Add some ancient linux CVEs

7 files changed, 24 insertions, 0 deletions

diff --git a/data/CVE/2007.list b/data/CVE/2007.list
index e5c77889cd..8e015517c8 100644
--- a/data/CVE/2007.list
+++ b/data/CVE/2007.list
@@ -1,3 +1,6 @@
+CVE-2007-6762 [NetLabel: correct CIPSO tag handling when adding new DOI definitions]
+	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
+	NOTE: https://git.kernel.org/linus/2a2f11c227bdf292b3a2900ad04139d301b56ac4
 CVE-2007-6761 (drivers/media/video/videobuf-vmalloc.c in the Linux kernel before 2.6. ...)
 	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
 	NOTE: Fixed by: https://git.kernel.org/linus/0b29669c065f60501e7289e1950fa2a618962358 (v2.6.24-rc6)
diff --git a/data/CVE/2010.list b/data/CVE/2010.list
index 43715b81c2..1faffad243 100644
--- a/data/CVE/2010.list
+++ b/data/CVE/2010.list
@@ -1,3 +1,9 @@
+CVE-2010-5332 [mlx4_en: Fix out of bounds array access]
+	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
+	NOTE: https://git.kernel.org/linus/0926f91083f34d047abc74f1ca4fa6a9c161f7db
+CVE-2010-5331 [drivers/gpu/drm/radeon/radeon_atombios.c: range check issues]
+	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
+	NOTE: https://git.kernel.org/linus/0031c41be5c529f8329e327b63cde92ba1284842
 CVE-2010-5330 (On certain Ubiquiti devices, Command Injection exists via a GET reques ...)
 	NOT-FOR-US: Ubiquiti
 CVE-2010-5329 (The video_usercopy function in drivers/media/video/v4l2-ioctl.c in the ...)
diff --git a/data/CVE/2011.list b/data/CVE/2011.list
index be91acc25b..2bf50e6579 100644
--- a/data/CVE/2011.list
+++ b/data/CVE/2011.list
@@ -1,3 +1,6 @@
+CVE-2011-5327 [loopback: off by one in tcm_loop_make_naa_tpg()]
+	- linux <not-affected> (Fixed before src:linux-2.6 -> src:linux rename)
+	NOTE: https://git.kernel.org/linus/12f09ccb4612734a53e47ed5302e0479c10a50f8
 CVE-2011-5326 (imlib2 before 1.4.9 allows remote attackers to cause a denial of servi ...)
 	{DSA-3555-1}
 	- imlib2 1.4.8-1 (bug #639414)
diff --git a/data/CVE/2012.list b/data/CVE/2012.list
index 2bc58a38b4..804db6a66b 100644
--- a/data/CVE/2012.list
+++ b/data/CVE/2012.list
@@ -1,3 +1,6 @@
+CVE-2012-6712 [iwlwifi: Sanity check for sta_id]
+	- linux 3.8.11-1
+	NOTE: https://git.kernel.org/linus/2da424b0773cea3db47e1e81db71eeebde8269d4
 CVE-2012-6711 (A heap-based buffer overflow exists in GNU Bash before 4.3 when wide c ...)
 	- bash 4.3-1
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1721071
diff --git a/data/CVE/2015.list b/data/CVE/2015.list
index 07c4e85f17..8e9beb1898 100644
--- a/data/CVE/2015.list
+++ b/data/CVE/2015.list
@@ -1,3 +1,6 @@
+CVE-2015-9289 [[media] cx24116: fix a buffer overflow when checking userspace params]
+	- linux 4.1.5-1
+	NOTE: https://git.kernel.org/linus/1fa2337a315a2448c5434f41e00d56b01a22283c
 CVE-2015-9288
 	RESERVED
 CVE-2015-9287 (Directory Traversal was discovered in University of Cambridge mod_ucam ...)
diff --git a/data/CVE/2016.list b/data/CVE/2016.list
index c513818c0f..3dcae5dce6 100644
--- a/data/CVE/2016.list
+++ b/data/CVE/2016.list
@@ -1,3 +1,6 @@
+CVE-2016-10764 [mtd: spi-nor: Off by one in cqspi_setup_flash()]
+	- linux 4.9.6-1
+	NOTE: https://git.kernel.org/linus/193e87143c290ec16838f5368adc0e0bc94eb931
 CVE-2016-10763 (The CampTix Event Ticketing plugin before 1.5 for WordPress allows XSS ...)
 	NOT-FOR-US: CampTix Event Ticketing plugin for WordPress
 CVE-2016-10762 (The CampTix Event Ticketing plugin before 1.5 for WordPress allows CSV ...)
diff --git a/data/CVE/2017.list b/data/CVE/2017.list
index 25517a8f53..782ac5ff33 100644
--- a/data/CVE/2017.list
+++ b/data/CVE/2017.list
@@ -1,3 +1,6 @@
+CVE-2017-18379 [nvmet-fc: ensure target queue id within range]
+	- linux 4.14.2-1
+	NOTE: https://git.kernel.org/linus/0c319d3a144d4b8f1ea2047fd614d2149b68f889
 CVE-2017-18378 (In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4- ...)
 	NOT-FOR-US: NETGEAR
 CVE-2017-18377 (An issue was discovered on Wireless IP Camera (P2P) WIFICAM cameras. T ...)