Add new batch of CVEs assigned for Linux

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-03 21:33:11 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-03 21:33:11 +0200
commit: e2b12639eebeadc5925bec1ffdecf7df5192aace (patch)
tree: c43a5a7f293006eced7e9c712f34efab9c774abb /active/CVE-2024-26757
parent: 03801e090c9fbe79615a6fe3fc2a075311f2bd8b (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2024-26757 b/active/CVE-2024-26757
new file mode 100644
index 00000000..13db185d
--- /dev/null
+++ b/active/CVE-2024-26757
@@ -0,0 +1,17 @@
+Description: md: Don't ignore read-only array in md_check_recovery()
+References:
+Notes:
+ carnil> Introduced in ecbfb9f118bc ("dm raid: add raid level takeover support")
+ carnil> f52f5c71f3d4 ("md: fix stopping sync thread"). Vulnerable versions: 4.8-rc1
+ carnil> 6.7-rc5.
+Bugs:
+upstream: released (6.8-rc6) [55a48ad2db64737f7ffc0407634218cc6e4c513b]
+6.7-upstream-stable: released (6.7.7) [2ea169c5a0b1134d573d07fc27a16f327ad0e7d3]
+6.6-upstream-stable: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: released (6.7.7-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-03 21:33:11 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-03 21:33:11 +0200
commit	e2b12639eebeadc5925bec1ffdecf7df5192aace (patch)
tree	c43a5a7f293006eced7e9c712f34efab9c774abb /active/CVE-2024-26757
parent	03801e090c9fbe79615a6fe3fc2a075311f2bd8b (diff)