diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2024-02-06 22:13:39 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-02-06 22:13:39 +0100 |
| commit | 9b6d68ce309a85007f3bc2d23deea79eaab4f03f (patch) | |
| tree | 58097ad566a602713967f3b00d1ffa8f119487f5 /data | |
| parent | 7fc67827254824b30390b0a1608017b3c386af8c (diff) | |
Merge linux changes for bullseye 11.9
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 9 | ||||
| -rw-r--r-- | data/next-oldstable-point-update.txt | 18 |
2 files changed, 9 insertions, 18 deletions
diff --git a/data/CVE/list b/data/CVE/list index af9bad80a0..b107684ada 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -1185,6 +1185,7 @@ CVE-2024-1087 CVE-2024-1086 (A use-after-free vulnerability in the Linux kernel's netfilter: nf_tab ...) - linux 6.6.15-1 [bookworm] - linux 6.1.76-1 + [bullseye] - linux 5.10.209-2 NOTE: https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660 NOTE: https://git.kernel.org/linus/f342de4e2f33e0e39165d8639387aa6c19dff660 (6.8-rc2) CVE-2024-1085 (A use-after-free vulnerability in the Linux kernel's netfilter: nf_tab ...) @@ -1673,6 +1674,7 @@ CVE-2024-0986 (A vulnerability was found in Issabel PBX 4.0.0. It has been rated CVE-2023-52340 [ipv6: remove max_size check inline with ipv4] - linux 6.3.7-1 [bookworm] - linux 6.1.76-1 + [bullseye] - linux 5.10.209-1 NOTE: https://git.kernel.org/linus/af6d10345ca76670c1b7c37799f0d5576ccef277 (6.3-rc1) CVE-2024-0841 (A null pointer dereference flaw was found in the hugetlbfs_fill_super ...) - linux <unfixed> @@ -2941,6 +2943,7 @@ CVE-2023-46839 [pci: phantom functions assigned to incorrect contexts] CVE-2023-46838 (Transmit requests in Xen's virtual network protocol can consist of mul ...) - linux 6.6.15-1 [bookworm] - linux 6.1.76-1 + [bullseye] - linux 5.10.209-1 NOTE: https://xenbits.xen.org/xsa/advisory-448.html NOTE: https://git.kernel.org/linus/c7ec4f2d684e17d69bbdd7c4324db0ef5daac26a CVE-2024-23771 (darkhttpd before 1.15 uses strcmp (which is not constant time) to veri ...) @@ -3527,6 +3530,7 @@ CVE-2024-0647 (A vulnerability, which was classified as problematic, was found i CVE-2024-0646 (An out-of-bounds memory write flaw was found in the Linux kernel\u2019 ...) - linux 6.6.8-1 [bookworm] - linux 6.1.69-1 + [bullseye] - linux 5.10.209-1 [buster] - linux <not-affected> (Vulnerable code not present) NOTE: https://git.kernel.org/linus/c5a595000e2677e865a39f249c056bc05d6e55fd (6.7-rc5) CVE-2024-0645 (Buffer overflow vulnerability in Explorer++ affecting version 1.3.5.53 ...) @@ -4229,6 +4233,7 @@ CVE-2023-6941 (The Keap Official Opt-in Forms WordPress plugin through 1.0.11 do CVE-2023-6915 (A Null pointer dereference problem was found in ida_free in lib/idr.c ...) - linux 6.6.13-1 [bookworm] - linux 6.1.76-1 + [bullseye] - linux 5.10.209-1 NOTE: https://git.kernel.org/linus/af73483f4e8b6f5c68c9aa63257bdd929a9c194a (6.7-rc7) CVE-2023-6843 (The easy.jobs- Best Recruitment Plugin for Job Board Listing, Manager, ...) NOT-FOR-US: WordPress plugin @@ -4696,6 +4701,7 @@ CVE-2023-6735 (Privilege escalation in mk_tsm agent plugin in Checkmk before 2.2 - check-mk <removed> CVE-2023-6040 (An out-of-bounds access vulnerability involving netfilter was reported ...) - linux 5.18.2-1 + [bullseye] - linux 5.10.209-1 NOTE: https://www.openwall.com/lists/oss-security/2024/01/12/1 NOTE: https://git.kernel.org/linus/f1082dd31fe461d482d69da2a8eccfeb7bf07ac2 (5.18-rc1) CVE-2023-52339 (In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can ...) @@ -7800,6 +7806,7 @@ CVE-2023-51780 (An issue was discovered in the Linux kernel before 6.6.8. do_vcc CVE-2023-51779 (bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel th ...) {DSA-5593-1} - linux 6.6.9-1 + [bullseye] - linux 5.10.209-1 NOTE: https://git.kernel.org/linus/2e07e8348ea454615e268222ae3fc240421be768 (6.7-rc7) CVE-2023-49337 (Concrete CMS before 9.2.3 allows Stored XSS on the Admin Dashboard via ...) NOT-FOR-US: Concrete CMS @@ -11349,6 +11356,7 @@ CVE-2023-6606 (An out-of-bounds read vulnerability was found in smbCalcSize in f {DLA-3710-1} - linux 6.6.9-1 [bookworm] - linux 6.1.76-1 + [bullseye] - linux 5.10.209-1 NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=218218 NOTE: https://git.kernel.org/linus/b35858b3786ddbb56e1c35138ba25d6adf8d0bef CVE-2023-6507 (An issue was found in CPython 3.12.0 `subprocess` module on POSIX plat ...) @@ -16224,6 +16232,7 @@ CVE-2023-40054 (The Network Configuration Manager was susceptible to a Directory CVE-2023-39198 (A race condition was found in the QXL driver in the Linux kernel. The ...) - linux 6.4.13-1 [bookworm] - linux 6.1.52-1 + [bullseye] - linux 5.10.209-1 NOTE: https://git.kernel.org/linus/c611589b4259ed63b9b77be6872b1ce07ec0ac16 (6.5-rc7) CVE-2023-39197 (An out-of-bounds read vulnerability was found in Netfilter Connection ...) - linux 6.4.4-1 diff --git a/data/next-oldstable-point-update.txt b/data/next-oldstable-point-update.txt index 4913efe450..a521670b71 100644 --- a/data/next-oldstable-point-update.txt +++ b/data/next-oldstable-point-update.txt @@ -112,24 +112,6 @@ CVE-2016-1244 [bullseye] - unadf 0.7.11a-4+deb11u1 CVE-2016-1243 [bullseye] - unadf 0.7.11a-4+deb11u1 -CVE-2023-39198 - [bullseye] - linux 5.10.209-1 -CVE-2023-46838 - [bullseye] - linux 5.10.209-1 -CVE-2023-51779 - [bullseye] - linux 5.10.209-1 -CVE-2023-52340 - [bullseye] - linux 5.10.209-1 -CVE-2023-6040 - [bullseye] - linux 5.10.209-1 -CVE-2023-6606 - [bullseye] - linux 5.10.209-1 -CVE-2023-6915 - [bullseye] - linux 5.10.209-1 -CVE-2024-0646 - [bullseye] - linux 5.10.209-1 -CVE-2024-1086 - [bullseye] - linux 5.10.209-2 CVE-2023-5157 [bullseye] - galera-4 26.4.14-0+deb11u1 CVE-2021-32718 |