diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2022-06-10 13:03:25 +0200 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2022-06-10 13:03:25 +0200 |
| commit | b475b51974bc3dfbad83ffe1e97e5f1bd7e910f5 (patch) | |
| tree | 585ee647413deae7ace6f46814feda4fcd3f0374 | |
| parent | 110a36f99c68c7595c70fbf5eb3f4e40c06bade7 (diff) | |
more advisory text
| -rw-r--r-- | dsa-texts/5.10.120-1 | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/dsa-texts/5.10.120-1 b/dsa-texts/5.10.120-1 index 8ed29880..86084079 100644 --- a/dsa-texts/5.10.120-1 +++ b/dsa-texts/5.10.120-1 @@ -7,15 +7,21 @@ leaks. CVE-2022-0494 - Description + The scsi_ioctl() was susceptible to an information leak only + exploitable by users with CAP_SYS_ADMIN or CAP_SYS_RAWIO + capabilities. CVE-2022-1012 - Description + The randomisation when calculating port offsets in the IP implementation + was enhanced. CVE-2022-1729 - Description + Norbert Slusarek discovered a race condition in the perf subsystem + which could result in local privilege escalation to root. The default + settings in Debian prevent exploitation unless more permissive settings + have been applied in the kernel.perf_event_paranoid sysctl. CVE-2022-1786 |