Add new batch of CVEs assigned

author: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-04-04 21:03:24 +0200
commit: 509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree: f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26807
parent: e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2024-26807 b/active/CVE-2024-26807
new file mode 100644
index 000000000..40217ce84
--- /dev/null
+++ b/active/CVE-2024-26807
@@ -0,0 +1,17 @@
+Description: spi: cadence-qspi: fix pointer reference in runtime PM hooks
+References:
+Notes:
+ carnil> Introduced in 2087e85bb66e ("spi: cadence-quadspi: fix suspend-resume
+ carnil> implementations"). Vulnerable versions: 4.19.283 5.4.243 5.10.180 5.15.111
+ carnil> 6.1.28 6.2.15 6.3.2 6.4-rc1.
+Bugs:
+upstream: released (6.8-rc7) [32ce3bb57b6b402de2aec1012511e7ac4e7449dc]
+6.7-upstream-stable: released (6.7.9) [34e1d5c4407c78de0e3473e1fbf8fb74dbe66d03]
+6.6-upstream-stable: released (6.6.21) [03f1573c9587029730ca68503f5062105b122f61]
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: needed
+sid: released (6.7.9-1)
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
author	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-04-04 21:03:24 +0200
commit	509a8073b54876c19b79eb622cc24fde0309bb38 (patch)
tree	f14b6050fb356f8e081b5149333a8649a722215c /active/CVE-2024-26807
parent	e2b12639eebeadc5925bec1ffdecf7df5192aace (diff)