diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2024-05-04 10:18:01 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2024-05-04 10:18:01 +0200 |
commit | 1ac62df56df8013deac5a941baf85b838d3cbef9 (patch) | |
tree | 3f89161fe1e6d9ce789a005b754da99ab71ac0d1 /active | |
parent | 0908003a968ea10f3a0f5229eba03ce6f04e9a92 (diff) |
Add some descriptions for CVEs in active/
Diffstat (limited to 'active')
-rw-r--r-- | active/CVE-2020-11725 | 2 | ||||
-rw-r--r-- | active/CVE-2020-26141 | 2 | ||||
-rw-r--r-- | active/CVE-2020-26145 | 2 | ||||
-rw-r--r-- | active/CVE-2022-0500 | 2 | ||||
-rw-r--r-- | active/CVE-2023-21264 | 2 | ||||
-rw-r--r-- | active/CVE-2023-2177 | 2 | ||||
-rw-r--r-- | active/CVE-2023-4010 | 2 | ||||
-rw-r--r-- | active/CVE-2024-0564 | 2 | ||||
-rw-r--r-- | active/CVE-2024-22099 | 2 | ||||
-rw-r--r-- | active/CVE-2024-23196 | 2 | ||||
-rw-r--r-- | active/CVE-2024-23307 | 2 | ||||
-rw-r--r-- | active/CVE-2024-23848 | 2 | ||||
-rw-r--r-- | active/CVE-2024-24855 | 2 | ||||
-rw-r--r-- | active/CVE-2024-24857 | 2 | ||||
-rw-r--r-- | active/CVE-2024-24858 | 2 | ||||
-rw-r--r-- | active/CVE-2024-24861 | 2 |
16 files changed, 16 insertions, 16 deletions
diff --git a/active/CVE-2020-11725 b/active/CVE-2020-11725 index 17fce19a..f9820abe 100644 --- a/active/CVE-2020-11725 +++ b/active/CVE-2020-11725 @@ -1,4 +1,4 @@ -Description: +Description: improper handling of private_size*count multiplication due to count=info->owner typo References: https://twitter.com/yabbadabbadrew/status/1248632267028582400 https://lore.kernel.org/alsa-devel/s5h4ktmlfpx.wl-tiwai@suse.de/ diff --git a/active/CVE-2020-26141 b/active/CVE-2020-26141 index afb158cd..4cda0d5a 100644 --- a/active/CVE-2020-26141 +++ b/active/CVE-2020-26141 @@ -1,4 +1,4 @@ -Description: +Description: ath10k: Fix TKIP Michael MIC verification for PCIe References: https://papers.mathyvanhoef.com/usenix2021.pdf https://www.fragattacks.com/ diff --git a/active/CVE-2020-26145 b/active/CVE-2020-26145 index c22f388c..da918bd1 100644 --- a/active/CVE-2020-26145 +++ b/active/CVE-2020-26145 @@ -1,4 +1,4 @@ -Description: +Description: accepting plaintext broadcast fragments as full frames References: https://papers.mathyvanhoef.com/usenix2021.pdf https://www.fragattacks.com/ diff --git a/active/CVE-2022-0500 b/active/CVE-2022-0500 index e0dc9885..7ba40d47 100644 --- a/active/CVE-2022-0500 +++ b/active/CVE-2022-0500 @@ -1,4 +1,4 @@ -Description: +Description: Flaw in unrestricted eBPF usage by the BPF_BTF_LOAD References: https://bugzilla.redhat.com/show_bug.cgi?id=2044578 https://access.redhat.com/security/cve/CVE-2022-0500 diff --git a/active/CVE-2023-21264 b/active/CVE-2023-21264 index f0128c4f..5711c767 100644 --- a/active/CVE-2023-21264 +++ b/active/CVE-2023-21264 @@ -1,4 +1,4 @@ -Description: +Description: KVM: arm64: Prevent unconditional donation of unmapped regions from the host References: https://source.android.com/docs/security/bulletin/2023-08-01 https://android.googlesource.com/kernel/common/+/b35a06182451f diff --git a/active/CVE-2023-2177 b/active/CVE-2023-2177 index 09f5a249..9c05d6bc 100644 --- a/active/CVE-2023-2177 +++ b/active/CVE-2023-2177 @@ -1,4 +1,4 @@ -Description: +Description: sctp: leave the err path free in sctp_stream_init to sctp_stream_free References: https://lore.kernel.org/netdev/CADvbK_dWMO0XdAf950Q14pUv99ahS1MRnOtppvosU2w33sO=kw@mail.gmail.com/T/ https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=181d8d2066c0 diff --git a/active/CVE-2023-4010 b/active/CVE-2023-4010 index f5542b71..3273bd03 100644 --- a/active/CVE-2023-4010 +++ b/active/CVE-2023-4010 @@ -1,4 +1,4 @@ -Description: +Description: usb: hcd: malformed USB descriptor leads to infinite loop in usb_giveback_urb() References: https://bugzilla.redhat.com/show_bug.cgi?id=2227726 https://github.com/wanrenmi/a-usb-kernel-bug diff --git a/active/CVE-2024-0564 b/active/CVE-2024-0564 index 8878d1bf..b276fcd1 100644 --- a/active/CVE-2024-0564 +++ b/active/CVE-2024-0564 @@ -1,4 +1,4 @@ -Description: +Description: max page sharing of Kernel Samepage Merging (KSM) may cause memory deduplication References: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1680513 https://bugzilla.redhat.com/show_bug.cgi?id=2258514 diff --git a/active/CVE-2024-22099 b/active/CVE-2024-22099 index 97fbe3cf..63fee9cb 100644 --- a/active/CVE-2024-22099 +++ b/active/CVE-2024-22099 @@ -1,4 +1,4 @@ -Description: +Description: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security References: https://bugzilla.openanolis.cn/show_bug.cgi?id=7956 Notes: diff --git a/active/CVE-2024-23196 b/active/CVE-2024-23196 index d3b89dd4..f7aac779 100644 --- a/active/CVE-2024-23196 +++ b/active/CVE-2024-23196 @@ -1,4 +1,4 @@ -Description: +Description: ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync() References: https://bugzilla.openanolis.cn/show_bug.cgi?id=8148 Notes: diff --git a/active/CVE-2024-23307 b/active/CVE-2024-23307 index e18f1d6c..20302f13 100644 --- a/active/CVE-2024-23307 +++ b/active/CVE-2024-23307 @@ -1,4 +1,4 @@ -Description: +Description: md/raid5: fix atomicity violation in raid5_cache_count References: https://bugzilla.openanolis.cn/show_bug.cgi?id=7975 Notes: diff --git a/active/CVE-2024-23848 b/active/CVE-2024-23848 index bbedeed2..b0bcfa15 100644 --- a/active/CVE-2024-23848 +++ b/active/CVE-2024-23848 @@ -1,4 +1,4 @@ -Description: +Description: use-after-free in cec_queue_msg_fh References: https://lore.kernel.org/lkml/e9f42704-2f99-4f2c-ade5-f952e5fd53e5%40xs4all.nl/ Notes: diff --git a/active/CVE-2024-24855 b/active/CVE-2024-24855 index f48a0e76..865af24e 100644 --- a/active/CVE-2024-24855 +++ b/active/CVE-2024-24855 @@ -1,4 +1,4 @@ -Description: +Description: scsi: lpfc: Fix a possible data race in lpfc_unregister_fcf_rescan() References: https://bugzilla.openanolis.cn/show_bug.cgi?id=8149 Notes: diff --git a/active/CVE-2024-24857 b/active/CVE-2024-24857 index 1fa6a57a..d45c09dd 100644 --- a/active/CVE-2024-24857 +++ b/active/CVE-2024-24857 @@ -1,4 +1,4 @@ -Description: +Description: Bluetooth: Fix TOCTOU in HCI debugfs implementation References: https://bugzilla.openanolis.cn/show_bug.cgi?id=8155 Notes: diff --git a/active/CVE-2024-24858 b/active/CVE-2024-24858 index db2354ac..ef9cdb5a 100644 --- a/active/CVE-2024-24858 +++ b/active/CVE-2024-24858 @@ -1,4 +1,4 @@ -Description: +Description: Bluetooth: Fix TOCTOU in HCI debugfs implementation References: https://bugzilla.openanolis.cn/show_bug.cgi?id=8154 Notes: diff --git a/active/CVE-2024-24861 b/active/CVE-2024-24861 index 8884ad9f..5412701a 100644 --- a/active/CVE-2024-24861 +++ b/active/CVE-2024-24861 @@ -1,4 +1,4 @@ -Description: +Description: media: xc4000: Fix atomicity violation in xc4000_get_frequency References: https://bugzilla.openanolis.cn/show_bug.cgi?id=8150 Notes: |