diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2024-05-01 08:53:49 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-05-01 08:53:49 +0200 |
commit | 0763ac5322d01bfc34edc852640cce8a7f68afff (patch) | |
tree | 274df921a5047c12471926f0c7e8c7fa51623cce /active | |
parent | ad81da2a7d03a56cf674a6fa6cd203adf3c2c368 (diff) |
Retire several CVEs
Diffstat (limited to 'active')
-rw-r--r-- | active/CVE-2023-52647 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26940 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26943 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26946 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26949 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26959 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26963 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26964 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26968 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26971 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26975 | 16 | ||||
-rw-r--r-- | active/CVE-2024-26977 | 16 |
12 files changed, 0 insertions, 192 deletions
diff --git a/active/CVE-2023-52647 b/active/CVE-2023-52647 deleted file mode 100644 index 37dc40de..00000000 --- a/active/CVE-2023-52647 +++ /dev/null @@ -1,16 +0,0 @@ -Description: media: nxp: imx8-isi: Check whether crossbar pad is non-NULL before access -References: -Notes: - carnil> Introduced in cf21f328fcaf ("media: nxp: Add i.MX8 ISI driver"). Vulnerable - carnil> versions: 6.4-rc1. -Bugs: -upstream: released (6.9-rc1) [eb2f932100288dbb881eadfed02e1459c6b9504c] -6.8-upstream-stable: released (6.8.3) [91c8ce42fcde09f1da24acab9013b3e19cb88a4e] -6.6-upstream-stable: released (6.6.24) [c95318607fbe8fdd44991a8dad2e44118e6b8812] -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26940 b/active/CVE-2024-26940 deleted file mode 100644 index 51caf555..00000000 --- a/active/CVE-2024-26940 +++ /dev/null @@ -1,16 +0,0 @@ -Description: drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed -References: -Notes: - carnil> Introduced in af4a25bbe5e7 ("drm/vmwgfx: Add debugfs entries for various ttm - carnil> resource managers"). Vulnerable versions: 5.19-rc1. -Bugs: -upstream: released (6.9-rc2) [4be9075fec0a639384ed19975634b662bfab938f] -6.8-upstream-stable: released (6.8.3) [eb08db0fc5354fa17b7ed66dab3c503332423451] -6.6-upstream-stable: released (6.6.24) [042ef0afc40fa1a22b3608f22915b91ce39d128f] -6.1-upstream-stable: released (6.1.84) [016119154981d81c9e8f2ea3f56b9e2b4ea14500] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26943 b/active/CVE-2024-26943 deleted file mode 100644 index 652b2ac0..00000000 --- a/active/CVE-2024-26943 +++ /dev/null @@ -1,16 +0,0 @@ -Description: nouveau/dmem: handle kcalloc() allocation failure -References: -Notes: - carnil> Introduced in 249881232e14 ("nouveau/dmem: evict device private memory during - carnil> release"). Vulnerable versions: 6.1-rc1. -Bugs: -upstream: released (6.9-rc2) [16e87fe23d4af6df920406494ced5c0f4354567b] -6.8-upstream-stable: released (6.8.3) [3e82f7383e0b82a835e6b6b06a348b2bc4e2c2ee] -6.6-upstream-stable: released (6.6.24) [2a84744a037b8a511d6a9055f3defddc28ff4a4d] -6.1-upstream-stable: released (6.1.84) [9acfd8b083a0ffbd387566800d89f55058a68af2] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26946 b/active/CVE-2024-26946 deleted file mode 100644 index 2b4163f4..00000000 --- a/active/CVE-2024-26946 +++ /dev/null @@ -1,16 +0,0 @@ -Description: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address -References: -Notes: - carnil> Introduced in cc66bb914578 ("x86/ibt,kprobes: Cure sym+0 equals fentry woes"). - carnil> Vulnerable versions: 5.18-rc1. -Bugs: -upstream: released (6.9-rc1) [4e51653d5d871f40f1bd5cf95cc7f2d8b33d063b] -6.8-upstream-stable: released (6.8.3) [b69f577308f1070004cafac106dd1a44099e5483] -6.6-upstream-stable: released (6.6.24) [f13edd1871d4fb4ab829aff629d47914e251bae3] -6.1-upstream-stable: released (6.1.84) [6417684315087904fffe8966d27ca74398c57dd6] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26949 b/active/CVE-2024-26949 deleted file mode 100644 index 3cd68447..00000000 --- a/active/CVE-2024-26949 +++ /dev/null @@ -1,16 +0,0 @@ -Description: drm/amdgpu/pm: Fix NULL pointer dereference when get power limit -References: -Notes: - carnil> Introduced in 7968e9748fbb ("drm/amdgpu/pm: Fix the power1_min_cap value"). - carnil> Vulnerable versions: 6.7.9 6.8-rc7. -Bugs: -upstream: released (6.9-rc1) [08ae9ef829b8055c2fdc8cfee37510c1f4721a07] -6.8-upstream-stable: released (6.8.3) [b8eaa8ef1f1157a9f330e36e66bdd7a693309948] -6.6-upstream-stable: N/A "Vulnerable code not present" -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26959 b/active/CVE-2024-26959 deleted file mode 100644 index 4acaa4ad..00000000 --- a/active/CVE-2024-26959 +++ /dev/null @@ -1,16 +0,0 @@ -Description: Bluetooth: btnxpuart: Fix btnxpuart_close -References: -Notes: - carnil> Introduced in 689ca16e5232 ("Bluetooth: NXP: Add protocol support for NXP - carnil> Bluetooth chipsets"). Vulnerable versions: 6.4-rc1. -Bugs: -upstream: released (6.9-rc1) [664130c0b0309b360bc5bdd40a30604a9387bde8] -6.8-upstream-stable: released (6.8.3) [74bcf708775c405f7fb6ed776ccd3e1957f38a52] -6.6-upstream-stable: released (6.6.24) [d4e2365b07f1ae1f811a915b514caef5b2d6581e] -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26963 b/active/CVE-2024-26963 deleted file mode 100644 index d2820022..00000000 --- a/active/CVE-2024-26963 +++ /dev/null @@ -1,16 +0,0 @@ -Description: usb: dwc3-am62: fix module unload/reload behavior -References: -Notes: - carnil> Introduced in e8784c0aec03 ("drivers: usb: dwc3: Add AM62 USB wrapper driver"). - carnil> Vulnerable versions: 5.19-rc1. -Bugs: -upstream: released (6.9-rc1) [6661befe41009c210efa2c1bcd16a5cc4cff8a06] -6.8-upstream-stable: released (6.8.3) [3895780fabd120d0fbd54354014e85207b25687c] -6.6-upstream-stable: released (6.6.24) [7dfed9855397d0df4c6f748d1f66547ab3bad766] -6.1-upstream-stable: released (6.1.84) [6c6a45645a2e6a272dfde14eddbb6706de63c25d] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26964 b/active/CVE-2024-26964 deleted file mode 100644 index 7e67c6c9..00000000 --- a/active/CVE-2024-26964 +++ /dev/null @@ -1,16 +0,0 @@ -Description: usb: xhci: Add error handling in xhci_map_urb_for_dma -References: -Notes: - carnil> Introduced in 2017a1e58472 ("usb: xhci: Use temporary buffer to consolidate - carnil> SG"). Vulnerable versions: 5.11-rc1. -Bugs: -upstream: released (6.9-rc1) [be95cc6d71dfd0cba66e3621c65413321b398052] -6.8-upstream-stable: released (6.8.3) [7b6cc33593d7ccfc3011b290849cfa899db46757] -6.6-upstream-stable: released (6.6.24) [620b6cf2f1a270f48d38e6b8ce199c1acb3e90f4] -6.1-upstream-stable: released (6.1.84) [b2c898469dfc388f619c6c972a28466cbb1442ea] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26968 b/active/CVE-2024-26968 deleted file mode 100644 index 49accff9..00000000 --- a/active/CVE-2024-26968 +++ /dev/null @@ -1,16 +0,0 @@ -Description: clk: qcom: gcc-ipq9574: fix terminating of frequency table arrays -References: -Notes: - carnil> Introduced in d75b82cff488 ("clk: qcom: Add Global Clock Controller driver for - carnil> IPQ9574"). Vulnerable versions: 6.4-rc1. -Bugs: -upstream: released (6.9-rc1) [bd2b6395671d823caa38d8e4d752de2448ae61e1] -6.8-upstream-stable: released (6.8.3) [604f2d7c46727c5e24fc7faddc980bc1cc0b1011] -6.6-upstream-stable: released (6.6.24) [0204247cf3669b6021fb745c3b7f37ae392ab19c] -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26971 b/active/CVE-2024-26971 deleted file mode 100644 index 240bb13d..00000000 --- a/active/CVE-2024-26971 +++ /dev/null @@ -1,16 +0,0 @@ -Description: clk: qcom: gcc-ipq5018: fix terminating of frequency table arrays -References: -Notes: - carnil> Introduced in e3fdbef1bab8 ("clk: qcom: Add Global Clock controller (GCC) - carnil> driver for IPQ5018"). Vulnerable versions: 6.6-rc1. -Bugs: -upstream: released (6.9-rc1) [90ad946fff70f312b8d23226afc38c13ddd88c4b] -6.8-upstream-stable: released (6.8.3) [50c3acd460551cdf9d8ac6fe0c04f2de0e8e0872] -6.6-upstream-stable: released (6.6.24) [b0cf3d200e8a72b6d28e6e088c062b4a98cb5eaf] -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26975 b/active/CVE-2024-26975 deleted file mode 100644 index c40a062e..00000000 --- a/active/CVE-2024-26975 +++ /dev/null @@ -1,16 +0,0 @@ -Description: powercap: intel_rapl: Fix a NULL pointer dereference -References: -Notes: - carnil> Introduced in 1488ac990ac8 ("powercap: intel_rapl: Allow probing without CPUID - carnil> match"). Vulnerable versions: 6.5-rc1. -Bugs: -upstream: released (6.9-rc1) [2d1f5006ff95770da502f8cee2a224a1ff83866e] -6.8-upstream-stable: released (6.8.3) [2f73cf2ae5e0f4e629db5be3a4380ff7807148e6] -6.6-upstream-stable: released (6.6.24) [0641908b906a133f1494c312a71f9fecbe2b6c78] -6.1-upstream-stable: N/A "Vulnerable code not present" -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: N/A "Vulnerable code not present" -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2024-26977 b/active/CVE-2024-26977 deleted file mode 100644 index dcfc4b7e..00000000 --- a/active/CVE-2024-26977 +++ /dev/null @@ -1,16 +0,0 @@ -Description: pci_iounmap(): Fix MMIO mapping leak -References: -Notes: - carnil> Introduced in 316e8d79a095 ("pci_iounmap'2: Electric Boogaloo: try to make - carnil> sense of it all"). Vulnerable versions: 5.15-rc2. -Bugs: -upstream: released (6.9-rc1) [7626913652cc786c238e2dd7d8740b17d41b2637] -6.8-upstream-stable: released (6.8.3) [af280e137e273935f2e09f4d73169998298792ed] -6.6-upstream-stable: released (6.6.24) [b5d40f02e7222da032c2042aebcf2a07de9b342f] -6.1-upstream-stable: released (6.1.84) [6d21d0356aa44157a62e39c0d1a13d4c69a8d0c8] -5.10-upstream-stable: N/A "Vulnerable code not present" -4.19-upstream-stable: N/A "Vulnerable code not present" -sid: released (6.7.12-1) -6.1-bookworm-security: released (6.1.85-1) -5.10-bullseye-security: N/A "Vulnerable code not present" -4.19-buster-security: N/A "Vulnerable code not present" |