From ae81712cbf3e6a9fc332be353ea2c6204dbf1fe8 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 10 Apr 2024 16:37:41 +0200
Subject: Add two more CVEs allocated

---
 active/CVE-2024-26815 | 17 +++++++++++++++++
 active/CVE-2024-26816 | 17 +++++++++++++++++
 2 files changed, 34 insertions(+)
 create mode 100644 active/CVE-2024-26815
 create mode 100644 active/CVE-2024-26816

diff --git a/active/CVE-2024-26815 b/active/CVE-2024-26815
new file mode 100644
index 00000000..c1a0f920
--- /dev/null
+++ b/active/CVE-2024-26815
@@ -0,0 +1,17 @@
+Description: net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check
+References:
+Notes:
+ carnil> Introduced in a54fc09e4cba ("net/sched: taprio: allow user input of per-tc max
+ carnil> SDU"). Vulnerable versions: 6.1-rc1.
+Bugs:
+upstream: released (6.9-rc1) [343041b59b7810f9cdca371f445dd43b35c740b1]
+6.8-upstream-stable: released (6.8.2) [9b720bb1a69a9f12a4a5c86b6f89386fe05ed0f2]
+6.7-upstream-stable: released (6.7.11) [860e838fb089d652a446ced52cbdf051285b68e7]
+6.6-upstream-stable: released (6.6.23) [6915b1b28fe57e92c78e664366dc61c4f15ff03b]
+6.1-upstream-stable: released (6.1.83) [bd2474a45df7c11412c2587de3d4e43760531418]
+5.10-upstream-stable: N/A "Vulnerable code not present"
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: N/A "Vulnerable code not present"
+4.19-buster-security: N/A "Vulnerable code not present"
diff --git a/active/CVE-2024-26816 b/active/CVE-2024-26816
new file mode 100644
index 00000000..6a6504d4
--- /dev/null
+++ b/active/CVE-2024-26816
@@ -0,0 +1,17 @@
+Description: x86, relocs: Ignore relocations in .notes section
+References:
+Notes:
+ carnil> Introduced in 5ead97c84fa7 ("xen: Core Xen implementation")
+ carnil> da1a679cde9b ("Add /sys/kernel/notes"). Vulnerable versions: 2.6.23-rc1.
+Bugs:
+upstream: released (6.9-rc1) [aaa8736370db1a78f0e8434344a484f9fd20be3b]
+6.8-upstream-stable: released (6.8.2) [5cb59db49c9c0fccfd33b2209af4f7ae3c6ddf40]
+6.7-upstream-stable: released (6.7.11) [ae7079238f6faf1b94accfccf334e98b46a0c0aa]
+6.6-upstream-stable: released (6.6.23) [af2a9f98d884205145fd155304a6955822ccca1c]
+6.1-upstream-stable: released (6.1.83) [47635b112a64b7b208224962471e7e42f110e723]
+5.10-upstream-stable: released (5.10.214) [a4e7ff1a74274e59a2de9bb57236542aa990d20a]
+4.19-upstream-stable: released (4.19.311) [13edb509abc91c72152a11baaf0e7c060a312e03]
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
-- 
cgit v1.2.3