-bookworm-security:
-5.10-bullseye-security:
-4.19-buster-security:
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
-- 
cgit v1.2.3