Update 9Aug22
diff --git a/CHANGES.md b/CHANGES.md
index 79aefde..aa2f153 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1,42 +1,26 @@
# **Linux Kernel CVE Changes**
-## Last Update - 02Sep22 13:27
+## Last Update - 09Sep22 15:34
### **New CVEs Added:**
-[CVE-2020-27784](cves/CVE-2020-27784)
-[CVE-2022-21385](cves/CVE-2022-21385)
-[CVE-2022-2663](cves/CVE-2022-2663)
-[CVE-2022-2905](cves/CVE-2022-2905)
-[CVE-2022-2964](cves/CVE-2022-2964)
-[CVE-2022-3028](cves/CVE-2022-3028)
-[CVE-2022-3061](cves/CVE-2022-3061)
-[CVE-2022-3078](cves/CVE-2022-3078)
-[CVE-2022-39188](cves/CVE-2022-39188)
-[CVE-2022-39189](cves/CVE-2022-39189)
-[CVE-2022-39190](cves/CVE-2022-39190)
+[CVE-2022-39842](cves/CVE-2022-39842)
+[CVE-2022-40307](cves/CVE-2022-40307)
### **New Versions Checked:**
-[5.10.140](streams/5.10)
-[5.15.64](streams/5.15)
-[5.19.6](streams/5.19)
+[4.14.292](streams/4.14)
+[4.19.257](streams/4.19)
+[4.9.327](streams/4.9)
+[5.10.142](streams/5.10)
+[5.15.67](streams/5.15)
+[5.19.8](streams/5.19)
+[5.4.212](streams/5.4)
### **Updated CVEs:**
-[CVE-2020-36557](cves/CVE-2020-36557)
-[CVE-2020-36558](cves/CVE-2020-36558)
-[CVE-2022-20369](cves/CVE-2022-20369)
-[CVE-2022-2308](cves/CVE-2022-2308)
-[CVE-2022-2503](cves/CVE-2022-2503)
-[CVE-2022-2586](cves/CVE-2022-2586)
-[CVE-2022-2588](cves/CVE-2022-2588)
-[CVE-2022-2590](cves/CVE-2022-2590)
-[CVE-2022-26373](cves/CVE-2022-26373)
-[CVE-2022-2639](cves/CVE-2022-2639)
-[CVE-2022-2938](cves/CVE-2022-2938)
-[CVE-2022-2959](cves/CVE-2022-2959)
-[CVE-2022-2991](cves/CVE-2022-2991)
+[CVE-2022-2905](cves/CVE-2022-2905)
+[CVE-2022-3028](cves/CVE-2022-3028)
diff --git a/data/3.12/3.12_CVEs.txt b/data/3.12/3.12_CVEs.txt
index 98b4653..4da1028 100644
--- a/data/3.12/3.12_CVEs.txt
+++ b/data/3.12/3.12_CVEs.txt
@@ -1175,3 +1175,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/3.12/3.12_security.txt b/data/3.12/3.12_security.txt
index 997a8cd..7c7675b 100644
--- a/data/3.12/3.12_security.txt
+++ b/data/3.12/3.12_security.txt
@@ -1313,3 +1313,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/3.14/3.14_CVEs.txt b/data/3.14/3.14_CVEs.txt
index 3c245f6..fac0ce6 100644
--- a/data/3.14/3.14_CVEs.txt
+++ b/data/3.14/3.14_CVEs.txt
@@ -1144,3 +1144,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/3.14/3.14_security.txt b/data/3.14/3.14_security.txt
index 959748a..a386413 100644
--- a/data/3.14/3.14_security.txt
+++ b/data/3.14/3.14_security.txt
@@ -1278,3 +1278,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/3.16/3.16_CVEs.txt b/data/3.16/3.16_CVEs.txt
index 9a1bb24..8765766 100644
--- a/data/3.16/3.16_CVEs.txt
+++ b/data/3.16/3.16_CVEs.txt
@@ -1127,3 +1127,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/3.16/3.16_security.txt b/data/3.16/3.16_security.txt
index aa303bf..3918439 100644
--- a/data/3.16/3.16_security.txt
+++ b/data/3.16/3.16_security.txt
@@ -1233,3 +1233,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/3.18/3.18_CVEs.txt b/data/3.18/3.18_CVEs.txt
index 8c04a07..d8c7a83 100644
--- a/data/3.18/3.18_CVEs.txt
+++ b/data/3.18/3.18_CVEs.txt
@@ -1112,3 +1112,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/3.18/3.18_security.txt b/data/3.18/3.18_security.txt
index 7ac370d..fd7b6f4 100644
--- a/data/3.18/3.18_security.txt
+++ b/data/3.18/3.18_security.txt
@@ -1346,3 +1346,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/3.2/3.2_CVEs.txt b/data/3.2/3.2_CVEs.txt
index 60c0aa4..fc61c2c 100644
--- a/data/3.2/3.2_CVEs.txt
+++ b/data/3.2/3.2_CVEs.txt
@@ -1153,3 +1153,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/3.2/3.2_security.txt b/data/3.2/3.2_security.txt
index 9d072ed..e72b9a2 100644
--- a/data/3.2/3.2_security.txt
+++ b/data/3.2/3.2_security.txt
@@ -1309,3 +1309,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.1/4.1_CVEs.txt b/data/4.1/4.1_CVEs.txt
index fdad695..dc5735f 100644
--- a/data/4.1/4.1_CVEs.txt
+++ b/data/4.1/4.1_CVEs.txt
@@ -1073,3 +1073,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.1/4.1_security.txt b/data/4.1/4.1_security.txt
index 93f40b3..63aeebb 100644
--- a/data/4.1/4.1_security.txt
+++ b/data/4.1/4.1_security.txt
@@ -1169,3 +1169,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.10/4.10_CVEs.txt b/data/4.10/4.10_CVEs.txt
index 3579d6b..e5fb2d7 100644
--- a/data/4.10/4.10_CVEs.txt
+++ b/data/4.10/4.10_CVEs.txt
@@ -971,3 +971,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.10/4.10_security.txt b/data/4.10/4.10_security.txt
index 33e6546..d3ccc10 100644
--- a/data/4.10/4.10_security.txt
+++ b/data/4.10/4.10_security.txt
@@ -1005,3 +1005,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.11/4.11_CVEs.txt b/data/4.11/4.11_CVEs.txt
index a189bdc..67c41ba 100644
--- a/data/4.11/4.11_CVEs.txt
+++ b/data/4.11/4.11_CVEs.txt
@@ -943,3 +943,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.11/4.11_security.txt b/data/4.11/4.11_security.txt
index 7c95931..6c01226 100644
--- a/data/4.11/4.11_security.txt
+++ b/data/4.11/4.11_security.txt
@@ -965,3 +965,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.12/4.12_CVEs.txt b/data/4.12/4.12_CVEs.txt
index 50303ef..b693ea7 100644
--- a/data/4.12/4.12_CVEs.txt
+++ b/data/4.12/4.12_CVEs.txt
@@ -925,3 +925,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.12/4.12_security.txt b/data/4.12/4.12_security.txt
index 6fc9436..d0359f2 100644
--- a/data/4.12/4.12_security.txt
+++ b/data/4.12/4.12_security.txt
@@ -951,3 +951,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.13/4.13_CVEs.txt b/data/4.13/4.13_CVEs.txt
index a69569a..e0356a4 100644
--- a/data/4.13/4.13_CVEs.txt
+++ b/data/4.13/4.13_CVEs.txt
@@ -908,3 +908,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.13/4.13_security.txt b/data/4.13/4.13_security.txt
index e2db61b..7b175aa 100644
--- a/data/4.13/4.13_security.txt
+++ b/data/4.13/4.13_security.txt
@@ -936,3 +936,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.14/4.14_CVEs.txt b/data/4.14/4.14_CVEs.txt
index 9ff0fe4..97efade 100644
--- a/data/4.14/4.14_CVEs.txt
+++ b/data/4.14/4.14_CVEs.txt
@@ -857,7 +857,7 @@
CVE-2022-29900: Fix not seen in stream
CVE-2022-29901: Fix not seen in stream
CVE-2022-2991: Fix not seen in stream
-CVE-2022-3028: Fix not seen in stream
+CVE-2022-3028: Fixed with 4.14.292
CVE-2022-30594: Fixed with 4.14.276
CVE-2022-3061: Fix not seen in stream
CVE-2022-3078: Fix not seen in stream
@@ -876,3 +876,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.14/4.14_security.txt b/data/4.14/4.14_security.txt
index f64ec2e..ce954eb 100644
--- a/data/4.14/4.14_security.txt
+++ b/data/4.14/4.14_security.txt
@@ -1195,6 +1195,9 @@
CVE-2022-2588: d0cce31f328fa10e7256f314e6e044e13cdf6814 net_sched: cls_route: remove from list when handle is 0
CVE-2022-36946: 83636c64b796a7e44fa72f371777f803c1ef9e74 netfilter: nf_queue: do not allow packet truncation below transport header offset
+CVEs fixed in 4.14.292:
+ CVE-2022-3028: f1b1b63e307478e93548f59e18bd844744b396d3 af_key: Do not call xfrm_probe_algs in parallel
+
Outstanding CVEs:
CVE-2005-3660: (unk)
CVE-2007-3719: (unk)
@@ -1349,10 +1352,11 @@
CVE-2022-29900: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-29901: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-2991: (unk) remove the lightnvm subsystem
- CVE-2022-3028: (unk) af_key: Do not call xfrm_probe_algs in parallel
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-3078: (unk) media: vidtv: Check for null return of vzalloc
CVE-2022-34918: (unk) netfilter: nf_tables: stricter validation of element data
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.15/4.15_CVEs.txt b/data/4.15/4.15_CVEs.txt
index f302dbb..cf713b9 100644
--- a/data/4.15/4.15_CVEs.txt
+++ b/data/4.15/4.15_CVEs.txt
@@ -826,3 +826,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.15/4.15_security.txt b/data/4.15/4.15_security.txt
index 8222e4e..8f6a293 100644
--- a/data/4.15/4.15_security.txt
+++ b/data/4.15/4.15_security.txt
@@ -858,3 +858,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.16/4.16_CVEs.txt b/data/4.16/4.16_CVEs.txt
index ce512d8..0ae3260 100644
--- a/data/4.16/4.16_CVEs.txt
+++ b/data/4.16/4.16_CVEs.txt
@@ -805,3 +805,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.16/4.16_security.txt b/data/4.16/4.16_security.txt
index 99c1faf..cd50163 100644
--- a/data/4.16/4.16_security.txt
+++ b/data/4.16/4.16_security.txt
@@ -837,3 +837,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.17/4.17_CVEs.txt b/data/4.17/4.17_CVEs.txt
index d2f11e9..c250d51 100644
--- a/data/4.17/4.17_CVEs.txt
+++ b/data/4.17/4.17_CVEs.txt
@@ -785,3 +785,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.17/4.17_security.txt b/data/4.17/4.17_security.txt
index e597177..a9864c2 100644
--- a/data/4.17/4.17_security.txt
+++ b/data/4.17/4.17_security.txt
@@ -817,3 +817,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.18/4.18_CVEs.txt b/data/4.18/4.18_CVEs.txt
index f8f8ecd..63e6589 100644
--- a/data/4.18/4.18_CVEs.txt
+++ b/data/4.18/4.18_CVEs.txt
@@ -763,3 +763,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.18/4.18_security.txt b/data/4.18/4.18_security.txt
index 510e2f8..eb3bdf1 100644
--- a/data/4.18/4.18_security.txt
+++ b/data/4.18/4.18_security.txt
@@ -795,3 +795,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.19/4.19_CVEs.txt b/data/4.19/4.19_CVEs.txt
index d7dfd0d..7d50e96 100644
--- a/data/4.19/4.19_CVEs.txt
+++ b/data/4.19/4.19_CVEs.txt
@@ -719,7 +719,7 @@
CVE-2022-29900: Fix not seen in stream
CVE-2022-29901: Fix not seen in stream
CVE-2022-2991: Fix not seen in stream
-CVE-2022-3028: Fix not seen in stream
+CVE-2022-3028: Fixed with 4.19.257
CVE-2022-30594: Fixed with 4.19.238
CVE-2022-3061: Fix not seen in stream
CVE-2022-3078: Fix not seen in stream
@@ -738,3 +738,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.19/4.19_security.txt b/data/4.19/4.19_security.txt
index 1b40737..f5a263f 100644
--- a/data/4.19/4.19_security.txt
+++ b/data/4.19/4.19_security.txt
@@ -1009,6 +1009,9 @@
CVE-2022-2586: 77d3b5038b7462318f5183e2ad704b01d57215a2 netfilter: nf_tables: do not allow SET_ID to refer to another table
CVE-2022-2588: 73584dab72d0a826f286a45544305819b58f7b92 net_sched: cls_route: remove from list when handle is 0
+CVEs fixed in 4.19.257:
+ CVE-2022-3028: 7dbfc8f25f22fe2a64dd808266e00c8d2661ebdd af_key: Do not call xfrm_probe_algs in parallel
+
Outstanding CVEs:
CVE-2005-3660: (unk)
CVE-2007-3719: (unk)
@@ -1139,10 +1142,11 @@
CVE-2022-29900: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-29901: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-2991: (unk) remove the lightnvm subsystem
- CVE-2022-3028: (unk) af_key: Do not call xfrm_probe_algs in parallel
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-3078: (unk) media: vidtv: Check for null return of vzalloc
CVE-2022-34918: (unk) netfilter: nf_tables: stricter validation of element data
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.20/4.20_CVEs.txt b/data/4.20/4.20_CVEs.txt
index 97dd8d3..ff8a454 100644
--- a/data/4.20/4.20_CVEs.txt
+++ b/data/4.20/4.20_CVEs.txt
@@ -726,3 +726,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.20/4.20_security.txt b/data/4.20/4.20_security.txt
index d9c8001..20391b3 100644
--- a/data/4.20/4.20_security.txt
+++ b/data/4.20/4.20_security.txt
@@ -758,3 +758,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.3/4.3_CVEs.txt b/data/4.3/4.3_CVEs.txt
index cd86b93..879b1eb 100644
--- a/data/4.3/4.3_CVEs.txt
+++ b/data/4.3/4.3_CVEs.txt
@@ -1070,3 +1070,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.3/4.3_security.txt b/data/4.3/4.3_security.txt
index 0ea81e2..767c565 100644
--- a/data/4.3/4.3_security.txt
+++ b/data/4.3/4.3_security.txt
@@ -1086,3 +1086,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.4/4.4_CVEs.txt b/data/4.4/4.4_CVEs.txt
index 7ad1fe7..c039da8 100644
--- a/data/4.4/4.4_CVEs.txt
+++ b/data/4.4/4.4_CVEs.txt
@@ -1051,3 +1051,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.4/4.4_security.txt b/data/4.4/4.4_security.txt
index 3da1617..1113480 100644
--- a/data/4.4/4.4_security.txt
+++ b/data/4.4/4.4_security.txt
@@ -1535,3 +1535,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.5/4.5_CVEs.txt b/data/4.5/4.5_CVEs.txt
index 1cd56bd..b0944a0 100644
--- a/data/4.5/4.5_CVEs.txt
+++ b/data/4.5/4.5_CVEs.txt
@@ -1033,3 +1033,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.5/4.5_security.txt b/data/4.5/4.5_security.txt
index 6d345c0..182a5e9 100644
--- a/data/4.5/4.5_security.txt
+++ b/data/4.5/4.5_security.txt
@@ -1049,3 +1049,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.6/4.6_CVEs.txt b/data/4.6/4.6_CVEs.txt
index 3d8a454..53b44ba 100644
--- a/data/4.6/4.6_CVEs.txt
+++ b/data/4.6/4.6_CVEs.txt
@@ -1005,3 +1005,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.6/4.6_security.txt b/data/4.6/4.6_security.txt
index e0100ea..a74dc90 100644
--- a/data/4.6/4.6_security.txt
+++ b/data/4.6/4.6_security.txt
@@ -1023,3 +1023,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.7/4.7_CVEs.txt b/data/4.7/4.7_CVEs.txt
index be0ca7b..e547050 100644
--- a/data/4.7/4.7_CVEs.txt
+++ b/data/4.7/4.7_CVEs.txt
@@ -987,3 +987,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.7/4.7_security.txt b/data/4.7/4.7_security.txt
index 3b8180b..330b569 100644
--- a/data/4.7/4.7_security.txt
+++ b/data/4.7/4.7_security.txt
@@ -1007,3 +1007,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.8/4.8_CVEs.txt b/data/4.8/4.8_CVEs.txt
index 54481d2..d7419cb 100644
--- a/data/4.8/4.8_CVEs.txt
+++ b/data/4.8/4.8_CVEs.txt
@@ -991,3 +991,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.8/4.8_security.txt b/data/4.8/4.8_security.txt
index e255410..0d93bbc 100644
--- a/data/4.8/4.8_security.txt
+++ b/data/4.8/4.8_security.txt
@@ -1021,3 +1021,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/4.9/4.9_CVEs.txt b/data/4.9/4.9_CVEs.txt
index ed03f34..5dc0ca6 100644
--- a/data/4.9/4.9_CVEs.txt
+++ b/data/4.9/4.9_CVEs.txt
@@ -971,7 +971,7 @@
CVE-2022-29900: Fix not seen in stream
CVE-2022-29901: Fix not seen in stream
CVE-2022-2991: Fix not seen in stream
-CVE-2022-3028: Fix not seen in stream
+CVE-2022-3028: Fixed with 4.9.327
CVE-2022-30594: Fixed with 4.9.311
CVE-2022-3061: Fix not seen in stream
CVE-2022-3078: Fix not seen in stream
@@ -990,3 +990,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/4.9/4.9_security.txt b/data/4.9/4.9_security.txt
index 335207e..12dfaef 100644
--- a/data/4.9/4.9_security.txt
+++ b/data/4.9/4.9_security.txt
@@ -1315,6 +1315,9 @@
CVE-2022-2588: 34a475425612bef345634202dda8dac91820b6c8 net_sched: cls_route: remove from list when handle is 0
CVE-2022-36946: 3b3e2de462323d5fdeb85a3682334a4a3dd07400 netfilter: nf_queue: do not allow packet truncation below transport header offset
+CVEs fixed in 4.9.327:
+ CVE-2022-3028: e580d3201ed222c4752ced7e629ad96bc0340713 af_key: Do not call xfrm_probe_algs in parallel
+
Outstanding CVEs:
CVE-2005-3660: (unk)
CVE-2007-3719: (unk)
@@ -1509,10 +1512,11 @@
CVE-2022-29900: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-29901: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-2991: (unk) remove the lightnvm subsystem
- CVE-2022-3028: (unk) af_key: Do not call xfrm_probe_algs in parallel
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-3078: (unk) media: vidtv: Check for null return of vzalloc
CVE-2022-34918: (unk) netfilter: nf_tables: stricter validation of element data
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.0/5.0_CVEs.txt b/data/5.0/5.0_CVEs.txt
index f524631..4a08a27 100644
--- a/data/5.0/5.0_CVEs.txt
+++ b/data/5.0/5.0_CVEs.txt
@@ -705,3 +705,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.0/5.0_security.txt b/data/5.0/5.0_security.txt
index a7d4a08..20fd597 100644
--- a/data/5.0/5.0_security.txt
+++ b/data/5.0/5.0_security.txt
@@ -753,3 +753,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.1/5.1_CVEs.txt b/data/5.1/5.1_CVEs.txt
index a4073bd..5cfc01b 100644
--- a/data/5.1/5.1_CVEs.txt
+++ b/data/5.1/5.1_CVEs.txt
@@ -675,3 +675,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.1/5.1_security.txt b/data/5.1/5.1_security.txt
index a4dd14d..b0bb678 100644
--- a/data/5.1/5.1_security.txt
+++ b/data/5.1/5.1_security.txt
@@ -711,3 +711,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.10/5.10_CVEs.txt b/data/5.10/5.10_CVEs.txt
index 36f1e27..d9d4597 100644
--- a/data/5.10/5.10_CVEs.txt
+++ b/data/5.10/5.10_CVEs.txt
@@ -389,3 +389,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fixed with 5.10.140
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.10/5.10_security.txt b/data/5.10/5.10_security.txt
index b3ea4f8..0c8b078 100644
--- a/data/5.10/5.10_security.txt
+++ b/data/5.10/5.10_security.txt
@@ -593,3 +593,5 @@
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.11/5.11_CVEs.txt b/data/5.11/5.11_CVEs.txt
index cd6bf18..b600471 100644
--- a/data/5.11/5.11_CVEs.txt
+++ b/data/5.11/5.11_CVEs.txt
@@ -379,3 +379,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.11/5.11_security.txt b/data/5.11/5.11_security.txt
index d83bd10..fe757bb 100644
--- a/data/5.11/5.11_security.txt
+++ b/data/5.11/5.11_security.txt
@@ -419,3 +419,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.12/5.12_CVEs.txt b/data/5.12/5.12_CVEs.txt
index 2717db0..96aa372 100644
--- a/data/5.12/5.12_CVEs.txt
+++ b/data/5.12/5.12_CVEs.txt
@@ -333,3 +333,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.12/5.12_security.txt b/data/5.12/5.12_security.txt
index 3b31a75..0fefe85 100644
--- a/data/5.12/5.12_security.txt
+++ b/data/5.12/5.12_security.txt
@@ -365,3 +365,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.13/5.13_CVEs.txt b/data/5.13/5.13_CVEs.txt
index 0f5f706..ce20794 100644
--- a/data/5.13/5.13_CVEs.txt
+++ b/data/5.13/5.13_CVEs.txt
@@ -299,3 +299,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.13/5.13_security.txt b/data/5.13/5.13_security.txt
index f45ebe9..dffbd4d 100644
--- a/data/5.13/5.13_security.txt
+++ b/data/5.13/5.13_security.txt
@@ -331,3 +331,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.14/5.14_CVEs.txt b/data/5.14/5.14_CVEs.txt
index b118354..277b92e 100644
--- a/data/5.14/5.14_CVEs.txt
+++ b/data/5.14/5.14_CVEs.txt
@@ -272,3 +272,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.14/5.14_security.txt b/data/5.14/5.14_security.txt
index 8e5fc39..d040ee9 100644
--- a/data/5.14/5.14_security.txt
+++ b/data/5.14/5.14_security.txt
@@ -306,3 +306,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.15/5.15_CVEs.txt b/data/5.15/5.15_CVEs.txt
index 1bc8b34..6157244 100644
--- a/data/5.15/5.15_CVEs.txt
+++ b/data/5.15/5.15_CVEs.txt
@@ -240,3 +240,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fixed with 5.15.60
CVE-2022-39190: Fixed with 5.15.64
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.15/5.15_security.txt b/data/5.15/5.15_security.txt
index 94d26bb..1ec39b6 100644
--- a/data/5.15/5.15_security.txt
+++ b/data/5.15/5.15_security.txt
@@ -338,3 +338,5 @@
CVE-2022-2978: (unk)
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.16/5.16_CVEs.txt b/data/5.16/5.16_CVEs.txt
index f5ccadd..68a8f93 100644
--- a/data/5.16/5.16_CVEs.txt
+++ b/data/5.16/5.16_CVEs.txt
@@ -208,3 +208,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.16/5.16_security.txt b/data/5.16/5.16_security.txt
index 9ea3699..e2b5e2d 100644
--- a/data/5.16/5.16_security.txt
+++ b/data/5.16/5.16_security.txt
@@ -244,3 +244,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.17/5.17_CVEs.txt b/data/5.17/5.17_CVEs.txt
index be7120b..2fe1cf1 100644
--- a/data/5.17/5.17_CVEs.txt
+++ b/data/5.17/5.17_CVEs.txt
@@ -154,3 +154,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.17/5.17_security.txt b/data/5.17/5.17_security.txt
index 7995131..02bde9a 100644
--- a/data/5.17/5.17_security.txt
+++ b/data/5.17/5.17_security.txt
@@ -184,3 +184,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.18/5.18_CVEs.txt b/data/5.18/5.18_CVEs.txt
index 73add56..032bd88 100644
--- a/data/5.18/5.18_CVEs.txt
+++ b/data/5.18/5.18_CVEs.txt
@@ -114,3 +114,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fixed with 5.18.17
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.18/5.18_security.txt b/data/5.18/5.18_security.txt
index ed54198..310c843 100644
--- a/data/5.18/5.18_security.txt
+++ b/data/5.18/5.18_security.txt
@@ -146,3 +146,5 @@
CVE-2022-3028: (unk) af_key: Do not call xfrm_probe_algs in parallel
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.2/5.2_CVEs.txt b/data/5.2/5.2_CVEs.txt
index b9e7133..196ab51 100644
--- a/data/5.2/5.2_CVEs.txt
+++ b/data/5.2/5.2_CVEs.txt
@@ -636,3 +636,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.2/5.2_security.txt b/data/5.2/5.2_security.txt
index ca28a25..3ff94eb 100644
--- a/data/5.2/5.2_security.txt
+++ b/data/5.2/5.2_security.txt
@@ -674,3 +674,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.3/5.3_CVEs.txt b/data/5.3/5.3_CVEs.txt
index 639c5a7..799ff6f 100644
--- a/data/5.3/5.3_CVEs.txt
+++ b/data/5.3/5.3_CVEs.txt
@@ -608,3 +608,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.3/5.3_security.txt b/data/5.3/5.3_security.txt
index aedbbbd..6a5bc84 100644
--- a/data/5.3/5.3_security.txt
+++ b/data/5.3/5.3_security.txt
@@ -644,3 +644,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.4/5.4_CVEs.txt b/data/5.4/5.4_CVEs.txt
index b19497f..eaab88d 100644
--- a/data/5.4/5.4_CVEs.txt
+++ b/data/5.4/5.4_CVEs.txt
@@ -517,7 +517,7 @@
CVE-2022-29900: Fix not seen in stream
CVE-2022-29901: Fix not seen in stream
CVE-2022-2991: Fix not seen in stream
-CVE-2022-3028: Fix not seen in stream
+CVE-2022-3028: Fixed with 5.4.212
CVE-2022-30594: Fixed with 5.4.189
CVE-2022-3061: Fix not seen in stream
CVE-2022-3078: Fix not seen in stream
@@ -536,3 +536,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.4/5.4_security.txt b/data/5.4/5.4_security.txt
index bc3e01b..fa69cfb 100644
--- a/data/5.4/5.4_security.txt
+++ b/data/5.4/5.4_security.txt
@@ -740,6 +740,9 @@
CVE-2022-2586: fab2f61cc3b0e441b1749f017cfee75f9bbaded7 netfilter: nf_tables: do not allow SET_ID to refer to another table
CVE-2022-2588: 1fcd691cc2e7f808eca2e644adee1f1c6c1527fd net_sched: cls_route: remove from list when handle is 0
+CVEs fixed in 5.4.212:
+ CVE-2022-3028: 8ee27a4f0f1ad36d430221842767880df6494147 af_key: Do not call xfrm_probe_algs in parallel
+
Outstanding CVEs:
CVE-2005-3660: (unk)
CVE-2007-3719: (unk)
@@ -849,10 +852,11 @@
CVE-2022-29900: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-29901: (unk) x86/kvm/vmx: Make noinstr clean
CVE-2022-2991: (unk) remove the lightnvm subsystem
- CVE-2022-3028: (unk) af_key: Do not call xfrm_probe_algs in parallel
CVE-2022-3061: (unk) video: fbdev: i740fb: Error out if 'pixclock' equals zero
CVE-2022-3078: (unk) media: vidtv: Check for null return of vzalloc
CVE-2022-34918: (unk) netfilter: nf_tables: stricter validation of element data
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.5/5.5_CVEs.txt b/data/5.5/5.5_CVEs.txt
index 6ebc9aa..81a36bd 100644
--- a/data/5.5/5.5_CVEs.txt
+++ b/data/5.5/5.5_CVEs.txt
@@ -496,3 +496,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.5/5.5_security.txt b/data/5.5/5.5_security.txt
index 9070250..ab5e59a 100644
--- a/data/5.5/5.5_security.txt
+++ b/data/5.5/5.5_security.txt
@@ -530,3 +530,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.6/5.6_CVEs.txt b/data/5.6/5.6_CVEs.txt
index 69e280a..418108e 100644
--- a/data/5.6/5.6_CVEs.txt
+++ b/data/5.6/5.6_CVEs.txt
@@ -471,3 +471,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.6/5.6_security.txt b/data/5.6/5.6_security.txt
index 801a627..8ecd19f 100644
--- a/data/5.6/5.6_security.txt
+++ b/data/5.6/5.6_security.txt
@@ -505,3 +505,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.7/5.7_CVEs.txt b/data/5.7/5.7_CVEs.txt
index c8e7698..3c83953 100644
--- a/data/5.7/5.7_CVEs.txt
+++ b/data/5.7/5.7_CVEs.txt
@@ -459,3 +459,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.7/5.7_security.txt b/data/5.7/5.7_security.txt
index ec40787..dc13952 100644
--- a/data/5.7/5.7_security.txt
+++ b/data/5.7/5.7_security.txt
@@ -493,3 +493,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.8/5.8_CVEs.txt b/data/5.8/5.8_CVEs.txt
index 26c91f0..062846e 100644
--- a/data/5.8/5.8_CVEs.txt
+++ b/data/5.8/5.8_CVEs.txt
@@ -441,3 +441,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.8/5.8_security.txt b/data/5.8/5.8_security.txt
index 2beb385..94cf191 100644
--- a/data/5.8/5.8_security.txt
+++ b/data/5.8/5.8_security.txt
@@ -475,3 +475,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/5.9/5.9_CVEs.txt b/data/5.9/5.9_CVEs.txt
index 4d06089..839a814 100644
--- a/data/5.9/5.9_CVEs.txt
+++ b/data/5.9/5.9_CVEs.txt
@@ -413,3 +413,5 @@
CVE-2022-39188: Fix not seen in stream
CVE-2022-39189: Fix not seen in stream
CVE-2022-39190: Fix not seen in stream
+CVE-2022-39842: Fix not seen in stream
+CVE-2022-40307: Fix not seen in stream
diff --git a/data/5.9/5.9_security.txt b/data/5.9/5.9_security.txt
index f5990a7..6c78d65 100644
--- a/data/5.9/5.9_security.txt
+++ b/data/5.9/5.9_security.txt
@@ -443,3 +443,5 @@
CVE-2022-39188: (unk) mmu_gather: Force tlb-flush VM_PFNMAP vmas
CVE-2022-39189: (unk) KVM: x86: do not report a vCPU as preempted outside instruction boundaries
CVE-2022-39190: (unk) netfilter: nf_tables: disallow binding to already bound chain
+ CVE-2022-39842: (unk) video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write
+ CVE-2022-40307: (unk) efi: capsule-loader: Fix use-after-free in efi_capsule_write
diff --git a/data/CVEs.txt b/data/CVEs.txt
index 7e767f1..97d1d6d 100644
--- a/data/CVEs.txt
+++ b/data/CVEs.txt
@@ -2095,7 +2095,7 @@
CVE-2022-2873: 5e9a97b1f4491b8b65874901ad084348fcaba327 - 690b2549b19563ec5ad53e5c82f6a944d910086e (v5.11-rc1 to v5.19-rc1)
CVE-2022-28796: 4f98186848707f530669238d90e0562d92a78aab - cc16eecae687912238ee6efbff71ad31e2bc414e (v5.17-rc3 to v5.18-rc1)
CVE-2022-28893: a73881c96d73ee72b7dbbd38a6eeef66182a8ef7 - f00432063db1a0db484e85193eccc6845435b80e (v5.1-rc1 to v5.18-rc2)
-CVE-2022-2905: d2e4c1e6c2947269346054ac8937ccfe9e0bcc6b - a657182a5c5150cdfacb6640aad1d2712571a409 (v5.5-rc1 to unk)
+CVE-2022-2905: d2e4c1e6c2947269346054ac8937ccfe9e0bcc6b - a657182a5c5150cdfacb6640aad1d2712571a409 (v5.5-rc1 to v6.0-rc4)
CVE-2022-29156: eab098246625e91c1cbd6e8f75b09e4c9c28a9fc - 8700af2cc18c919b2a83e74e0479038fd113c15d (v5.12-rc1-dontuse to v5.17-rc6)
CVE-2022-2938: 0e94682b73bfa6c44c98af7a26771c9c08c055d5 - a06247c6804f1a7c86a2e5398a4c1f1db1471848 (v5.2-rc1 to v5.17-rc2)
CVE-2022-29581: 35c55fc156d85a396a975fc17636f560fc02fd65 - 3db09e762dc79584a69c10d74a6b98f89a9979f8 (v4.14 to v5.18-rc4)
@@ -2130,3 +2130,5 @@
CVE-2022-39188: (n/a) - b67fbebd4cf980aecbcc750e1462128bffe8ae15 (unk to v5.19-rc8)
CVE-2022-39189: (n/a) - 6cd88243c7e03845a450795e134b488fc2afb736 (unk to v5.19-rc2)
CVE-2022-39190: (n/a) - e02f0d3970404bfea385b6edb86f2d936db0ea2b (unk to v6.0-rc3)
+CVE-2022-39842: (n/a) - a09d2d00af53b43c6f11e6ab3cb58443c2cac8a7 (unk to v5.19-rc4)
+CVE-2022-40307: (n/a) - 9cb636b5f6a8cc6d1b50809ec8f8d33ae0c84c95 (unk to unk)
diff --git a/data/cmts.json b/data/cmts.json
index 8bcc78d..a07534f 100644
--- a/data/cmts.json
+++ b/data/cmts.json
@@ -1791,6 +1791,7 @@
"a03ffcf873fe0f2565386ca8ef832144c42e67fa": "v3.2-rc7",
"a06247c6804f1a7c86a2e5398a4c1f1db1471848": "v5.17-rc2",
"a08d3b3b99efd509133946056531cdf8f3a0c09b": "v3.14-rc5",
+ "a09d2d00af53b43c6f11e6ab3cb58443c2cac8a7": "v5.19-rc4",
"a0ac402cfcdc904f9772e1762b3fda112dcc56a0": "v4.9",
"a0ad220c96692eda76b2e3fd7279f3dcd1d8a8ff": "v4.6-rc1",
"a0c80efe5956ccce9fe7ae5c78542578c07bc20a": "v4.5-rc5",
@@ -1870,6 +1871,7 @@
"a612769774a30e4fc143c4cb6395c12573415660": "v4.7",
"a6138db815df5ee542d848318e5dae681590fccd": "v3.17-rc1",
"a642fc305053cc1c6e47e4f4df327895747ab485": "v3.18-rc2",
+ "a657182a5c5150cdfacb6640aad1d2712571a409": "v6.0-rc4",
"a6686f2f382b13f8a7253401a66690c3633b6a74": "v3.1-rc1",
"a67adb997419fb53540d4a4f79c6471c60bc69b6": "v3.8-rc5",
"a6e544b0a88b53114bfa5a57e21b7be7a8dfc9d0": "v4.3-rc1",
diff --git a/data/kernel_cves.json b/data/kernel_cves.json
index f4517cd..8613ac3 100644
--- a/data/kernel_cves.json
+++ b/data/kernel_cves.json
@@ -72818,12 +72818,12 @@
}
},
"CVE-2022-2905": {
- "affected_versions": "v5.5-rc1 to unk",
+ "affected_versions": "v5.5-rc1 to v6.0-rc4",
"breaks": "d2e4c1e6c2947269346054ac8937ccfe9e0bcc6b",
"cmt_msg": "bpf: Don't use tnum_range on array range checking for poke descriptors",
"fixes": "a657182a5c5150cdfacb6640aad1d2712571a409",
"last_affected_version": "5.15.63",
- "last_modified": "2022-09-02"
+ "last_modified": "2022-09-09"
},
"CVE-2022-29156": {
"affected_versions": "v5.12-rc1-dontuse to v5.17-rc6",
@@ -73068,7 +73068,7 @@
"cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel",
"fixes": "ba953a9d89a00c078b85f4b190bc1dde66fe16b5",
"last_affected_version": "5.15.63",
- "last_modified": "2022-09-02"
+ "last_modified": "2022-09-09"
},
"CVE-2022-30594": {
"affected_versions": "v4.3-rc1 to v5.18-rc1",
@@ -73651,5 +73651,19 @@
"fixes": "e02f0d3970404bfea385b6edb86f2d936db0ea2b",
"last_affected_version": "5.15.63",
"last_modified": "2022-09-02"
+ },
+ "CVE-2022-39842": {
+ "affected_versions": "unk to v5.19-rc4",
+ "breaks": "",
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write",
+ "fixes": "a09d2d00af53b43c6f11e6ab3cb58443c2cac8a7",
+ "last_modified": "2022-09-09"
+ },
+ "CVE-2022-40307": {
+ "affected_versions": "unk to unk",
+ "breaks": "",
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write",
+ "fixes": "9cb636b5f6a8cc6d1b50809ec8f8d33ae0c84c95",
+ "last_modified": "2022-09-09"
}
}
\ No newline at end of file
diff --git a/data/stream_data.json b/data/stream_data.json
index 399c72e..2b50c6a 100644
--- a/data/stream_data.json
+++ b/data/stream_data.json
@@ -1988,6 +1988,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -3323,6 +3326,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -4295,6 +4301,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -6098,6 +6107,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -7365,6 +7377,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -9003,6 +9018,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -10066,6 +10084,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -11803,6 +11824,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -12894,6 +12918,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -14439,6 +14466,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -18542,6 +18572,12 @@
"cmt_id": "bcf0a450fbaabe7e14d71f885525805b4f86e855"
}
},
+ "4.14.292": {
+ "CVE-2022-3028": {
+ "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel",
+ "cmt_id": "f1b1b63e307478e93548f59e18bd844744b396d3"
+ }
+ },
"outstanding": {
"CVE-2021-0929": {
"cmt_msg": "staging/android/ion: delete dma_buf->kmap/unmap implemenation"
@@ -18648,6 +18684,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-2978": {
"cmt_msg": ""
},
@@ -18774,9 +18813,6 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
- "CVE-2022-3028": {
- "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel"
- },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -18897,6 +18933,9 @@
"CVE-2020-15780": {
"cmt_msg": "ACPI: configfs: Disallow loading ACPI tables when locked down"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -19313,6 +19352,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -20750,6 +20792,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -21707,6 +21752,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -23207,6 +23255,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -26764,6 +26815,12 @@
"cmt_id": "6c6b84ef5ea8dc0ca3559ccf69810960e348c555"
}
},
+ "4.19.257": {
+ "CVE-2022-3028": {
+ "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel",
+ "cmt_id": "7dbfc8f25f22fe2a64dd808266e00c8d2661ebdd"
+ }
+ },
"outstanding": {
"CVE-2021-0929": {
"cmt_msg": "staging/android/ion: delete dma_buf->kmap/unmap implemenation"
@@ -26858,6 +26915,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-2978": {
"cmt_msg": ""
},
@@ -26957,9 +27017,6 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
- "CVE-2022-3028": {
- "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel"
- },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -27062,6 +27119,9 @@
"CVE-2020-15780": {
"cmt_msg": "ACPI: configfs: Disallow loading ACPI tables when locked down"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -27444,6 +27504,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -28848,6 +28911,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -31137,6 +31203,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -31767,6 +31836,9 @@
"CVE-2019-14814": {
"cmt_msg": "mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-14351": {
"cmt_msg": "perf/core: Fix race in the perf_mmap_close() function"
},
@@ -34639,6 +34711,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -35344,6 +35419,9 @@
"CVE-2019-14814": {
"cmt_msg": "mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-14351": {
"cmt_msg": "perf/core: Fix race in the perf_mmap_close() function"
},
@@ -40091,6 +40169,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -40454,6 +40535,9 @@
"CVE-2020-27786": {
"cmt_msg": "ALSA: rawmidi: Fix racy buffer resize under concurrent accesses"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -43698,6 +43782,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -44226,6 +44313,9 @@
"CVE-2020-27786": {
"cmt_msg": "ALSA: rawmidi: Fix racy buffer resize under concurrent accesses"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -45896,6 +45986,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -47822,6 +47915,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -52489,6 +52585,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -53158,6 +53257,9 @@
"CVE-2021-3864": {
"cmt_msg": ""
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
@@ -53383,6 +53485,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -55246,6 +55351,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -56442,6 +56550,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -58320,6 +58431,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -60657,6 +60771,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -62112,6 +62229,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -63143,6 +63263,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -63449,6 +63572,9 @@
"CVE-2020-27786": {
"cmt_msg": "ALSA: rawmidi: Fix racy buffer resize under concurrent accesses"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -64750,6 +64876,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -66751,6 +66880,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -67957,6 +68089,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -68242,6 +68377,9 @@
"CVE-2020-27784": {
"cmt_msg": "usb: gadget: function: printer: fix use-after-free in __lock_acquire"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -69440,6 +69578,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -69713,6 +69854,9 @@
"CVE-2022-0644": {
"cmt_msg": "vfs: check fd has read access in kernel_read_file_from_fd()"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -70805,6 +70949,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -71066,6 +71213,9 @@
"CVE-2022-0644": {
"cmt_msg": "vfs: check fd has read access in kernel_read_file_from_fd()"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
@@ -75589,6 +75739,12 @@
"cmt_id": "34a475425612bef345634202dda8dac91820b6c8"
}
},
+ "4.9.327": {
+ "CVE-2022-3028": {
+ "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel",
+ "cmt_id": "e580d3201ed222c4752ced7e629ad96bc0340713"
+ }
+ },
"outstanding": {
"CVE-2021-0929": {
"cmt_msg": "staging/android/ion: delete dma_buf->kmap/unmap implemenation"
@@ -75704,6 +75860,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-2978": {
"cmt_msg": ""
},
@@ -75866,9 +76025,6 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
- "CVE-2022-3028": {
- "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel"
- },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -76031,6 +76187,9 @@
"CVE-2018-7273": {
"cmt_msg": "printk: hash addresses printed with %p"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -76443,6 +76602,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -78294,6 +78456,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -79503,6 +79668,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -81264,6 +81432,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -82478,6 +82649,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -82973,6 +83147,9 @@
"CVE-2019-14815": {
"cmt_msg": "mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2019-19055": {
"cmt_msg": "nl80211: fix memory leak in nl80211_get_ftm_responder_stats"
},
@@ -84654,6 +84831,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -85119,6 +85299,9 @@
"CVE-2019-14815": {
"cmt_msg": "mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2019-19055": {
"cmt_msg": "nl80211: fix memory leak in nl80211_get_ftm_responder_stats"
},
@@ -86795,6 +86978,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -87200,6 +87386,9 @@
"CVE-2020-27786": {
"cmt_msg": "ALSA: rawmidi: Fix racy buffer resize under concurrent accesses"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2019-19055": {
"cmt_msg": "nl80211: fix memory leak in nl80211_get_ftm_responder_stats"
},
@@ -88830,6 +89019,9 @@
"CVE-2021-3752": {
"cmt_msg": "Bluetooth: fix use-after-free error in lock_sock_nested()"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -88890,6 +89082,9 @@
"CVE-2021-37576": {
"cmt_msg": "KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -89846,6 +90041,9 @@
"CVE-2021-3752": {
"cmt_msg": "Bluetooth: fix use-after-free error in lock_sock_nested()"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -89900,6 +90098,9 @@
"CVE-2022-1011": {
"cmt_msg": "fuse: fix pipe buffer lifetime for direct_io"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -91972,6 +92173,9 @@
"CVE-2020-24504": {
"cmt_msg": "ice: create scheduler aggregator node config and move VSIs"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -91996,6 +92200,9 @@
"CVE-2022-2209": {
"cmt_msg": ""
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-2978": {
"cmt_msg": ""
},
@@ -92686,6 +92893,9 @@
"CVE-2021-37576": {
"cmt_msg": "KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -93241,6 +93451,9 @@
"CVE-2022-29581": {
"cmt_msg": "net/sched: cls_u32: fix netns refcount changes in u32_change()"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -93856,6 +94069,9 @@
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -93880,6 +94096,9 @@
"CVE-2022-1852": {
"cmt_msg": "KVM: x86: avoid calling x86 emulator without a decoded instruction"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -94491,6 +94710,9 @@
"CVE-2020-24502": {
"cmt_msg": ""
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -94512,6 +94734,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -95040,6 +95265,9 @@
"CVE-2022-0487": {
"cmt_msg": "moxart: fix potential use-after-free on remove path"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -95082,6 +95310,9 @@
"CVE-2022-1011": {
"cmt_msg": "fuse: fix pipe buffer lifetime for direct_io"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-1012": {
"cmt_msg": "secure_seq: use the 64 bits of the siphash for port offset calculation"
},
@@ -96576,6 +96807,9 @@
"CVE-2022-23825": {
"cmt_msg": ""
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2019-16089": {
"cmt_msg": ""
},
@@ -96630,6 +96864,9 @@
"CVE-2012-4542": {
"cmt_msg": ""
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2021-4095": {
"cmt_msg": "KVM: x86: Fix wall clock writes in Xen shared_info not to mark page dirty"
},
@@ -96907,6 +97144,9 @@
"CVE-2019-19241": {
"cmt_msg": "io_uring: async workers should inherit the user creds"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -98251,6 +98491,9 @@
"CVE-2020-0431": {
"cmt_msg": "HID: hid-input: clear unmapped usages"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2018-17977": {
"cmt_msg": ""
},
@@ -100909,6 +101152,12 @@
"cmt_id": "8cdba919acefdd6fea5dd2b77a119f54fb88ce11"
}
},
+ "5.4.212": {
+ "CVE-2022-3028": {
+ "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel",
+ "cmt_id": "8ee27a4f0f1ad36d430221842767880df6494147"
+ }
+ },
"outstanding": {
"CVE-2021-0929": {
"cmt_msg": "staging/android/ion: delete dma_buf->kmap/unmap implemenation"
@@ -100958,6 +101207,9 @@
"CVE-2020-24504": {
"cmt_msg": "ice: create scheduler aggregator node config and move VSIs"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2020-11725": {
"cmt_msg": ""
},
@@ -100985,6 +101237,9 @@
"CVE-2022-2209": {
"cmt_msg": ""
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-2978": {
"cmt_msg": ""
},
@@ -101066,9 +101321,6 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
- "CVE-2022-3028": {
- "cmt_msg": "af_key: Do not call xfrm_probe_algs in parallel"
- },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -101609,6 +101861,9 @@
"CVE-2022-23825": {
"cmt_msg": ""
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2019-16089": {
"cmt_msg": ""
},
@@ -101663,6 +101918,9 @@
"CVE-2012-4542": {
"cmt_msg": ""
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2019-15290": {
"cmt_msg": ""
},
@@ -102107,6 +102365,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -102482,6 +102743,9 @@
"CVE-2020-27786": {
"cmt_msg": "ALSA: rawmidi: Fix racy buffer resize under concurrent accesses"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2019-19055": {
"cmt_msg": "nl80211: fix memory leak in nl80211_get_ftm_responder_stats"
},
@@ -103860,6 +104124,9 @@
"CVE-2022-21125": {
"cmt_msg": "x86/speculation/mmio: Reuse SRBDS mitigation for SBDS"
},
+ "CVE-2022-40307": {
+ "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write"
+ },
"CVE-2022-21123": {
"cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data"
},
@@ -104148,6 +104415,9 @@
"CVE-2020-27784": {
"cmt_msg": "usb: gadget: function: printer: fix use-after-free in __lock_acquire"
},
+ "CVE-2022-39842": {
+ "cmt_msg": "video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write"
+ },
"CVE-2022-0382": {
"cmt_msg": "net ticp:fix a kernel-infoleak in __tipc_sendmsg()"
},
diff --git a/data/stream_fixes.json b/data/stream_fixes.json
index 9dc3a7a..316193c 100644
--- a/data/stream_fixes.json
+++ b/data/stream_fixes.json
@@ -33104,6 +33104,18 @@
}
},
"CVE-2022-3028": {
+ "4.14": {
+ "cmt_id": "f1b1b63e307478e93548f59e18bd844744b396d3",
+ "fixed_version": "4.14.292"
+ },
+ "4.19": {
+ "cmt_id": "7dbfc8f25f22fe2a64dd808266e00c8d2661ebdd",
+ "fixed_version": "4.19.257"
+ },
+ "4.9": {
+ "cmt_id": "e580d3201ed222c4752ced7e629ad96bc0340713",
+ "fixed_version": "4.9.327"
+ },
"5.10": {
"cmt_id": "c5c4d4c9806dadac7bc82f9c29ef4e1b78894775",
"fixed_version": "5.10.140"
@@ -33111,6 +33123,10 @@
"5.15": {
"cmt_id": "103bd319c0fc90f1cb013c3a508615e6df8af823",
"fixed_version": "5.15.64"
+ },
+ "5.4": {
+ "cmt_id": "8ee27a4f0f1ad36d430221842767880df6494147",
+ "fixed_version": "5.4.212"
}
},
"CVE-2022-30594": {
