Update 29Jun23 [ci skip]
diff --git a/CHANGES.md b/CHANGES.md index 2e13ca5..a83b5ed 100644 --- a/CHANGES.md +++ b/CHANGES.md
@@ -1,54 +1,48 @@ # **Linux Kernel CVE Changes** -## Last Update - 24Jun23 17:40 +## Last Update - 30Jun23 00:04 ### **New CVEs Added:** -[CVE-2023-3111](cves/CVE-2023-3111) -[CVE-2023-3141](cves/CVE-2023-3141) -[CVE-2023-3159](cves/CVE-2023-3159) -[CVE-2023-3161](cves/CVE-2023-3161) -[CVE-2023-3212](cves/CVE-2023-3212) +[CVE-2023-1206](cves/CVE-2023-1206) +[CVE-2023-2860](cves/CVE-2023-2860) +[CVE-2023-3090](cves/CVE-2023-3090) +[CVE-2023-3338](cves/CVE-2023-3338) +[CVE-2023-3355](cves/CVE-2023-3355) +[CVE-2023-3389](cves/CVE-2023-3389) +[CVE-2023-3390](cves/CVE-2023-3390) +[CVE-2023-33951](cves/CVE-2023-33951) +[CVE-2023-33952](cves/CVE-2023-33952) +[CVE-2023-3397](cves/CVE-2023-3397) +[CVE-2023-3439](cves/CVE-2023-3439) + + +### **New Versions Checked:** + +[4.14.320](streams/4.14) +[4.19.288](streams/4.19) +[5.10.186](streams/5.10) +[5.15.119](streams/5.15) +[5.4.249](streams/5.4) +[6.1.36](streams/6.1) + + +### **Updated CVEs:** + +[CVE-2015-3339](cves/CVE-2015-3339) +[CVE-2017-5715](cves/CVE-2017-5715) +[CVE-2023-2124](cves/CVE-2023-2124) +[CVE-2023-34255](cves/CVE-2023-34255) [CVE-2023-3220](cves/CVE-2023-3220) [CVE-2023-3268](cves/CVE-2023-3268) [CVE-2023-3312](cves/CVE-2023-3312) -[CVE-2023-3317](cves/CVE-2023-3317) [CVE-2023-3357](cves/CVE-2023-3357) [CVE-2023-3358](cves/CVE-2023-3358) [CVE-2023-3359](cves/CVE-2023-3359) -[CVE-2023-35788](cves/CVE-2023-35788) [CVE-2023-35823](cves/CVE-2023-35823) [CVE-2023-35824](cves/CVE-2023-35824) [CVE-2023-35826](cves/CVE-2023-35826) [CVE-2023-35827](cves/CVE-2023-35827) [CVE-2023-35828](cves/CVE-2023-35828) [CVE-2023-35829](cves/CVE-2023-35829) - - -### **New Versions Checked:** - -[4.14.319](streams/4.14) -[4.19.287](streams/4.19) -[5.10.185](streams/5.10) -[5.15.118](streams/5.15) -[5.4.248](streams/5.4) -[6.1.35](streams/6.1) - - -### **Updated CVEs:** - -[CVE-2022-47939](cves/CVE-2022-47939) -[CVE-2022-48425](cves/CVE-2022-48425) -[CVE-2023-0615](cves/CVE-2023-0615) -[CVE-2023-1838](cves/CVE-2023-1838) -[CVE-2023-2124](cves/CVE-2023-2124) -[CVE-2023-31084](cves/CVE-2023-31084) -[CVE-2023-34255](cves/CVE-2023-34255) -[CVE-2022-48502](cves/CVE-2022-48502) -[CVE-2023-2002](cves/CVE-2023-2002) -[CVE-2023-2598](cves/CVE-2023-2598) -[CVE-2023-2985](cves/CVE-2023-2985) -[CVE-2023-3006](cves/CVE-2023-3006) -[CVE-2023-3022](cves/CVE-2023-3022) -[CVE-2023-34256](cves/CVE-2023-34256)
diff --git a/data/3.12/3.12_CVEs.txt b/data/3.12/3.12_CVEs.txt index 67a8593..72291c6 100644 --- a/data/3.12/3.12_CVEs.txt +++ b/data/3.12/3.12_CVEs.txt
@@ -1242,6 +1242,7 @@ CVE-2023-1074: Fix not seen in stream CVE-2023-1077: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1267,12 +1268,14 @@ CVE-2023-2513: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1290,7 +1293,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/3.12/3.12_security.txt b/data/3.12/3.12_security.txt index c626045..20bf0c8 100644 --- a/data/3.12/3.12_security.txt +++ b/data/3.12/3.12_security.txt
@@ -1380,6 +1380,7 @@ CVE-2023-1074: (unk) sctp: fail if no bound addresses can be used for a given scope CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1405,12 +1406,14 @@ CVE-2023-2513: (unk) ext4: fix use-after-free in ext4_xattr_set_entry CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1428,7 +1431,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/3.14/3.14_CVEs.txt b/data/3.14/3.14_CVEs.txt index 30b0e0a..5448469 100644 --- a/data/3.14/3.14_CVEs.txt +++ b/data/3.14/3.14_CVEs.txt
@@ -134,7 +134,7 @@ CVE-2015-3291: Fixed with 3.14.54 CVE-2015-3331: Fixed with 3.14.37 CVE-2015-3332: Fixed with 3.14.39 -CVE-2015-3339: Fix not seen in stream +CVE-2015-3339: Fixed with 3.14.41 CVE-2015-3636: Fixed with 3.14.42 CVE-2015-4001: Fix not seen in stream CVE-2015-4002: Fixed with 3.14.45 @@ -1211,6 +1211,7 @@ CVE-2023-1074: Fix not seen in stream CVE-2023-1077: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1236,12 +1237,14 @@ CVE-2023-2513: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1259,7 +1262,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/3.14/3.14_security.txt b/data/3.14/3.14_security.txt index 11bc36b..19f1218 100644 --- a/data/3.14/3.14_security.txt +++ b/data/3.14/3.14_security.txt
@@ -167,6 +167,7 @@ CVE-2015-2922: 01f69adac109867f892f12057660d891b34182f6 ipv6: Don't reduce hop limit for an interface CVEs fixed in 3.14.41: + CVE-2015-3339: de70236fbe30749fb8c317088c16a97e700fe232 fs: take i_mutex during prepare_binprm for set[ug]id executables CVE-2015-6526: 83dffc246d8b217cd9f577a8859c97b6054806cb powerpc/perf: Cap 64bit userspace backtraces to PERF_MAX_STACK_DEPTH CVE-2017-1000253: 3d262151b457c3af845e460bd32a746691898a53 fs/binfmt_elf.c: fix bug in loading of PIE binaries @@ -368,7 +369,6 @@ CVE-2015-1350: (unk) fs: Avoid premature clearing of capabilities CVE-2015-1805: (unk) new helper: copy_page_from_iter() CVE-2015-2877: (unk) - CVE-2015-3339: (unk) fs: take i_mutex during prepare_binprm for set[ug]id executables CVE-2015-4001: (unk) ozwpan: Use unsigned ints to prevent heap overflow CVE-2015-4004: (unk) staging: ozwpan: Remove from tree CVE-2015-4176: (unk) mnt: Update detach_mounts to leave mounts connected @@ -1345,6 +1345,7 @@ CVE-2023-1074: (unk) sctp: fail if no bound addresses can be used for a given scope CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1370,12 +1371,14 @@ CVE-2023-2513: (unk) ext4: fix use-after-free in ext4_xattr_set_entry CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1393,7 +1396,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/3.16/3.16_CVEs.txt b/data/3.16/3.16_CVEs.txt index c07c095..19399ee 100644 --- a/data/3.16/3.16_CVEs.txt +++ b/data/3.16/3.16_CVEs.txt
@@ -1199,6 +1199,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1224,12 +1225,14 @@ CVE-2023-2513: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1247,7 +1250,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/3.16/3.16_security.txt b/data/3.16/3.16_security.txt index 6120321..476767b 100644 --- a/data/3.16/3.16_security.txt +++ b/data/3.16/3.16_security.txt
@@ -1305,6 +1305,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1330,12 +1331,14 @@ CVE-2023-2513: (unk) ext4: fix use-after-free in ext4_xattr_set_entry CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1353,7 +1356,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/3.18/3.18_CVEs.txt b/data/3.18/3.18_CVEs.txt index 4bad4ae..0271a59 100644 --- a/data/3.18/3.18_CVEs.txt +++ b/data/3.18/3.18_CVEs.txt
@@ -1185,6 +1185,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1211,12 +1212,14 @@ CVE-2023-2513: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1234,7 +1237,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/3.18/3.18_security.txt b/data/3.18/3.18_security.txt index d8179e5..5d52cf0 100644 --- a/data/3.18/3.18_security.txt +++ b/data/3.18/3.18_security.txt
@@ -1419,6 +1419,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1445,12 +1446,14 @@ CVE-2023-2513: (unk) ext4: fix use-after-free in ext4_xattr_set_entry CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1468,7 +1471,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/3.2/3.2_CVEs.txt b/data/3.2/3.2_CVEs.txt index 86765f3..7c71e34 100644 --- a/data/3.2/3.2_CVEs.txt +++ b/data/3.2/3.2_CVEs.txt
@@ -543,7 +543,7 @@ CVE-2017-5549: Fixed with 3.2.86 CVE-2017-5551: Fix not seen in stream CVE-2017-5669: Fixed with 3.2.87 -CVE-2017-5715: Fix not seen in stream +CVE-2017-5715: Fixed with 3.2.101 CVE-2017-5753: Fix not seen in stream CVE-2017-5754: Fix not seen in stream CVE-2017-5967: Fix not seen in stream @@ -1214,6 +1214,7 @@ CVE-2023-1074: Fix not seen in stream CVE-2023-1077: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1380: Fix not seen in stream CVE-2023-1513: Fix not seen in stream CVE-2023-1611: Fix not seen in stream @@ -1235,12 +1236,14 @@ CVE-2023-2513: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1257,7 +1260,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/3.2/3.2_security.txt b/data/3.2/3.2_security.txt index e7accb3..08aadc2 100644 --- a/data/3.2/3.2_security.txt +++ b/data/3.2/3.2_security.txt
@@ -633,6 +633,9 @@ CVE-2018-7492: cbe131eb2d7bab9b3332094ae279fed7cb170a85 rds: Fix NULL pointer dereference in __rds_rdma_map CVE-2019-9454: fa05746dcb3132105d634eb72ec0d455af3be3cf i2c: core-smbus: prevent stack corruption on read I2C_BLOCK_DATA +CVEs fixed in 3.2.101: + CVE-2017-5715: 0605c9a548fb39e5b0ee4765ffe828742ecf02ae x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] + CVEs fixed in 3.2.102: CVE-2017-18208: 3d886ff142e713000aec6bf6f82944eb03dab28c mm/madvise.c: fix madvise() infinite loop under special circumstances CVE-2017-18216: dfd9f20a2db71ca01033040ecf69d5c0e67db629 ocfs2: subsystem.su_mutex is required while accessing the item->ci_parent @@ -761,7 +764,6 @@ CVE-2017-18509: (unk) ipv6: check sk sk_type and protocol early in ip_mroute_set/getsockopt CVE-2017-18552: (unk) RDS: validate the requested traces user input against max supported CVE-2017-5551: (unk) tmpfs: clear S_ISGID when setting posix ACLs - CVE-2017-5715: (unk) x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] CVE-2017-5753: (unk) x86/cpufeatures: Add X86_BUG_SPECTRE_V[12] CVE-2017-5754: (unk) x86/cpufeatures: Add Intel feature bits for Speculation Control CVE-2017-5967: (unk) time: Remove CONFIG_TIMER_STATS @@ -1370,6 +1372,7 @@ CVE-2023-1074: (unk) sctp: fail if no bound addresses can be used for a given scope CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls @@ -1391,12 +1394,14 @@ CVE-2023-2513: (unk) ext4: fix use-after-free in ext4_xattr_set_entry CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1413,7 +1418,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.1/4.1_CVEs.txt b/data/4.1/4.1_CVEs.txt index 4e28459..23f3290 100644 --- a/data/4.1/4.1_CVEs.txt +++ b/data/4.1/4.1_CVEs.txt
@@ -1150,6 +1150,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1177,6 +1178,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1184,6 +1186,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1201,7 +1204,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.1/4.1_security.txt b/data/4.1/4.1_security.txt index 140a79a..0777bee 100644 --- a/data/4.1/4.1_security.txt +++ b/data/4.1/4.1_security.txt
@@ -1248,6 +1248,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1275,6 +1276,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1282,6 +1284,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1299,7 +1302,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.10/4.10_CVEs.txt b/data/4.10/4.10_CVEs.txt index a702ce5..4c08442 100644 --- a/data/4.10/4.10_CVEs.txt +++ b/data/4.10/4.10_CVEs.txt
@@ -1055,6 +1055,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1088,6 +1089,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1095,6 +1097,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1113,8 +1116,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.10/4.10_security.txt b/data/4.10/4.10_security.txt index 9595aae..dbea405 100644 --- a/data/4.10/4.10_security.txt +++ b/data/4.10/4.10_security.txt
@@ -1089,6 +1089,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1122,6 +1123,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1129,6 +1131,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1147,8 +1150,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.11/4.11_CVEs.txt b/data/4.11/4.11_CVEs.txt index 293eae9..3c487c0 100644 --- a/data/4.11/4.11_CVEs.txt +++ b/data/4.11/4.11_CVEs.txt
@@ -1027,6 +1027,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1060,6 +1061,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1067,6 +1069,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1085,8 +1088,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.11/4.11_security.txt b/data/4.11/4.11_security.txt index 89d468f..90eebb8 100644 --- a/data/4.11/4.11_security.txt +++ b/data/4.11/4.11_security.txt
@@ -1049,6 +1049,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1082,6 +1083,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1089,6 +1091,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1107,8 +1110,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.12/4.12_CVEs.txt b/data/4.12/4.12_CVEs.txt index c4cb94c..7ca50b9 100644 --- a/data/4.12/4.12_CVEs.txt +++ b/data/4.12/4.12_CVEs.txt
@@ -1013,6 +1013,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1047,6 +1048,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1054,6 +1056,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1072,8 +1075,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.12/4.12_security.txt b/data/4.12/4.12_security.txt index f0cb0bf..4be9346 100644 --- a/data/4.12/4.12_security.txt +++ b/data/4.12/4.12_security.txt
@@ -1039,6 +1039,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1073,6 +1074,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1080,6 +1082,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1098,8 +1101,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.13/4.13_CVEs.txt b/data/4.13/4.13_CVEs.txt index e440231..f1e0a2d 100644 --- a/data/4.13/4.13_CVEs.txt +++ b/data/4.13/4.13_CVEs.txt
@@ -997,6 +997,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1032,6 +1033,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1039,6 +1041,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1057,8 +1060,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.13/4.13_security.txt b/data/4.13/4.13_security.txt index 2fade60..2ca2c62 100644 --- a/data/4.13/4.13_security.txt +++ b/data/4.13/4.13_security.txt
@@ -1025,6 +1025,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1060,6 +1061,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1067,6 +1069,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1085,8 +1088,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.14/4.14_CVEs.txt b/data/4.14/4.14_CVEs.txt index 900f267..baf764f 100644 --- a/data/4.14/4.14_CVEs.txt +++ b/data/4.14/4.14_CVEs.txt
@@ -966,6 +966,7 @@ CVE-2023-1079: Fixed with 4.14.308 CVE-2023-1095: Fixed with 4.14.291 CVE-2023-1118: Fixed with 4.14.308 +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fixed with 4.14.315 @@ -1003,6 +1004,7 @@ CVE-2023-26607: Fixed with 4.14.300 CVE-2023-28328: Fixed with 4.14.303 CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fixed with 4.14.293 CVE-2023-28772: Fixed with 4.14.240 CVE-2023-2898: Fix unknown CVE-2023-2985: Fixed with 4.14.308 @@ -1010,6 +1012,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fixed with 4.14.312 +CVE-2023-3090: Fixed with 4.14.316 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1028,8 +1031,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fixed with 4.14.312 CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fixed with 4.14.319 +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fixed with 4.14.305 +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fixed with 4.14.315 +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fixed with 4.14.315 CVE-2023-35827: Fix unknown
diff --git a/data/4.14/4.14_security.txt b/data/4.14/4.14_security.txt index 42dd17c..52e0128 100644 --- a/data/4.14/4.14_security.txt +++ b/data/4.14/4.14_security.txt
@@ -1227,6 +1227,7 @@ CVE-2022-40307: 233d5c4d18971feee5fc2f33f00b63d8205cfc67 efi: capsule-loader: Fix use-after-free in efi_capsule_write CVE-2022-4095: 376e15487fec837301d888068a3fcc82efb6171a staging: rtl8712: fix use after free bugs CVE-2022-4662: 1b29498669914c7f9afb619722421418a753d372 USB: core: Prevent nested device-reset calls + CVE-2023-2860: dc9dbd65c803af1607484fed5da50d41dc8dd864 ipv6: sr: fix out-of-bounds read when setting HMAC data. CVEs fixed in 4.14.295: CVE-2022-3239: 1f6ab281f218c3a2b789eb976c5b1ef67139680a media: em28xx: initialize refcount before kref_get @@ -1338,6 +1339,7 @@ CVEs fixed in 4.14.316: CVE-2022-2586: 4e0dbab570defe5b747578cbea8e07f9d0709bec netfilter: nf_tables: do not allow SET_ID to refer to another table CVE-2022-34918: acd3e18fbcae6c5f9d79d75455569fc132227162 netfilter: nf_tables: stricter validation of element data + CVE-2023-3090: 8747ec637300f1212a47a9f15e2340cfe4dcbb9c ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: 3faa6fe21c516dbcca469c297df77decbc2fed0f memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 4.14.317: @@ -1346,6 +1348,9 @@ CVEs fixed in 4.14.318: CVE-2023-3111: ff0e8ed8dfb584575cffc1561f17a1d094e8565b btrfs: unset reloc control if transaction commit fails in prepare_to_relocate() +CVEs fixed in 4.14.319: + CVE-2023-3338: 975840f8dec3c1e6a6b28a387bb7cf55a4775e18 Remove DECnet support from kernel + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -1531,6 +1536,7 @@ CVE-2023-0597: (unk) x86/mm: Randomize per-cpu entry area CVE-2023-1076: (unk) tun: tun_chr_open(): correctly initialize socket uid CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1559,5 +1565,12 @@ CVE-2023-32254: (unk) ksmbd: fix racy issue under cocurrent smb2 tree disconnect CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35827: (unk)
diff --git a/data/4.15/4.15_CVEs.txt b/data/4.15/4.15_CVEs.txt index 971f151..2d7eb87 100644 --- a/data/4.15/4.15_CVEs.txt +++ b/data/4.15/4.15_CVEs.txt
@@ -918,6 +918,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -956,6 +957,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -963,6 +965,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -981,9 +984,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.15/4.15_security.txt b/data/4.15/4.15_security.txt index 50b5023..fd5625f 100644 --- a/data/4.15/4.15_security.txt +++ b/data/4.15/4.15_security.txt
@@ -950,6 +950,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -988,6 +989,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -995,6 +997,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1013,9 +1016,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.16/4.16_CVEs.txt b/data/4.16/4.16_CVEs.txt index 3a117bc..e23e05e 100644 --- a/data/4.16/4.16_CVEs.txt +++ b/data/4.16/4.16_CVEs.txt
@@ -898,6 +898,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -936,6 +937,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -943,6 +945,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -961,9 +964,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.16/4.16_security.txt b/data/4.16/4.16_security.txt index 32a2bbc..cf08db7 100644 --- a/data/4.16/4.16_security.txt +++ b/data/4.16/4.16_security.txt
@@ -930,6 +930,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -968,6 +969,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -975,6 +977,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -993,9 +996,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.17/4.17_CVEs.txt b/data/4.17/4.17_CVEs.txt index 5f43a9a..b6377a0 100644 --- a/data/4.17/4.17_CVEs.txt +++ b/data/4.17/4.17_CVEs.txt
@@ -879,6 +879,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -918,6 +919,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -925,6 +927,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -943,9 +946,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.17/4.17_security.txt b/data/4.17/4.17_security.txt index 8a75216..c341bc8 100644 --- a/data/4.17/4.17_security.txt +++ b/data/4.17/4.17_security.txt
@@ -911,6 +911,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -950,6 +951,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -957,6 +959,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -975,9 +978,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.18/4.18_CVEs.txt b/data/4.18/4.18_CVEs.txt index 8023e76..8e72e34 100644 --- a/data/4.18/4.18_CVEs.txt +++ b/data/4.18/4.18_CVEs.txt
@@ -857,6 +857,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -896,6 +897,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -903,6 +905,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -921,9 +924,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.18/4.18_security.txt b/data/4.18/4.18_security.txt index a93fd6b..c8e5637 100644 --- a/data/4.18/4.18_security.txt +++ b/data/4.18/4.18_security.txt
@@ -889,6 +889,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -928,6 +929,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -935,6 +937,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -953,9 +956,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.19/4.19_CVEs.txt b/data/4.19/4.19_CVEs.txt index ae1478b..4e809b3 100644 --- a/data/4.19/4.19_CVEs.txt +++ b/data/4.19/4.19_CVEs.txt
@@ -836,6 +836,7 @@ CVE-2023-1079: Fixed with 4.19.276 CVE-2023-1095: Fixed with 4.19.256 CVE-2023-1118: Fixed with 4.19.276 +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fixed with 4.19.283 @@ -876,6 +877,7 @@ CVE-2023-26607: Fixed with 4.19.267 CVE-2023-28328: Fixed with 4.19.270 CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fixed with 4.19.258 CVE-2023-28772: Fixed with 4.19.198 CVE-2023-2898: Fix unknown CVE-2023-2985: Fixed with 4.19.276 @@ -883,6 +885,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fixed with 4.19.281 CVE-2023-30772: Fixed with 4.19.280 +CVE-2023-3090: Fixed with 4.19.284 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -902,9 +905,17 @@ CVE-2023-3268: Fixed with 4.19.283 CVE-2023-33203: Fixed with 4.19.280 CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fixed with 4.19.287 +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fixed with 4.19.272 +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fixed with 4.19.283 +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fixed with 4.19.285 CVE-2023-35823: Fixed with 4.19.283 CVE-2023-35824: Fixed with 4.19.283
diff --git a/data/4.19/4.19_security.txt b/data/4.19/4.19_security.txt index 5e76e58..ba0ab67 100644 --- a/data/4.19/4.19_security.txt +++ b/data/4.19/4.19_security.txt
@@ -1044,6 +1044,7 @@ CVE-2022-40307: 021805af5bedeafc76c117fc771c100b358ab419 efi: capsule-loader: Fix use-after-free in efi_capsule_write CVE-2022-4095: 9fd6170c5e2d0ccd027abe26f6f5ffc528e1bb27 staging: rtl8712: fix use after free bugs CVE-2022-4662: cc9a12e12808af178c600cc485338bac2e37d2a8 USB: core: Prevent nested device-reset calls + CVE-2023-2860: f684c16971ed5e77dfa25a9ad25b5297e1f58eab ipv6: sr: fix out-of-bounds read when setting HMAC data. CVEs fixed in 4.19.260: CVE-2022-39842: a34547fc43d02f2662b2b62c9a4c578594cf662d video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write @@ -1160,6 +1161,7 @@ CVEs fixed in 4.19.284: CVE-2022-34918: 835fd72f61c6162f10471df197f0e4b92b1a7b76 netfilter: nf_tables: stricter validation of element data + CVE-2023-3090: b36dcf3ed547c103acef6f52bed000a0ac6c074f ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: dce890c3dfaf631d0a8ac79c2792911f9fc551fa memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 4.19.285: @@ -1168,6 +1170,9 @@ CVEs fixed in 4.19.286: CVE-2023-3111: dcb11fe0a0a9cca2b7425191b9bf30dc29f2ad0f btrfs: unset reloc control if transaction commit fails in prepare_to_relocate() +CVEs fixed in 4.19.287: + CVE-2023-3338: 3e77bbc87342841db66c18a3afca0441c8c555e4 Remove DECnet support from kernel + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -1337,6 +1342,7 @@ CVE-2023-0597: (unk) x86/mm: Randomize per-cpu entry area CVE-2023-1076: (unk) tun: tun_chr_open(): correctly initialize socket uid CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry @@ -1364,5 +1370,12 @@ CVE-2023-32250: (unk) ksmbd: fix racy issue from session setup and logoff CVE-2023-32254: (unk) ksmbd: fix racy issue under cocurrent smb2 tree disconnect CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35827: (unk)
diff --git a/data/4.20/4.20_CVEs.txt b/data/4.20/4.20_CVEs.txt index a5cff55..716e6d7 100644 --- a/data/4.20/4.20_CVEs.txt +++ b/data/4.20/4.20_CVEs.txt
@@ -829,6 +829,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -872,6 +873,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -879,6 +881,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -898,9 +901,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/4.20/4.20_security.txt b/data/4.20/4.20_security.txt index 4bceda2..ede3c44 100644 --- a/data/4.20/4.20_security.txt +++ b/data/4.20/4.20_security.txt
@@ -861,6 +861,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -904,6 +905,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -911,6 +913,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -930,9 +933,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/4.3/4.3_CVEs.txt b/data/4.3/4.3_CVEs.txt index 7a1f6c5..2da90f8 100644 --- a/data/4.3/4.3_CVEs.txt +++ b/data/4.3/4.3_CVEs.txt
@@ -1149,6 +1149,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1178,6 +1179,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1185,6 +1187,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1202,7 +1205,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.3/4.3_security.txt b/data/4.3/4.3_security.txt index a326ee3..23a0b6b 100644 --- a/data/4.3/4.3_security.txt +++ b/data/4.3/4.3_security.txt
@@ -1165,6 +1165,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1194,6 +1195,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1201,6 +1203,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1218,7 +1221,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.4/4.4_CVEs.txt b/data/4.4/4.4_CVEs.txt index 63abe89..cb27699 100644 --- a/data/4.4/4.4_CVEs.txt +++ b/data/4.4/4.4_CVEs.txt
@@ -1130,6 +1130,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1159,6 +1160,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fixed with 4.4.276 CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1166,6 +1168,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1183,7 +1186,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.4/4.4_security.txt b/data/4.4/4.4_security.txt index 4fcfaf0..cd20094 100644 --- a/data/4.4/4.4_security.txt +++ b/data/4.4/4.4_security.txt
@@ -1615,6 +1615,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1644,12 +1645,14 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1667,7 +1670,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.5/4.5_CVEs.txt b/data/4.5/4.5_CVEs.txt index b2f6a38..0ffd9a7 100644 --- a/data/4.5/4.5_CVEs.txt +++ b/data/4.5/4.5_CVEs.txt
@@ -1112,6 +1112,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1142,6 +1143,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1149,6 +1151,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1166,7 +1169,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.5/4.5_security.txt b/data/4.5/4.5_security.txt index 862a191..8f751b7 100644 --- a/data/4.5/4.5_security.txt +++ b/data/4.5/4.5_security.txt
@@ -1128,6 +1128,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1158,6 +1159,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1165,6 +1167,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1182,7 +1185,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.6/4.6_CVEs.txt b/data/4.6/4.6_CVEs.txt index 140a340..fddf90b 100644 --- a/data/4.6/4.6_CVEs.txt +++ b/data/4.6/4.6_CVEs.txt
@@ -1085,6 +1085,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1115,6 +1116,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1122,6 +1124,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1139,7 +1142,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.6/4.6_security.txt b/data/4.6/4.6_security.txt index a73e60c..43869af 100644 --- a/data/4.6/4.6_security.txt +++ b/data/4.6/4.6_security.txt
@@ -1103,6 +1103,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1133,6 +1134,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1140,6 +1142,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1157,7 +1160,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.7/4.7_CVEs.txt b/data/4.7/4.7_CVEs.txt index 9a0406f..bcfd705 100644 --- a/data/4.7/4.7_CVEs.txt +++ b/data/4.7/4.7_CVEs.txt
@@ -1068,6 +1068,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1098,6 +1099,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1105,6 +1107,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1122,7 +1125,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.7/4.7_security.txt b/data/4.7/4.7_security.txt index 756ab40..38d6f41 100644 --- a/data/4.7/4.7_security.txt +++ b/data/4.7/4.7_security.txt
@@ -1088,6 +1088,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1118,6 +1119,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1125,6 +1127,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1142,7 +1145,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.8/4.8_CVEs.txt b/data/4.8/4.8_CVEs.txt index 2a4151e..4813fa8 100644 --- a/data/4.8/4.8_CVEs.txt +++ b/data/4.8/4.8_CVEs.txt
@@ -1072,6 +1072,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1102,6 +1103,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1109,6 +1111,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1126,7 +1129,15 @@ CVE-2023-32269: Fix not seen in stream CVE-2023-3268: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.8/4.8_security.txt b/data/4.8/4.8_security.txt index d4f034f..835a9be 100644 --- a/data/4.8/4.8_security.txt +++ b/data/4.8/4.8_security.txt
@@ -1102,6 +1102,7 @@ CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1132,6 +1133,7 @@ CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -1139,6 +1141,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1156,7 +1159,15 @@ CVE-2023-32269: (unk) netrom: Fix use-after-free caused by accept on already connected socket CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/4.9/4.9_CVEs.txt b/data/4.9/4.9_CVEs.txt index c7ff362..233b22c 100644 --- a/data/4.9/4.9_CVEs.txt +++ b/data/4.9/4.9_CVEs.txt
@@ -1071,6 +1071,7 @@ CVE-2023-1077: Fix not seen in stream CVE-2023-1095: Fixed with 4.9.326 CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -1104,6 +1105,7 @@ CVE-2023-26545: Fix not seen in stream CVE-2023-26607: Fixed with 4.9.334 CVE-2023-28328: Fixed with 4.9.337 +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fixed with 4.9.276 CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -1111,6 +1113,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -1129,8 +1132,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35824: Fix not seen in stream CVE-2023-35827: Fix unknown
diff --git a/data/4.9/4.9_security.txt b/data/4.9/4.9_security.txt index 34b7b90..b5aed0b 100644 --- a/data/4.9/4.9_security.txt +++ b/data/4.9/4.9_security.txt
@@ -1623,6 +1623,7 @@ CVE-2023-1074: (unk) sctp: fail if no bound addresses can be used for a given scope CVE-2023-1077: (unk) sched/rt: pick_next_rt_entity(): check list_entry CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -1652,12 +1653,14 @@ CVE-2023-2430: (unk) io_uring/msg_ring: fix missing lock on overflow for IOPOLL CVE-2023-2483: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -1675,8 +1678,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition CVE-2023-35827: (unk)
diff --git a/data/5.0/5.0_CVEs.txt b/data/5.0/5.0_CVEs.txt index a4899d1..298c21d 100644 --- a/data/5.0/5.0_CVEs.txt +++ b/data/5.0/5.0_CVEs.txt
@@ -808,6 +808,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -851,6 +852,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -858,6 +860,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -877,9 +880,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.0/5.0_security.txt b/data/5.0/5.0_security.txt index 8fb24cd..8767b89 100644 --- a/data/5.0/5.0_security.txt +++ b/data/5.0/5.0_security.txt
@@ -856,6 +856,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -899,6 +900,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -906,6 +908,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -925,9 +928,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.1/5.1_CVEs.txt b/data/5.1/5.1_CVEs.txt index 30f2d93..6336cd7 100644 --- a/data/5.1/5.1_CVEs.txt +++ b/data/5.1/5.1_CVEs.txt
@@ -786,6 +786,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -829,6 +830,7 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream @@ -836,6 +838,7 @@ CVE-2023-3022: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -855,9 +858,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.1/5.1_security.txt b/data/5.1/5.1_security.txt index d6ef8f3..7271d61 100644 --- a/data/5.1/5.1_security.txt +++ b/data/5.1/5.1_security.txt
@@ -822,6 +822,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -865,6 +866,7 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super @@ -872,6 +874,7 @@ CVE-2023-3022: (unk) ipv6: Use result arg in fib_lookup_arg consistently CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -891,9 +894,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.10/5.10_CVEs.txt b/data/5.10/5.10_CVEs.txt index dc0f9d3..9e4eca2 100644 --- a/data/5.10/5.10_CVEs.txt +++ b/data/5.10/5.10_CVEs.txt
@@ -519,6 +519,7 @@ CVE-2023-1079: Fixed with 5.10.173 CVE-2023-1095: Fixed with 5.10.137 CVE-2023-1118: Fixed with 5.10.173 +CVE-2023-1206: Fix unknown CVE-2023-1249: Fixed with 5.10.110 CVE-2023-1252: Fixed with 5.10.80 CVE-2023-1281: Fixed with 5.10.169 @@ -573,12 +574,14 @@ CVE-2023-28328: Fixed with 5.10.163 CVE-2023-28410: Fixed with 5.10.110 CVE-2023-28466: Fixed with 5.10.177 +CVE-2023-2860: Fixed with 5.10.143 CVE-2023-28772: Fixed with 5.10.51 CVE-2023-2898: Fix unknown CVE-2023-2985: Fixed with 5.10.173 CVE-2023-3006: Fixed with 5.10.153 CVE-2023-30456: Fixed with 5.10.176 CVE-2023-30772: Fixed with 5.10.177 +CVE-2023-3090: Fixed with 5.10.181 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -598,9 +601,17 @@ CVE-2023-3268: Fixed with 5.10.180 CVE-2023-33203: Fixed with 5.10.177 CVE-2023-33288: Fixed with 5.10.177 +CVE-2023-3338: Fixed with 5.10.185 +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fixed with 5.10.166 +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fixed with 5.10.184 CVE-2023-34256: Fixed with 5.10.180 +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fixed with 5.10.183 CVE-2023-35823: Fixed with 5.10.180 CVE-2023-35824: Fixed with 5.10.180
diff --git a/data/5.10/5.10_security.txt b/data/5.10/5.10_security.txt index 6a227f6..5012981 100644 --- a/data/5.10/5.10_security.txt +++ b/data/5.10/5.10_security.txt
@@ -552,6 +552,7 @@ CVE-2022-2663: e12ce30fe593dd438c5b392290ad7316befc11ca netfilter: nf_conntrack_irc: Fix forged IP logic CVE-2022-3586: 2ee85ac1b29dbd2ebd2d8e5ac1dd5793235d516b sch_sfb: Don't assume the skb is still around after enqueueing to child CVE-2022-40307: 918d9c4a4bdf5205f2fb3f64dddfb56c9a1d01d6 efi: capsule-loader: Fix use-after-free in efi_capsule_write + CVE-2023-2860: 076f2479fc5a15c4a970ca3b5e57d42ba09a31fa ipv6: sr: fix out-of-bounds read when setting HMAC data. CVEs fixed in 5.10.145: CVE-2022-3061: e00582a36198888ffe91ed6b097d86556c8bb253 video: fbdev: i740fb: Error out if 'pixclock' equals zero @@ -728,6 +729,7 @@ CVEs fixed in 5.10.181: CVE-2022-4269: 53245103786312f21fb9785327a4367cf10f0dbb act_mirred: use the backlog for nested calls to mirred ingress + CVE-2023-3090: f4a371d3f5a7a71dff1ab48b3122c5cf23cc7ad5 ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: 5c23f6da62f71ebfeda6ea3960982ccd926ebb09 memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 5.10.183: @@ -739,6 +741,9 @@ CVE-2023-3111: b60e862e133f646f19023ece1d476d630a660de1 btrfs: unset reloc control if transaction commit fails in prepare_to_relocate() CVE-2023-34255: 0e98a97f772f2ffcee8ced7a49b71e72916e0aa1 xfs: verify buffer contents when we skip log replay +CVEs fixed in 5.10.185: + CVE-2023-3338: 1c004b379b0327992c1713334198cf5eba29a4ba Remove DECnet support from kernel + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -861,6 +866,7 @@ CVE-2023-0386: (unk) ovl: fail on invalid uid/gid mapping at copy up CVE-2023-0597: (unk) x86/mm: Randomize per-cpu entry area CVE-2023-1075: (unk) net/tls: tls_is_tx_ready() checked list_entry + CVE-2023-1206: (unk) CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment CVE-2023-2007: (unk) scsi: dpt_i2o: Remove obsolete driver CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA @@ -880,4 +886,11 @@ CVE-2023-31085: (unk) CVE-2023-32250: (unk) ksmbd: fix racy issue from session setup and logoff CVE-2023-32254: (unk) ksmbd: fix racy issue under cocurrent smb2 tree disconnect + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35827: (unk)
diff --git a/data/5.11/5.11_CVEs.txt b/data/5.11/5.11_CVEs.txt index b0d2d5a..ba6926a 100644 --- a/data/5.11/5.11_CVEs.txt +++ b/data/5.11/5.11_CVEs.txt
@@ -510,6 +510,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -564,12 +565,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -589,10 +592,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.11/5.11_security.txt b/data/5.11/5.11_security.txt index 0d94699..8bc19d1 100644 --- a/data/5.11/5.11_security.txt +++ b/data/5.11/5.11_security.txt
@@ -550,6 +550,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -604,12 +605,14 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -629,10 +632,18 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.12/5.12_CVEs.txt b/data/5.12/5.12_CVEs.txt index 6dba7e5..ee91319 100644 --- a/data/5.12/5.12_CVEs.txt +++ b/data/5.12/5.12_CVEs.txt
@@ -461,6 +461,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -517,12 +518,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fixed with 5.12.18 CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -542,10 +545,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.12/5.12_security.txt b/data/5.12/5.12_security.txt index d4fc080..11dfdf4 100644 --- a/data/5.12/5.12_security.txt +++ b/data/5.12/5.12_security.txt
@@ -494,6 +494,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -550,11 +551,13 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -574,10 +577,18 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.13/5.13_CVEs.txt b/data/5.13/5.13_CVEs.txt index e9abb1a..1a09d35 100644 --- a/data/5.13/5.13_CVEs.txt +++ b/data/5.13/5.13_CVEs.txt
@@ -429,6 +429,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -486,12 +487,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fixed with 5.13.3 CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -511,10 +514,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.13/5.13_security.txt b/data/5.13/5.13_security.txt index 336deca..e7452f1 100644 --- a/data/5.13/5.13_security.txt +++ b/data/5.13/5.13_security.txt
@@ -462,6 +462,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -519,11 +520,13 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -543,10 +546,18 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.14/5.14_CVEs.txt b/data/5.14/5.14_CVEs.txt index a13924e..0d163c2 100644 --- a/data/5.14/5.14_CVEs.txt +++ b/data/5.14/5.14_CVEs.txt
@@ -402,6 +402,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fixed with 5.14.19 CVE-2023-1281: Fix not seen in stream @@ -461,11 +462,13 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -485,10 +488,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.14/5.14_security.txt b/data/5.14/5.14_security.txt index a8687a9..97c2516 100644 --- a/data/5.14/5.14_security.txt +++ b/data/5.14/5.14_security.txt
@@ -437,6 +437,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -495,11 +496,13 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -519,10 +522,18 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.15/5.15_CVEs.txt b/data/5.15/5.15_CVEs.txt index 1ce315d..e43b126 100644 --- a/data/5.15/5.15_CVEs.txt +++ b/data/5.15/5.15_CVEs.txt
@@ -387,6 +387,7 @@ CVE-2023-1192: Fix unknown CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown +CVE-2023-1206: Fix unknown CVE-2023-1249: Fixed with 5.15.33 CVE-2023-1252: Fixed with 5.15.3 CVE-2023-1281: Fixed with 5.15.95 @@ -448,11 +449,13 @@ CVE-2023-28328: Fixed with 5.15.86 CVE-2023-28410: Fixed with 5.15.33 CVE-2023-28466: Fixed with 5.15.105 +CVE-2023-2860: Fixed with 5.15.68 CVE-2023-2898: Fix unknown CVE-2023-2985: Fixed with 5.15.99 CVE-2023-3006: Fixed with 5.15.77 CVE-2023-30456: Fixed with 5.15.104 CVE-2023-30772: Fixed with 5.15.105 +CVE-2023-3090: Fixed with 5.15.113 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -472,10 +475,18 @@ CVE-2023-3268: Fixed with 5.15.111 CVE-2023-33203: Fixed with 5.15.105 CVE-2023-33288: Fixed with 5.15.105 +CVE-2023-3338: Fixed with 5.15.118 +CVE-2023-3355: Fixed with 5.15.99 CVE-2023-3357: Fixed with 5.15.86 CVE-2023-3358: Fixed with 5.15.91 +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fixed with 5.15.118 +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fixed with 5.15.117 CVE-2023-34256: Fixed with 5.15.112 +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fixed with 5.15.116 CVE-2023-35823: Fixed with 5.15.111 CVE-2023-35824: Fixed with 5.15.111
diff --git a/data/5.15/5.15_security.txt b/data/5.15/5.15_security.txt index d36665e..64ca571 100644 --- a/data/5.15/5.15_security.txt +++ b/data/5.15/5.15_security.txt
@@ -335,6 +335,7 @@ CVE-2022-3303: 8015ef9e8a0ee5cecfd0cb6805834d007ab26f86 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC CVE-2022-3586: 1a889da60afc017050e1f517b3b976b462846668 sch_sfb: Don't assume the skb is still around after enqueueing to child CVE-2022-40307: dd291e070be0eca8807476b022bda00c891d9066 efi: capsule-loader: Fix use-after-free in efi_capsule_write + CVE-2023-2860: 55195563ec29f80f984237b743de0e2b6ba4d093 ipv6: sr: fix out-of-bounds read when setting HMAC data. CVEs fixed in 5.15.70: CVE-2022-0171: 39b0235284c7aa33a64e07b825add7a2c108094a KVM: SEV: add cache flush to solve SEV cache incoherency issues @@ -487,6 +488,7 @@ CVE-2023-25012: 0fd9998052926ed24cfb30ab1a294cfeda4d0a8f HID: bigben: use spinlock to safely schedule workers CVE-2023-2985: 05103d88482dc3757db108415342fdd86821a79b fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3220: c7ee1772e3c36fff8e13daa5ce1ac61426544a33 drm/msm/dpu: Add check for pstates + CVE-2023-3355: 436fb91cadb82da0b0b114baa4fc3b5ef7e6d557 drm/msm/gem: Add check for kmalloc CVEs fixed in 5.15.100: CVE-2023-1829: 7c183dc0af472dec33d2c0786a5e356baa8cad19 net/sched: Retire tcindex classifier @@ -539,6 +541,7 @@ CVEs fixed in 5.15.113: CVE-2022-48425: 2a67f26f70ab344ae6ea78638890eebc1191a501 fs/ntfs3: Validate MFT flags before replaying logs + CVE-2023-3090: 7c8be27727fe194b4625da442ee2b854db76b200 ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: 162a9b321538972a260c7b178638c2368c071f77 memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 5.15.116: @@ -549,6 +552,10 @@ CVE-2023-2124: 6cfe9ddb6aa698464fa16fb77a0233f68c13360c xfs: verify buffer contents when we skip log replay CVE-2023-34255: 6cfe9ddb6aa698464fa16fb77a0233f68c13360c xfs: verify buffer contents when we skip log replay +CVEs fixed in 5.15.118: + CVE-2023-3338: 2a974abc09761c05fef697fe229d1b85a7ce3918 Remove DECnet support from kernel + CVE-2023-3390: 44ebe988cb38e720b91826f4d7c31692061ca04a netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -650,6 +657,7 @@ CVE-2023-1192: (unk) CVE-2023-1193: (unk) CVE-2023-1194: (unk) + CVE-2023-1206: (unk) CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment CVE-2023-2007: (unk) scsi: dpt_i2o: Remove obsolete driver CVE-2023-20941: (unk) @@ -667,4 +675,9 @@ CVE-2023-31085: (unk) CVE-2023-32250: (unk) ksmbd: fix racy issue from session setup and logoff CVE-2023-32254: (unk) ksmbd: fix racy issue under cocurrent smb2 tree disconnect + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35827: (unk)
diff --git a/data/5.16/5.16_CVEs.txt b/data/5.16/5.16_CVEs.txt index 707b947..6ea0018 100644 --- a/data/5.16/5.16_CVEs.txt +++ b/data/5.16/5.16_CVEs.txt
@@ -355,6 +355,7 @@ CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown CVE-2023-1195: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fixed with 5.16.19 CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -415,11 +416,13 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fixed with 5.16.19 CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -439,10 +442,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.16/5.16_security.txt b/data/5.16/5.16_security.txt index 83dc44f..f8ce709 100644 --- a/data/5.16/5.16_security.txt +++ b/data/5.16/5.16_security.txt
@@ -399,6 +399,7 @@ CVE-2023-1193: (unk) CVE-2023-1194: (unk) CVE-2023-1195: (unk) cifs: fix use-after-free caused by invalid pointer `hostname` + CVE-2023-1206: (unk) CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -451,11 +452,13 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -475,10 +478,18 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.17/5.17_CVEs.txt b/data/5.17/5.17_CVEs.txt index c345f70..c72aa7c 100644 --- a/data/5.17/5.17_CVEs.txt +++ b/data/5.17/5.17_CVEs.txt
@@ -300,6 +300,7 @@ CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown CVE-2023-1195: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fixed with 5.17.2 CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -356,12 +357,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fixed with 5.17.2 CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28866: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -381,10 +384,18 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fixed with 5.17.6 CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.17/5.17_security.txt b/data/5.17/5.17_security.txt index 3cedda9..a2660f3 100644 --- a/data/5.17/5.17_security.txt +++ b/data/5.17/5.17_security.txt
@@ -59,6 +59,7 @@ CVE-2022-29968: 77089e6ff273f43c42e99a690ae45ee39a6a62de io_uring: fix uninitialized field in rw io_kiocb CVE-2022-33981: d91ca05d52fabf68c0376bcfeed1a52be68a8e1b floppy: disable FDRAWCMD by default CVE-2023-20938: 3bf989a7be204470c84534a5b75a8928a7ebe60d binder: Gracefully handle BINDER_TYPE_FDA objects with num_fds=0 + CVE-2023-3439: 019e80a7f71e8e62efda501081172dc70b5a635a mctp: defer the kfree of object mdev->addrs CVEs fixed in 5.17.7: CVE-2022-1734: f4bfbac45121c8638db5eacb1ebbb61ee956c668 nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs @@ -340,6 +341,7 @@ CVE-2023-1193: (unk) CVE-2023-1194: (unk) CVE-2023-1195: (unk) cifs: fix use-after-free caused by invalid pointer `hostname` + CVE-2023-1206: (unk) CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -389,12 +391,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -413,8 +417,15 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
diff --git a/data/5.18/5.18_CVEs.txt b/data/5.18/5.18_CVEs.txt index 579aea4..7ead6c1 100644 --- a/data/5.18/5.18_CVEs.txt +++ b/data/5.18/5.18_CVEs.txt
@@ -255,6 +255,7 @@ CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown CVE-2023-1195: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -306,12 +307,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fixed with 5.18-rc1 CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28866: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -330,9 +333,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream CVE-2023-3359: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream CVE-2023-35788: Fix not seen in stream
diff --git a/data/5.18/5.18_security.txt b/data/5.18/5.18_security.txt index a5f8485..d71a1ec 100644 --- a/data/5.18/5.18_security.txt +++ b/data/5.18/5.18_security.txt
@@ -299,6 +299,7 @@ CVE-2023-1193: (unk) CVE-2023-1194: (unk) CVE-2023-1195: (unk) cifs: fix use-after-free caused by invalid pointer `hostname` + CVE-2023-1206: (unk) CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -342,12 +343,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -366,9 +369,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map CVE-2023-3359: (unk) nvmem: brcm_nvram: Add check for kzalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
diff --git a/data/5.19/5.19_CVEs.txt b/data/5.19/5.19_CVEs.txt index 257fc62..f6cfd98 100644 --- a/data/5.19/5.19_CVEs.txt +++ b/data/5.19/5.19_CVEs.txt
@@ -211,6 +211,7 @@ CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown CVE-2023-1195: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fix not seen in stream @@ -262,12 +263,14 @@ CVE-2023-28327: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28866: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -286,9 +289,16 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fix not seen in stream CVE-2023-3358: Fix not seen in stream CVE-2023-3359: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream CVE-2023-35788: Fix not seen in stream
diff --git a/data/5.19/5.19_security.txt b/data/5.19/5.19_security.txt index 3e05a97..c0628ac 100644 --- a/data/5.19/5.19_security.txt +++ b/data/5.19/5.19_security.txt
@@ -243,6 +243,7 @@ CVE-2023-1193: (unk) CVE-2023-1194: (unk) CVE-2023-1195: (unk) cifs: fix use-after-free caused by invalid pointer `hostname` + CVE-2023-1206: (unk) CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc @@ -292,12 +293,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -316,9 +319,16 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3357: (unk) HID: amd_sfh: Add missing check for dma_alloc_coherent CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map CVE-2023-3359: (unk) nvmem: brcm_nvram: Add check for kzalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
diff --git a/data/5.2/5.2_CVEs.txt b/data/5.2/5.2_CVEs.txt index 0107619..1632ed6 100644 --- a/data/5.2/5.2_CVEs.txt +++ b/data/5.2/5.2_CVEs.txt
@@ -749,6 +749,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -792,12 +793,14 @@ CVE-2023-26607: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -817,9 +820,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.2/5.2_security.txt b/data/5.2/5.2_security.txt index f52600e..00f6e08 100644 --- a/data/5.2/5.2_security.txt +++ b/data/5.2/5.2_security.txt
@@ -787,6 +787,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -830,12 +831,14 @@ CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find() CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -855,9 +858,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.3/5.3_CVEs.txt b/data/5.3/5.3_CVEs.txt index a73d428..771c09f 100644 --- a/data/5.3/5.3_CVEs.txt +++ b/data/5.3/5.3_CVEs.txt
@@ -722,6 +722,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -766,12 +767,14 @@ CVE-2023-28327: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -791,9 +794,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.3/5.3_security.txt b/data/5.3/5.3_security.txt index a809d0f..ede87e6 100644 --- a/data/5.3/5.3_security.txt +++ b/data/5.3/5.3_security.txt
@@ -758,6 +758,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -802,12 +803,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -827,9 +830,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.4/5.4_CVEs.txt b/data/5.4/5.4_CVEs.txt index 1c4f07f..80cc9db 100644 --- a/data/5.4/5.4_CVEs.txt +++ b/data/5.4/5.4_CVEs.txt
@@ -651,6 +651,7 @@ CVE-2023-1079: Fixed with 5.4.235 CVE-2023-1095: Fixed with 5.4.211 CVE-2023-1118: Fixed with 5.4.235 +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fixed with 5.4.243 @@ -672,7 +673,7 @@ CVE-2023-2008: Fixed with 5.4.202 CVE-2023-20928: Fix not seen in stream CVE-2023-20941: Fix unknown -CVE-2023-2124: Fix not seen in stream +CVE-2023-2124: Fixed with 5.4.249 CVE-2023-2162: Fixed with 5.4.232 CVE-2023-2176: Fix not seen in stream CVE-2023-2177: Fixed with 5.4.209 @@ -696,12 +697,14 @@ CVE-2023-28327: Fixed with 5.4.227 CVE-2023-28328: Fixed with 5.4.229 CVE-2023-28466: Fixed with 5.4.240 +CVE-2023-2860: Fixed with 5.4.213 CVE-2023-28772: Fixed with 5.4.133 CVE-2023-2898: Fix unknown CVE-2023-2985: Fixed with 5.4.235 CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fixed with 5.4.238 CVE-2023-30772: Fixed with 5.4.240 +CVE-2023-3090: Fixed with 5.4.244 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -721,9 +724,17 @@ CVE-2023-3268: Fixed with 5.4.243 CVE-2023-33203: Fixed with 5.4.240 CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fixed with 5.4.248 +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fixed with 5.4.231 -CVE-2023-34255: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown +CVE-2023-34255: Fixed with 5.4.249 CVE-2023-34256: Fixed with 5.4.243 +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fixed with 5.4.246 CVE-2023-35823: Fixed with 5.4.243 CVE-2023-35824: Fixed with 5.4.243
diff --git a/data/5.4/5.4_security.txt b/data/5.4/5.4_security.txt index b01e280..ccc496f 100644 --- a/data/5.4/5.4_security.txt +++ b/data/5.4/5.4_security.txt
@@ -782,6 +782,7 @@ CVE-2022-40307: 8028ff4cdbb3f20d3c1c04be33a83bab0cb94997 efi: capsule-loader: Fix use-after-free in efi_capsule_write CVE-2022-4095: d0aac7146e96bf39e79c65087d21dfa02ef8db38 staging: rtl8712: fix use after free bugs CVE-2022-4662: df1875084898b15cbc42f712e93d7f113ae6271b USB: core: Prevent nested device-reset calls + CVE-2023-2860: 3df71e11a4773d775c3633c44319f7acdb89011c ipv6: sr: fix out-of-bounds read when setting HMAC data. CVEs fixed in 5.4.215: CVE-2022-3303: 4051324a6dafd7053c74c475e80b3ba10ae672b0 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC @@ -928,6 +929,7 @@ CVEs fixed in 5.4.244: CVE-2022-34918: 05b4105e6852b584dd115d0a1f0fe96bde9c58c5 netfilter: nf_tables: stricter validation of element data CVE-2022-39189: 1eb3e32de7b1f6ed927dfff3ab3651ce25f3d516 KVM: x86: do not report a vCPU as preempted outside instruction boundaries + CVE-2023-3090: 1aa872e967f2017041bb2284479b3c6ce8d121b5 ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: a2a5d3a584bf86c9c09017381a8fc63cfaf5a9e6 memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 5.4.246: @@ -936,6 +938,13 @@ CVEs fixed in 5.4.247: CVE-2023-3111: 8e546674031fc1576da501e27a8fd165222e5a37 btrfs: unset reloc control if transaction commit fails in prepare_to_relocate() +CVEs fixed in 5.4.248: + CVE-2023-3338: 6b1203ae83c3d07bad90b6f38ebf2e4d5998dd28 Remove DECnet support from kernel + +CVEs fixed in 5.4.249: + CVE-2023-2124: c87439055174b31c51a89f8d66af2600033c664d xfs: verify buffer contents when we skip log replay + CVE-2023-34255: c87439055174b31c51a89f8d66af2600033c664d xfs: verify buffer contents when we skip log replay + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -1075,6 +1084,7 @@ CVE-2023-0386: (unk) ovl: fail on invalid uid/gid mapping at copy up CVE-2023-0597: (unk) x86/mm: Randomize per-cpu entry area CVE-2023-1075: (unk) net/tls: tls_is_tx_ready() checked list_entry + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry @@ -1082,7 +1092,6 @@ CVE-2023-2007: (unk) scsi: dpt_i2o: Remove obsolete driver CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA CVE-2023-20941: (unk) - CVE-2023-2124: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-2176: (unk) RDMA/core: Refactor rdma_bind_addr CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function @@ -1101,5 +1110,11 @@ CVE-2023-32250: (unk) ksmbd: fix racy issue from session setup and logoff CVE-2023-32254: (unk) ksmbd: fix racy issue under cocurrent smb2 tree disconnect CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition - CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35827: (unk)
diff --git a/data/5.5/5.5_CVEs.txt b/data/5.5/5.5_CVEs.txt index 8ae3035..82cf2be 100644 --- a/data/5.5/5.5_CVEs.txt +++ b/data/5.5/5.5_CVEs.txt
@@ -612,6 +612,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream @@ -657,12 +658,14 @@ CVE-2023-28327: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -682,9 +685,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.5/5.5_security.txt b/data/5.5/5.5_security.txt index b0b12b8..2ecbb67 100644 --- a/data/5.5/5.5_security.txt +++ b/data/5.5/5.5_security.txt
@@ -646,6 +646,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() @@ -691,12 +692,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -716,9 +719,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.6/5.6_CVEs.txt b/data/5.6/5.6_CVEs.txt index 52b0568..abb7499 100644 --- a/data/5.6/5.6_CVEs.txt +++ b/data/5.6/5.6_CVEs.txt
@@ -588,6 +588,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -635,12 +636,14 @@ CVE-2023-28327: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -660,9 +663,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.6/5.6_security.txt b/data/5.6/5.6_security.txt index 4911e03..7489e1b 100644 --- a/data/5.6/5.6_security.txt +++ b/data/5.6/5.6_security.txt
@@ -622,6 +622,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -669,12 +670,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -694,9 +697,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.7/5.7_CVEs.txt b/data/5.7/5.7_CVEs.txt index 21d105c..87aede5 100644 --- a/data/5.7/5.7_CVEs.txt +++ b/data/5.7/5.7_CVEs.txt
@@ -582,6 +582,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -633,12 +634,14 @@ CVE-2023-28327: Fix not seen in stream CVE-2023-28328: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -658,9 +661,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.7/5.7_security.txt b/data/5.7/5.7_security.txt index a2d2194..3706396 100644 --- a/data/5.7/5.7_security.txt +++ b/data/5.7/5.7_security.txt
@@ -616,6 +616,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -667,12 +668,14 @@ CVE-2023-28327: (unk) af_unix: Get user_ns from in_skb in unix_diag_get_exact(). CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -692,9 +695,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.8/5.8_CVEs.txt b/data/5.8/5.8_CVEs.txt index bebed77..df9bda6 100644 --- a/data/5.8/5.8_CVEs.txt +++ b/data/5.8/5.8_CVEs.txt
@@ -566,6 +566,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -618,12 +619,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -643,9 +646,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.8/5.8_security.txt b/data/5.8/5.8_security.txt index 5f7cc7e..35d40f4 100644 --- a/data/5.8/5.8_security.txt +++ b/data/5.8/5.8_security.txt
@@ -600,6 +600,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -652,12 +653,14 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -677,9 +680,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/5.9/5.9_CVEs.txt b/data/5.9/5.9_CVEs.txt index 32c2261..9826045 100644 --- a/data/5.9/5.9_CVEs.txt +++ b/data/5.9/5.9_CVEs.txt
@@ -539,6 +539,7 @@ CVE-2023-1079: Fix not seen in stream CVE-2023-1095: Fix not seen in stream CVE-2023-1118: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1249: Fix not seen in stream CVE-2023-1252: Fix not seen in stream CVE-2023-1281: Fix not seen in stream @@ -591,12 +592,14 @@ CVE-2023-28328: Fix not seen in stream CVE-2023-28410: Fix not seen in stream CVE-2023-28466: Fix not seen in stream +CVE-2023-2860: Fix not seen in stream CVE-2023-28772: Fix not seen in stream CVE-2023-2898: Fix unknown CVE-2023-2985: Fix not seen in stream CVE-2023-3006: Fix not seen in stream CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -616,9 +619,17 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3358: Fix not seen in stream +CVE-2023-3389: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream +CVE-2023-3439: Fix not seen in stream CVE-2023-35788: Fix not seen in stream CVE-2023-35823: Fix not seen in stream CVE-2023-35824: Fix not seen in stream
diff --git a/data/5.9/5.9_security.txt b/data/5.9/5.9_security.txt index bbe0fcb..e323e35 100644 --- a/data/5.9/5.9_security.txt +++ b/data/5.9/5.9_security.txt
@@ -569,6 +569,7 @@ CVE-2023-1079: (unk) HID: asus: use spinlock to safely schedule workers CVE-2023-1095: (unk) netfilter: nf_tables: fix null deref due to zeroed list head CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim() + CVE-2023-1206: (unk) CVE-2023-1249: (unk) coredump: Use the vma snapshot in fill_files_note CVE-2023-1252: (unk) ovl: fix use after free in struct ovl_aio_req CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu @@ -621,12 +622,14 @@ CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer() CVE-2023-28410: (unk) drm/i915/gem: add missing boundary check in vm_access CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf() + CVE-2023-2860: (unk) ipv6: sr: fix out-of-bounds read when setting HMAC data. CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex() CVE-2023-2898: (unk) CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3006: (unk) arm64: Add AMPERE1 to the Spectre-BHB affected list CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -646,9 +649,17 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map + CVE-2023-3389: (unk) io_uring: mutex locked poll hashing + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum + CVE-2023-3439: (unk) mctp: defer the kfree of object mdev->addrs CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35823: (unk) media: saa7134: fix use after free bug in saa7134_finidev due to race condition CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition
diff --git a/data/6.0/6.0_CVEs.txt b/data/6.0/6.0_CVEs.txt index b414d20..bfd322c 100644 --- a/data/6.0/6.0_CVEs.txt +++ b/data/6.0/6.0_CVEs.txt
@@ -175,6 +175,7 @@ CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown CVE-2023-1195: Fix not seen in stream +CVE-2023-1206: Fix unknown CVE-2023-1281: Fix not seen in stream CVE-2023-1380: Fix not seen in stream CVE-2023-1382: Fixed with 6.0.11 @@ -226,6 +227,7 @@ CVE-2023-3006: Fixed with 6.0.7 CVE-2023-30456: Fix not seen in stream CVE-2023-30772: Fix not seen in stream +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -243,9 +245,15 @@ CVE-2023-3268: Fix not seen in stream CVE-2023-33203: Fix not seen in stream CVE-2023-33288: Fix not seen in stream +CVE-2023-3338: Fix not seen in stream +CVE-2023-3355: Fix not seen in stream CVE-2023-3357: Fixed with 6.0.16 CVE-2023-3358: Fix not seen in stream CVE-2023-3359: Fix not seen in stream +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fix not seen in stream +CVE-2023-33952: Fix not seen in stream +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fix not seen in stream CVE-2023-35788: Fix not seen in stream
diff --git a/data/6.0/6.0_security.txt b/data/6.0/6.0_security.txt index bad533b..d844979 100644 --- a/data/6.0/6.0_security.txt +++ b/data/6.0/6.0_security.txt
@@ -223,6 +223,7 @@ CVE-2023-1193: (unk) CVE-2023-1194: (unk) CVE-2023-1195: (unk) cifs: fix use-after-free caused by invalid pointer `hostname` + CVE-2023-1206: (unk) CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1380: (unk) wifi: brcmfmac: slab-out-of-bounds read in brcmf_get_assoc_ies() CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace @@ -261,6 +262,7 @@ CVE-2023-2985: (unk) fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4 CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -278,8 +280,14 @@ CVE-2023-3268: (unk) relayfs: fix out-of-bounds access in relay_file_read CVE-2023-33203: (unk) net: qcom/emac: Fix use after free bug in emac_remove due to race condition CVE-2023-33288: (unk) power: supply: bq24190: Fix use after free bug in bq24190_remove due to race condition + CVE-2023-3338: (unk) Remove DECnet support from kernel + CVE-2023-3355: (unk) drm/msm/gem: Add check for kmalloc CVE-2023-3358: (unk) HID: intel_ish-hid: Add check for ishtp_dma_tx_map CVE-2023-3359: (unk) nvmem: brcm_nvram: Add check for kzalloc + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-33951: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: (unk) drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
diff --git a/data/6.1/6.1_CVEs.txt b/data/6.1/6.1_CVEs.txt index 0e58e21..a37b25c 100644 --- a/data/6.1/6.1_CVEs.txt +++ b/data/6.1/6.1_CVEs.txt
@@ -123,6 +123,7 @@ CVE-2023-1192: Fix unknown CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown +CVE-2023-1206: Fix unknown CVE-2023-1281: Fixed with 6.1.13 CVE-2023-1380: Fixed with 6.1.27 CVE-2023-1513: Fixed with 6.1.13 @@ -170,6 +171,7 @@ CVE-2023-2985: Fixed with 6.1.16 CVE-2023-30456: Fixed with 6.1.21 CVE-2023-30772: Fixed with 6.1.22 +CVE-2023-3090: Fixed with 6.1.30 CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -187,9 +189,14 @@ CVE-2023-3268: Fixed with 6.1.28 CVE-2023-33203: Fixed with 6.1.22 CVE-2023-33288: Fixed with 6.1.22 +CVE-2023-3355: Fixed with 6.1.16 CVE-2023-3357: Fixed with 6.1.2 CVE-2023-3358: Fixed with 6.1.9 CVE-2023-3359: Fixed with 6.1.11 +CVE-2023-3390: Fixed with 6.1.35 +CVE-2023-33951: Fixed with 6.1.13 +CVE-2023-33952: Fixed with 6.1.13 +CVE-2023-3397: Fix unknown CVE-2023-34255: Fixed with 6.1.33 CVE-2023-34256: Fixed with 6.1.29 CVE-2023-35788: Fixed with 6.1.33
diff --git a/data/6.1/6.1_security.txt b/data/6.1/6.1_security.txt index 49577f1..0ceb112 100644 --- a/data/6.1/6.1_security.txt +++ b/data/6.1/6.1_security.txt
@@ -76,6 +76,8 @@ CVE-2023-1281: bd662ba56187b5ef8a62a3511371cd38299a507f net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1513: 747ca7c8a0c7bce004709143d1cd6596b79b1deb kvm: initialize all of the kvm_debugregs structure before sending it to userspace CVE-2023-26545: c376227845eef8f2e62e2c29c3cf2140d35dd8e8 net: mpls: fix stale pointer if allocation fails during device rename + CVE-2023-33951: 0a127ac972404600c99eb141c8d5b5348e53ee4f drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: 0a127ac972404600c99eb141c8d5b5348e53ee4f drm/vmwgfx: Do not drop the reference to the handle too soon CVEs fixed in 6.1.14: CVE-2022-2196: 63fada296062e91ad9f871970d4e7f19e21a6a15 KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS @@ -91,6 +93,7 @@ CVE-2023-25012: f2bf592ebd5077661e00aa11e12e054c4c8f6dd0 HID: bigben: use spinlock to safely schedule workers CVE-2023-2985: 0c80bef0b7d297ea86e5408fe79c45479e504a26 fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3220: dd49cef313e6a62541b55e739261c5943cb06c47 drm/msm/dpu: Add check for pstates + CVE-2023-3355: 31c4251a20fd7addc1bf4fe801f95f9ba1b38990 drm/msm/gem: Add check for kmalloc CVEs fixed in 6.1.18: CVE-2023-1829: 3abebc503a5148072052c229c6b04b329a420ecd net/sched: Retire tcindex classifier @@ -147,6 +150,7 @@ CVE-2023-34256: 1fffe4750500148f3e744ed77cf233db8342603f ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum CVEs fixed in 6.1.30: + CVE-2023-3090: 610a433810b277b3b77389733c07d22e8af68de2 ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-3141: 9a342d4eb9fb8e52f7d1afe088a79513f3f9a9a5 memstick: r592: Fix UAF bug in r592_remove due to race condition CVEs fixed in 6.1.33: @@ -156,6 +160,9 @@ CVE-2023-34255: a2961463d74f5c86a8dda3b41c484c28ccc4c289 xfs: verify buffer contents when we skip log replay CVE-2023-35788: eac615ed3c6d91f1196f16f0a0599fff479cb220 net/sched: flower: fix possible OOB write in fl_set_geneve_opt() +CVEs fixed in 6.1.35: + CVE-2023-3390: 4aaa3b730d16c13cc3feaa127bfca1af201d969d netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + Outstanding CVEs: CVE-2005-3660: (unk) CVE-2007-3719: (unk) @@ -240,6 +247,7 @@ CVE-2023-1192: (unk) CVE-2023-1193: (unk) CVE-2023-1194: (unk) + CVE-2023-1206: (unk) CVE-2023-20941: (unk) CVE-2023-2176: (unk) RDMA/core: Refactor rdma_bind_addr CVE-2023-23005: (unk) mm/demotion: fix NULL vs IS_ERR checking in memory_tier_init @@ -252,4 +260,5 @@ CVE-2023-31083: (unk) CVE-2023-31084: (unk) media: dvb-core: Fix kernel WARNING for blocking operation in wait_event*() CVE-2023-31085: (unk) + CVE-2023-3397: (unk) CVE-2023-35827: (unk)
diff --git a/data/6.2/6.2_CVEs.txt b/data/6.2/6.2_CVEs.txt index 429a71f..36e4a89 100644 --- a/data/6.2/6.2_CVEs.txt +++ b/data/6.2/6.2_CVEs.txt
@@ -87,6 +87,7 @@ CVE-2023-1192: Fix unknown CVE-2023-1193: Fix unknown CVE-2023-1194: Fix unknown +CVE-2023-1206: Fix unknown CVE-2023-1281: Fixed with 6.2 CVE-2023-1380: Fixed with 6.2.14 CVE-2023-1513: Fixed with 6.2 @@ -119,6 +120,7 @@ CVE-2023-2985: Fixed with 6.2.3 CVE-2023-30456: Fixed with 6.2.8 CVE-2023-30772: Fixed with 6.2.9 +CVE-2023-3090: Fix not seen in stream CVE-2023-31081: Fix unknown CVE-2023-31082: Fix unknown CVE-2023-31083: Fix unknown @@ -137,6 +139,11 @@ CVE-2023-33203: Fixed with 6.2.9 CVE-2023-33250: Fix unknown CVE-2023-33288: Fixed with 6.2.9 +CVE-2023-3355: Fixed with 6.2.3 +CVE-2023-3390: Fix not seen in stream +CVE-2023-33951: Fixed with 6.2 +CVE-2023-33952: Fixed with 6.2 +CVE-2023-3397: Fix unknown CVE-2023-34255: Fix not seen in stream CVE-2023-34256: Fixed with 6.2.16 CVE-2023-35788: Fix not seen in stream
diff --git a/data/6.2/6.2_security.txt b/data/6.2/6.2_security.txt index 111c8da..ad6a4ae 100644 --- a/data/6.2/6.2_security.txt +++ b/data/6.2/6.2_security.txt
@@ -4,6 +4,8 @@ CVE-2023-1281: ee059170b1f7e94e55fa6cadee544e176a6e59c2 net/sched: tcindex: update imperfect hash filters respecting rcu CVE-2023-1513: 2c10b61421a28e95a46ab489fd56c0f442ff6952 kvm: initialize all of the kvm_debugregs structure before sending it to userspace CVE-2023-26545: fda6c89fe3d9aca073495a664e1d5aea28cd4377 net: mpls: fix stale pointer if allocation fails during device rename + CVE-2023-33951: a950b989ea29ab3b38ea7f6e3d2540700a3c54e8 drm/vmwgfx: Do not drop the reference to the handle too soon + CVE-2023-33952: a950b989ea29ab3b38ea7f6e3d2540700a3c54e8 drm/vmwgfx: Do not drop the reference to the handle too soon CVEs fixed in 6.2.1: CVE-2023-0459: 2c8ee21d78942cf48bc836612ad365fd6f06cfbb uaccess: Add speculation barrier to copy_from_user() @@ -18,6 +20,7 @@ CVE-2023-25012: 90289e71514e9533a9c44d694e2b492be9ed2b77 HID: bigben: use spinlock to safely schedule workers CVE-2023-2985: f348b373cebeaa91bf3552099026951189f14436 fs: hfsplus: fix UAF issue in hfsplus_put_super CVE-2023-3220: c745fd463ccf21943cfc35cb8842a33dda2ae259 drm/msm/dpu: Add check for pstates + CVE-2023-3355: abadeef9a82f86e6668759259adbcf8be6f44a9b drm/msm/gem: Add check for kmalloc CVEs fixed in 6.2.5: CVE-2023-1829: 372ae77cf11d11fb118cbe2d37def9dd5f826abd net/sched: Retire tcindex classifier @@ -157,12 +160,14 @@ CVE-2023-1192: (unk) CVE-2023-1193: (unk) CVE-2023-1194: (unk) + CVE-2023-1206: (unk) CVE-2023-20941: (unk) CVE-2023-2124: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-2176: (unk) RDMA/core: Refactor rdma_bind_addr CVE-2023-23039: (unk) CVE-2023-26242: (unk) CVE-2023-2898: (unk) + CVE-2023-3090: (unk) ipvlan:Fix out-of-bounds caused by unclear skb->cb CVE-2023-31081: (unk) CVE-2023-31082: (unk) CVE-2023-31083: (unk) @@ -171,6 +176,8 @@ CVE-2023-3141: (unk) memstick: r592: Fix UAF bug in r592_remove due to race condition CVE-2023-3212: (unk) gfs2: Don't deref jdesc in evict CVE-2023-33250: (unk) + CVE-2023-3390: (unk) netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE + CVE-2023-3397: (unk) CVE-2023-34255: (unk) xfs: verify buffer contents when we skip log replay CVE-2023-35788: (unk) net/sched: flower: fix possible OOB write in fl_set_geneve_opt() CVE-2023-35827: (unk)
diff --git a/data/CVEs.txt b/data/CVEs.txt index 79a16de..1ea24c8 100644 --- a/data/CVEs.txt +++ b/data/CVEs.txt
@@ -2315,6 +2315,7 @@ CVE-2023-1193: a848c4f15ab6d5d405dbee7de5da71839b2bf35e - (n/a) (v5.15-rc1 to unk) CVE-2023-1194: a848c4f15ab6d5d405dbee7de5da71839b2bf35e - (n/a) (v5.15-rc1 to unk) CVE-2023-1195: 7be3248f313930ff3d3436d4e9ddbe9fccc1f541 - 153695d36ead0ccc4d0256953c751cabf673e621 (v5.16-rc1 to v6.1-rc3) +CVE-2023-1206: (n/a) - (n/a) (unk to unk) CVE-2023-1249: 2aa362c49c314a98fb9aebbd7760a461667bac05 - 390031c942116d4733310f0684beb8db19885fe6 (v3.7-rc1 to v5.18-rc1) CVE-2023-1252: 2406a307ac7ddfd7effeeaff6947149ec6a95b4e - 9a254403760041528bc8f69fe2f5e1ef86950991 (v5.6-rc1 to v5.16-rc1) CVE-2023-1281: 9b0d4446b56904b59ae3809913b0ac760fa941a6 - ee059170b1f7e94e55fa6cadee544e176a6e59c2 (v4.14-rc1 to v6.2) @@ -2391,6 +2392,7 @@ CVE-2023-28410: 9f909e215fea0652023b9ed09d3d7bfe10386423 - 661412e301e2ca86799aa4f400d1cf0bd38c57c6 (v5.8-rc1 to v5.19-rc1) CVE-2023-28464: 0f00cd322d22d4441de51aa80bcce5bb6a8cbb44 - 5dc7d23e167e2882ef118456ceccd57873e876d8 (v6.3-rc1 to v6.3-rc7) CVE-2023-28466: 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 - 49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962 (v4.13-rc1 to v6.3-rc2) +CVE-2023-2860: (n/a) - 84a53580c5d2138c7361c7c3eea5b31827e63b35 (unk to v6.0-rc5) CVE-2023-28772: 5e3ca0ec76fce92daa4eed0d02de9c79b1fe3920 - d3b16034a24a112bb83aeb669ac5b9b01f744bb7 (v2.6.27-rc1 to v5.14-rc1) CVE-2023-28866: d0b137062b2de75b264b84143d21c98abc5f5ad2 - bce56405201111807cc8e4f47c6de3e10b17c1ac (v5.17-rc1 to v6.3-rc4) CVE-2023-2898: (n/a) - (n/a) (unk to unk) @@ -2399,6 +2401,7 @@ CVE-2023-3022: effda4dd97e878ab83336bec7411cc41b5cc6d37 - a65120bae4b7425a39c5783aa3d4fc29677eef0e (CVE Caused by Backporting) CVE-2023-30456: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 112e66017bff7f2837030f34c2bc19501e9212d5 (v2.6.12-rc2 to v6.3-rc3) CVE-2023-30772: c1a281e34dae41379af86b95592a5ae8e9e3af67 - 06615d11cc78162dfd5116efb71f29eb29502d37 (v4.1-rc1 to v6.3-rc4) +CVE-2023-3090: (n/a) - 90cbed5247439a966b645b34eb0a2e037836ea8e (unk to v6.4-rc2) CVE-2023-31081: (n/a) - (n/a) (unk to unk) CVE-2023-31082: (n/a) - (n/a) (unk to unk) CVE-2023-31083: (n/a) - (n/a) (unk to unk) @@ -2421,11 +2424,19 @@ CVE-2023-33203: b9b17debc69d27cd55e21ee51a5ba7fc50a426cf - 6b6bc5b8bd2d4ca9e1efa9ae0f98a0b0687ace75 (v4.9-rc1 to v6.3-rc4) CVE-2023-33250: 2ff4bed7fee72ba1abfcff5f11ae8f8e570353f2 - (n/a) (v6.2-rc1 to unk) CVE-2023-33288: 97774672573ac4355bd12cf84b202555c1131b69 - 47c29d69212911f50bdcdd0564b5999a559010d4 (v2.6.39-rc1 to v6.3-rc4) +CVE-2023-3338: (n/a) - 1202cdd665315c525b5237e96e0bedc76d7e754f (unk to v6.1-rc1) +CVE-2023-3355: (n/a) - d839f0811a31322c087a859c2b181e2383daa7be (unk to v6.3-rc1) CVE-2023-3357: 4b2c53d93a4bc9d52cc0ec354629cfc9dc217f93 - 53ffa6a9f83b2170c60591da1ead8791d5a42e81 (v5.11-rc1 to v6.2-rc1) CVE-2023-3358: 3703f53b99e4a7c373ce3568dd3f91f175ebb626 - b3d40c3ec3dc4ad78017de6c3a38979f57aaaab8 (v4.9-rc1 to v6.2-rc5) CVE-2023-3359: 6e977eaa8280e957b87904b536661550f2a6b3e8 - b0576ade3aaf24b376ea1a4406ae138e2a22b0c0 (v5.18-rc1 to v6.2-rc7) +CVE-2023-3389: (n/a) - 9ca9fb24d5febccea354089c41f96a8ad0d853f8 (unk to v6.0-rc1) +CVE-2023-3390: (n/a) - 1240eb93f0616b21c675416516ff3d74798fdc97 (unk to v6.4-rc7) +CVE-2023-33951: (n/a) - 9ef8d83e8e25d5f1811b3a38eb1484f85f64296c (unk to v6.4-rc1) +CVE-2023-33952: (n/a) - 9ef8d83e8e25d5f1811b3a38eb1484f85f64296c (unk to v6.4-rc1) +CVE-2023-3397: (n/a) - (n/a) (unk to unk) CVE-2023-34255: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 22ed903eee23a5b174e240f1cdfa9acf393a5210 (v2.6.12-rc2 to v6.4-rc1) CVE-2023-34256: 717d50e4971b81b96c0199c91cdf0039a8cb181a - 4f04351888a83e595571de672e0a4a8b74f4fb31 (v2.6.24-rc1 to v6.4-rc2) +CVE-2023-3439: (n/a) - b561275d633bcd8e0e8055ab86f1a13df75a0269 (unk to v5.18-rc5) CVE-2023-35788: 0a6e77784f490912d81b92cfd48424541c04691e - 4d56304e5827c8cc8cc18c75343d283af7c4825c (v4.19-rc1 to v6.4-rc5) CVE-2023-35823: 1e7126b4a86ad69e870099fb6b922a3b6e29598b - 30cf57da176cca80f11df0d9b7f71581fe601389 (v4.15-rc1 to v6.4-rc1) CVE-2023-35824: 34d2f9bf189c36ef8642cf6b64e80dfb756d888f - 5abda7a16698d4d1f47af1168d8fa2c640116b4a (v2.6.34-rc1 to v6.4-rc1)
diff --git a/data/cmts.json b/data/cmts.json index 61966f9..7e39eed 100644 --- a/data/cmts.json +++ b/data/cmts.json
@@ -230,7 +230,9 @@ "11980c2ac4ccfad21a5f8ee9e12059f1e687bb40": "v3.3-rc1", "11eeef41d5f63c7d2f7fdfcc733eb7fb137cc384": "v2.6.31-rc1", "11f3710417d026ea2f4fcf362d866342c5274185": "v4.6-rc1", + "1202cdd665315c525b5237e96e0bedc76d7e754f": "v6.1-rc1", "12176503366885edd542389eed3aaf94be163fdb": "v3.7-rc3", + "1240eb93f0616b21c675416516ff3d74798fdc97": "v6.4-rc7", "124751d5e63c823092060074bd0abaae61aaa9c4": "v4.14-rc5", "124d3b7041f9a0ca7c43a6293e1cae4576c32fd5": "v2.6.25-rc1", "126f40298446a82116e1f92a1aaf72b8c8228fae": "v4.8-rc1", @@ -1759,6 +1761,7 @@ "848440544b41fbe21f36072ee7dc7c3c59ce62e2": "v4.14-rc1", "849151dd5481bc8acb1d287a299b5d6a4ca9f1c3": "v3.17-rc4", "8494057ab5e40df590ef6ef7d66324d3ae33356b": "v4.0-rc7", + "84a53580c5d2138c7361c7c3eea5b31827e63b35": "v6.0-rc5", "84ac7260236a49c79eede91617700174c2c19b0c": "v4.9-rc8", "84c4e1f89fefe70554da0ab33be72c9be7994379": "v5.1-rc1", "84cffe499b9418d6c3b4de2ad9599cc2ec50c607": "v3.13-rc1", @@ -1890,6 +1893,7 @@ "9056d6489f5a41cfbb67f719d2c0ce61ead72d9f": "v5.17-rc1", "9060cb719e61b685ec0102574e10337fa5f445ea": "v5.0-rc8", "90bfdeef83f1d6c696039b6a917190dcbbad3220": "v5.10-rc3", + "90cbed5247439a966b645b34eb0a2e037836ea8e": "v6.4-rc2", "90db10434b163e46da413d34db8d0e77404cc645": "v4.11-rc5", "90e33d45940793def6f773b2d528e9f3c84ffdc7": "v4.15-rc1", "90ed52ebe48181d3c5427b3bd1d24f659e7575ad": "v2.6.21-rc6", @@ -2047,6 +2051,7 @@ "9c6ba456711687b794dcf285856fc14e2c76074f": "v4.6-rc1", "9c6d778800b921bde3bff3cff5003d1650f942d1": "v6.0-rc4", "9c824b6a172c8d44a6b037946bae90127c969b1b": "v3.18-rc1", + "9ca9fb24d5febccea354089c41f96a8ad0d853f8": "v6.0-rc1", "9cae36a094e7e9d6e5fe8b6dcd4642138b3eb0c7": "v5.19-rc1", "9cb636b5f6a8cc6d1b50809ec8f8d33ae0c84c95": "v6.0-rc5", "9cbee358687edf0359e29ac683ec25835134f059": "v3.5-rc1", @@ -2071,6 +2076,7 @@ "9ea9b9c48387edc101d56349492ad9c0492ff78d": "v5.15-rc1", "9eaf183af741e3d8393eb571ac8aec9ee7d6530e": "v5.8-rc1", "9ec7671603573ede31207eb5b0b3e1aa211b2854": "v2.6.31-rc1", + "9ef8d83e8e25d5f1811b3a38eb1484f85f64296c": "v6.4-rc1", "9efd23297cca530bb35e1848665805d3fcdd7889": "v6.0-rc5", "9f00b2e7cf241fa389733d41b615efdaa2cb0f5b": "v3.11-rc1", "9f0f3ebeda47a5518817f33c40f6d3ea9c0275b8": "v4.12-rc1", @@ -2369,6 +2375,7 @@ "b52fe2dbb3e655eb1483000adfab68a219549e13": "v5.17-rc1", "b53767719b6cd8789392ea3e7e2eb7b8906898f0": "v2.6.24-rc1", "b550a32e60a4941994b437a8d662432a486235a5": "v4.12-rc1", + "b561275d633bcd8e0e8055ab86f1a13df75a0269": "v5.18-rc5", "b57a55e2200ede754e4dc9cce4ba9402544b9365": "v5.1-rc6", "b593b6f1b4921700c00394d35e098259e3d04913": "v5.9-rc1", "b5a663aa426f4884c71cd8580adae73f33570f0d": "v4.5-rc1", @@ -2830,6 +2837,7 @@ "d7cce01504a0ccb95b5007d846560cfccbc1947f": "v4.8-rc1", "d80b64ff297e40c2b6f7d7abc1b3eba70d22a068": "v5.6-rc4", "d8316f3991d207fe32881a9ac20241be8fa2bad0": "v3.14", + "d839f0811a31322c087a859c2b181e2383daa7be": "v6.3-rc1", "d84f4f992cbd76e8f39c488cf0c5d123843923b1": "v2.6.29-rc1", "d8647b79c3b7e223ac051439d165bc8e7bbb832f": "v2.6.39-rc1", "d8861bab48b6c1fc3cdbcab8ff9d1eaea43afe7f": "v5.12-rc3",
diff --git a/data/kernel_cves.json b/data/kernel_cves.json index acb0dec..8d82856 100644 --- a/data/kernel_cves.json +++ b/data/kernel_cves.json
@@ -13614,6 +13614,8 @@ }, "cwe": "Race Conditions", "fixes": "8b01fc86b9f425899f8a3a8fc1c47d73c2c20543", + "last_affected_version": "3.14.40", + "last_modified": "2023-06-29", "nvd_text": "Race condition in the prepare_binprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root is in progress, and the ownership is changed but the setuid bit is not yet stripped.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2015-3339", @@ -30516,7 +30518,7 @@ "cwe": "Information Leak / Disclosure", "fixes": "99c6fa2511d8a683e61468be91b83f85452115fa", "last_affected_version": "4.14.13", - "last_modified": "2023-05-05", + "last_modified": "2023-06-29", "name": "Spectre", "nvd_text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.", "ref_urls": { @@ -80450,6 +80452,20 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1195" } }, + "CVE-2023-1206": { + "affected_versions": "unk to unk", + "breaks": "", + "fixes": "", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1206", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1206", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1206", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1206", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-1206", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-1206" + } + }, "CVE-2023-1249": { "affected_versions": "v3.7-rc1 to v5.18-rc1", "breaks": "2aa362c49c314a98fb9aebbd7760a461667bac05", @@ -81395,7 +81411,7 @@ }, "fixes": "22ed903eee23a5b174e240f1cdfa9acf393a5210", "last_affected_version": "6.1.32", - "last_modified": "2023-06-24", + "last_modified": "2023-06-29", "nvd_text": "An out-of-bounds memory access flaw was found in the Linux kernel\u2019s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-2124", @@ -82604,6 +82620,22 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-28466" } }, + "CVE-2023-2860": { + "affected_versions": "unk to v6.0-rc5", + "breaks": "", + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "fixes": "84a53580c5d2138c7361c7c3eea5b31827e63b35", + "last_affected_version": "5.15.67", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-2860", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-2860", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-2860", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-2860", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-2860", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-2860" + } + }, "CVE-2023-28772": { "affected_versions": "v2.6.27-rc1 to v5.14-rc1", "breaks": "5e3ca0ec76fce92daa4eed0d02de9c79b1fe3920", @@ -82822,6 +82854,23 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-30772" } }, + "CVE-2023-3090": { + "affected_versions": "unk to v6.4-rc2", + "breaks": "", + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "fixes": "90cbed5247439a966b645b34eb0a2e037836ea8e", + "last_affected_version": "6.1.29", + "last_modified": "2023-06-30", + "nvd_text": "A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation.\n\nThe out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if\u00a0CONFIG_IPVLAN is enabled.\n\n\nWe recommend upgrading past commit 90cbed5247439a966b645b34eb0a2e037836ea8e.\n\n", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3090", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3090", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3090", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3090", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3090", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3090" + } + }, "CVE-2023-31081": { "affected_versions": "unk to unk", "breaks": "", @@ -83125,9 +83174,21 @@ "affected_versions": "v4.19-rc1 to v6.3-rc1", "breaks": "25fdd5933e4c0f5fe2ea5cd59994f8ac5fbe90ef", "cmt_msg": "drm/msm/dpu: Add check for pstates", + "cvss3": { + "Attack Complexity": "Low", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "None", + "Integrity": "None", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "score": 5.5 + }, "fixes": "93340e10b9c5fc86730d149636e0aa8b47bb5a34", "last_affected_version": "6.2.2", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel through 6.1-rc8. dpu_crtc_atomic_check in drivers/gpu/drm/msm/disp/dpu1/dpu_crtc.c lacks check of the return value of kzalloc() and will cause the NULL Pointer Dereference.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3220", @@ -83232,9 +83293,21 @@ "affected_versions": "v2.6.22-rc7 to v6.4-rc1", "breaks": "8d62fdebdaf9b866c7e236a8f5cfe90e6dba5773", "cmt_msg": "relayfs: fix out-of-bounds access in relay_file_read", + "cvss3": { + "Attack Complexity": "Low", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "None", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", + "score": 7.1 + }, "fixes": "43ec16f1450f4936025a9bdf1a273affdb9732c1", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3268", @@ -83249,9 +83322,21 @@ "affected_versions": "v6.2-rc1 to v6.4-rc1", "breaks": "054a3ef683a176a509cc9b37f762029aae942495", "cmt_msg": "cpufreq: qcom-cpufreq-hw: fix double IO unmap and resource release on exit", + "cvss3": { + "Attack Complexity": "Low", + "Attack Vector": "Network", + "Availability": "High", + "Confidentiality": "None", + "Integrity": "None", + "Privileges Required": "None", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "score": 7.5 + }, "fixes": "ba5e770c9698782bc203bbf5cf3b36a77720bdbe", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "A vulnerability was found in drivers/cpufreq/qcom-cpufreq-hw.c in cpufreq subsystem in the Linux Kernel. This flaw, during device unbind will lead to double release problem leading to denial of service.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3312", @@ -83364,13 +83449,47 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-33288" } }, + "CVE-2023-3338": { + "affected_versions": "unk to v6.1-rc1", + "breaks": "", + "cmt_msg": "Remove DECnet support from kernel", + "fixes": "1202cdd665315c525b5237e96e0bedc76d7e754f", + "last_affected_version": "5.15.117", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3338", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3338", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3338", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3338", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3338", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3338" + } + }, + "CVE-2023-3355": { + "affected_versions": "unk to v6.3-rc1", + "breaks": "", + "cmt_msg": "drm/msm/gem: Add check for kmalloc", + "fixes": "d839f0811a31322c087a859c2b181e2383daa7be", + "last_affected_version": "6.2.2", + "last_modified": "2023-06-30", + "nvd_text": "A NULL pointer dereference flaw was found in the Linux kernel's drivers/gpu/drm/msm/msm_gem_submit.c code in the submit_lookup_cmds function, which fails because it lacks a check of the return value of kmalloc(). This issue allows a local user to crash the system.", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3355", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3355", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3355", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3355", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3355", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3355" + } + }, "CVE-2023-3357": { "affected_versions": "v5.11-rc1 to v6.2-rc1", "breaks": "4b2c53d93a4bc9d52cc0ec354629cfc9dc217f93", "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent", "fixes": "53ffa6a9f83b2170c60591da1ead8791d5a42e81", "last_affected_version": "6.1.1", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", + "nvd_text": "A NULL pointer dereference flaw was found in the Linux kernel AMD Sensor Fusion Hub driver. This flaw allows a local user to crash the system.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3357", "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3357", @@ -83386,7 +83505,8 @@ "cmt_msg": "HID: intel_ish-hid: Add check for ishtp_dma_tx_map", "fixes": "b3d40c3ec3dc4ad78017de6c3a38979f57aaaab8", "last_affected_version": "6.1.8", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", + "nvd_text": "A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3358", "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3358", @@ -83402,7 +83522,8 @@ "cmt_msg": "nvmem: brcm_nvram: Add check for kzalloc", "fixes": "b0576ade3aaf24b376ea1a4406ae138e2a22b0c0", "last_affected_version": "6.1.10", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", + "nvd_text": "An issue was discovered in the Linux kernel brcm_nvram_parse in drivers/nvmem/brcm_nvram.c. Lacks for the check of the return value of kzalloc() can cause the NULL Pointer Dereference.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3359", "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3359", @@ -83412,13 +83533,92 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-3359" } }, + "CVE-2023-3389": { + "affected_versions": "unk to v6.0-rc1", + "breaks": "", + "cmt_msg": "io_uring: mutex locked poll hashing", + "fixes": "9ca9fb24d5febccea354089c41f96a8ad0d853f8", + "last_modified": "2023-06-30", + "nvd_text": "A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation.\n\nRacing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer.\n\nWe recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and\u00a00e388fce7aec40992eadee654193cad345d62663 for 5.15 stable).\n\n", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3389", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3389", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3389", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3389", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3389", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3389" + } + }, + "CVE-2023-3390": { + "affected_versions": "unk to v6.4-rc7", + "breaks": "", + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE", + "fixes": "1240eb93f0616b21c675416516ff3d74798fdc97", + "last_affected_version": "6.1.34", + "last_modified": "2023-06-30", + "nvd_text": "A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c.\n\nMishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This flaw allows a local attacker with user access to cause a privilege escalation issue.\n\nWe recommend upgrading past commit\u00a01240eb93f0616b21c675416516ff3d74798fdc97.", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3390", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3390", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3390", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3390", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3390", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3390" + } + }, + "CVE-2023-33951": { + "affected_versions": "unk to v6.4-rc1", + "breaks": "", + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "fixes": "9ef8d83e8e25d5f1811b3a38eb1484f85f64296c", + "last_affected_version": "6.1", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-33951", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-33951", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-33951", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-33951", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-33951", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-33951" + } + }, + "CVE-2023-33952": { + "affected_versions": "unk to v6.4-rc1", + "breaks": "", + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "fixes": "9ef8d83e8e25d5f1811b3a38eb1484f85f64296c", + "last_affected_version": "6.1", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-33952", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-33952", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-33952", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-33952", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-33952", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-33952" + } + }, + "CVE-2023-3397": { + "affected_versions": "unk to unk", + "breaks": "", + "fixes": "", + "last_modified": "2023-06-29", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3397", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3397", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3397", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3397", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3397", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3397" + } + }, "CVE-2023-34255": { "affected_versions": "v2.6.12-rc2 to v6.4-rc1", "breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2", "cmt_msg": "xfs: verify buffer contents when we skip log replay", "fixes": "22ed903eee23a5b174e240f1cdfa9acf393a5210", "last_affected_version": "6.1.32", - "last_modified": "2023-06-24", + "last_modified": "2023-06-29", "nvd_text": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-2124. Reason: This candidate is a duplicate of CVE-2023-2124. Notes: All CVE users should reference CVE-2023-2124 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-34255", @@ -83459,6 +83659,23 @@ "Ubuntu": "https://ubuntu.com/security/CVE-2023-34256" } }, + "CVE-2023-3439": { + "affected_versions": "unk to v5.18-rc5", + "breaks": "", + "cmt_msg": "mctp: defer the kfree of object mdev->addrs", + "fixes": "b561275d633bcd8e0e8055ab86f1a13df75a0269", + "last_affected_version": "5.17.5", + "last_modified": "2023-06-30", + "nvd_text": "A flaw was found in the MCTP protocol in the Linux kernel. The function mctp_unregister() reclaims the device's relevant resource when a netcard detaches. However, a running routine may be unaware of this and cause the use-after-free of the mdev->addrs object, potentially leading to a denial of service.", + "ref_urls": { + "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-3439", + "ExploitDB": "https://www.exploit-db.com/search?cve=2023-3439", + "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-3439", + "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-3439", + "SUSE": "https://www.suse.com/security/cve/CVE-2023-3439", + "Ubuntu": "https://ubuntu.com/security/CVE-2023-3439" + } + }, "CVE-2023-35788": { "affected_versions": "v4.19-rc1 to v6.4-rc5", "breaks": "0a6e77784f490912d81b92cfd48424541c04691e", @@ -83492,9 +83709,21 @@ "affected_versions": "v4.15-rc1 to v6.4-rc1", "breaks": "1e7126b4a86ad69e870099fb6b922a3b6e29598b", "cmt_msg": "media: saa7134: fix use after free bug in saa7134_finidev due to race condition", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "30cf57da176cca80f11df0d9b7f71581fe601389", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35823", @@ -83509,9 +83738,21 @@ "affected_versions": "v2.6.34-rc1 to v6.4-rc1", "breaks": "34d2f9bf189c36ef8642cf6b64e80dfb756d888f", "cmt_msg": "media: dm1105: Fix use after free bug in dm1105_remove due to race condition", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "5abda7a16698d4d1f47af1168d8fa2c640116b4a", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35824", @@ -83526,9 +83767,21 @@ "affected_versions": "v5.18-rc1 to v6.4-rc1", "breaks": "7c38a551bda1b7adea7e98e5c6786f5bee7100b8", "cmt_msg": "media: cedrus: fix use after free bug in cedrus_remove due to race condition", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "50d0a7aea4809cef87979d4669911276aa23b71f", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in cedrus_remove in drivers/staging/media/sunxi/cedrus/cedrus.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35826", @@ -83542,8 +83795,20 @@ "CVE-2023-35827": { "affected_versions": "unk to unk", "breaks": "", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35827", @@ -83558,9 +83823,21 @@ "affected_versions": "v4.19-rc1 to v6.4-rc1", "breaks": "39facfa01c9fc64f90233d1734882f0a0cafe36a", "cmt_msg": "usb: gadget: udc: renesas_usb3: Fix use after free bug in renesas_usb3_remove due to race condition", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "2b947f8769be8b8181dc795fd292d3e7120f5204", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesas_usb3_remove in drivers/usb/gadget/udc/renesas_usb3.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35828", @@ -83575,9 +83852,21 @@ "affected_versions": "v5.8-rc1 to v6.4-rc1", "breaks": "cd33c830448baf7b1e94da72eca069e3e1d050c9", "cmt_msg": "media: rkvdec: fix use after free bug in rkvdec_remove", + "cvss3": { + "Attack Complexity": "High", + "Attack Vector": "Local", + "Availability": "High", + "Confidentiality": "High", + "Integrity": "High", + "Privileges Required": "Low", + "Scope": "Unchanged", + "User Interaction": "None", + "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", + "score": 7.0 + }, "fixes": "3228cec23b8b29215e18090c6ba635840190993d", "last_affected_version": "6.2.14", - "last_modified": "2023-06-24", + "last_modified": "2023-06-30", "nvd_text": "An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in rkvdec_remove in drivers/staging/media/rkvdec/rkvdec.c.", "ref_urls": { "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-35829",
diff --git a/data/stream_data.json b/data/stream_data.json index 7f5c9d2..7c00583 100644 --- a/data/stream_data.json +++ b/data/stream_data.json
@@ -2606,6 +2606,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -3239,6 +3242,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -3251,6 +3257,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -3296,6 +3305,9 @@ "CVE-2020-0427": { "cmt_msg": "pinctrl: devicetree: Avoid taking direct reference to device name string" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -3428,6 +3440,12 @@ "CVE-2020-1749": { "cmt_msg": "net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -3524,6 +3542,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -3551,6 +3572,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -4253,6 +4277,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -4364,6 +4394,9 @@ "CVE-2019-14283": { "cmt_msg": "floppy: fix out-of-bounds read in copy_buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2017-16649": { "cmt_msg": "net: cdc_ether: fix divide by 0 on bad descriptors" }, @@ -4694,6 +4727,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -5384,6 +5420,9 @@ "CVE-2019-2213": { "cmt_msg": "binder: fix possible UAF when freeing buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2020-25211": { "cmt_msg": "netfilter: ctnetlink: add a range check for l3/l4 protonum" }, @@ -5405,6 +5444,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -6290,6 +6332,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -6365,6 +6410,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -6554,6 +6602,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -6728,6 +6782,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -7667,6 +7724,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -7709,6 +7772,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -8205,6 +8271,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -8862,6 +8931,9 @@ "CVE-2019-2213": { "cmt_msg": "binder: fix possible UAF when freeing buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2020-25211": { "cmt_msg": "netfilter: ctnetlink: add a range check for l3/l4 protonum" }, @@ -8883,6 +8955,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -9678,6 +9753,9 @@ "CVE-2018-1095": { "cmt_msg": "ext4: limit xattr size to INT_MAX" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -9750,6 +9828,9 @@ "CVE-2018-10883": { "cmt_msg": "jbd2: don't mark block as modified if the handle is out of credits" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -9933,6 +10014,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -10083,6 +10170,9 @@ "CVE-2019-19527": { "cmt_msg": "HID: hiddev: do cleanup in failure of opening a device" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19526": { "cmt_msg": "NFC: pn533: fix use-after-free and memleaks" }, @@ -10962,6 +11052,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -10995,6 +11091,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -11368,6 +11467,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -12046,6 +12148,9 @@ "CVE-2019-2213": { "cmt_msg": "binder: fix possible UAF when freeing buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2020-25211": { "cmt_msg": "netfilter: ctnetlink: add a range check for l3/l4 protonum" }, @@ -12067,6 +12172,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -12910,6 +13018,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -12985,6 +13096,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -13177,6 +13291,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -13336,6 +13456,9 @@ "CVE-2019-19527": { "cmt_msg": "HID: hiddev: do cleanup in failure of opening a device" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19526": { "cmt_msg": "NFC: pn533: fix use-after-free and memleaks" }, @@ -14251,6 +14374,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -14287,6 +14416,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -14656,6 +14788,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -15316,6 +15451,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -15841,6 +15979,9 @@ "CVE-2021-32399": { "cmt_msg": "bluetooth: eliminate the potential race condition when removing the HCI controller" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-12380": { "cmt_msg": "efi/x86/Add missing error handling to old_memmap 1:1 mapping code" }, @@ -16072,6 +16213,9 @@ "CVE-2018-1095": { "cmt_msg": "ext4: limit xattr size to INT_MAX" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -16138,6 +16282,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -16309,6 +16456,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -16450,6 +16603,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -17293,9 +17449,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -17329,6 +17491,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -20858,6 +21023,10 @@ "cmt_msg": "netfilter: nf_conntrack_irc: Fix forged IP logic", "cmt_id": "6ce66e3442a5989cbe56a6884384bf0b7d1d0725" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "cmt_id": "dc9dbd65c803af1607484fed5da50d41dc8dd864" + }, "CVE-2022-3586": { "cmt_msg": "sch_sfb: Don't assume the skb is still around after enqueueing to child", "cmt_id": "a7af71bb5ee6e887d49f098e212ef4f2f7cfbaf6" @@ -21202,6 +21371,10 @@ "cmt_msg": "netfilter: nf_tables: do not allow SET_ID to refer to another table", "cmt_id": "4e0dbab570defe5b747578cbea8e07f9d0709bec" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "8747ec637300f1212a47a9f15e2340cfe4dcbb9c" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "3faa6fe21c516dbcca469c297df77decbc2fed0f" @@ -21223,6 +21396,12 @@ "cmt_id": "ff0e8ed8dfb584575cffc1561f17a1d094e8565b" } }, + "4.14.319": { + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel", + "cmt_id": "975840f8dec3c1e6a6b28a387bb7cf55a4775e18" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -21323,6 +21502,9 @@ "CVE-2021-35477": { "cmt_msg": "bpf: Introduce BPF nospec instruction for mitigating Spectre v4" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2019-15222": { "cmt_msg": "ALSA: usb-audio: Fix gpf in snd_usb_pipe_sanity_check" }, @@ -21347,6 +21529,9 @@ "CVE-2023-0386": { "cmt_msg": "ovl: fail on invalid uid/gid mapping at copy up" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-3595": { "cmt_msg": "cifs: fix double-fault crash during ntlmssp" }, @@ -21419,6 +21604,9 @@ "CVE-2022-45884": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2019-9444": { "cmt_msg": "printk: hash addresses printed with %p" }, @@ -21524,6 +21712,12 @@ "CVE-2023-2176": { "cmt_msg": "RDMA/core: Refactor rdma_bind_addr" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2013-7445": { "cmt_msg": "" }, @@ -21632,6 +21826,9 @@ "CVE-2020-12364": { "cmt_msg": "drm/i915/guc: Update to use firmware v49.0.1" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-2327": { "cmt_msg": "io_uring: remove any grabbing of context" }, @@ -21641,6 +21838,9 @@ "CVE-2022-3642": { "cmt_msg": "" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -21752,6 +21952,9 @@ "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, @@ -22786,6 +22989,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -23509,6 +23715,9 @@ "CVE-2019-20811": { "cmt_msg": "net-sysfs: call dev_hold if kobject_init_and_add success" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -23521,6 +23730,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -23578,6 +23790,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -23737,6 +23952,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -23878,6 +24099,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -24685,9 +24909,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -24718,6 +24948,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -24787,6 +25020,9 @@ "CVE-2019-14283": { "cmt_msg": "floppy: fix out-of-bounds read in copy_buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -25060,6 +25296,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -25702,6 +25941,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -26236,6 +26478,9 @@ "CVE-2021-32399": { "cmt_msg": "bluetooth: eliminate the potential race condition when removing the HCI controller" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-12380": { "cmt_msg": "efi/x86/Add missing error handling to old_memmap 1:1 mapping code" }, @@ -26461,6 +26706,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -26518,6 +26766,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -26683,6 +26934,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -26821,6 +27078,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -27649,9 +27909,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -27682,6 +27948,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -30690,6 +30959,10 @@ "cmt_msg": "netfilter: nf_conntrack_irc: Fix forged IP logic", "cmt_id": "3275f7804f40de3c578d2253232349b07c25f146" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "cmt_id": "f684c16971ed5e77dfa25a9ad25b5297e1f58eab" + }, "CVE-2022-3586": { "cmt_msg": "sch_sfb: Don't assume the skb is still around after enqueueing to child", "cmt_id": "9245ed20950afe225bc6d1c4b9d28d55aa152e25" @@ -31056,6 +31329,10 @@ } }, "4.19.284": { + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "b36dcf3ed547c103acef6f52bed000a0ac6c074f" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "dce890c3dfaf631d0a8ac79c2792911f9fc551fa" @@ -31077,6 +31354,12 @@ "cmt_id": "dcb11fe0a0a9cca2b7425191b9bf30dc29f2ad0f" } }, + "4.19.287": { + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel", + "cmt_id": "3e77bbc87342841db66c18a3afca0441c8c555e4" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -31147,6 +31430,9 @@ "CVE-2020-27820": { "cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal" }, + "CVE-2023-32250": { + "cmt_msg": "ksmbd: fix racy issue from session setup and logoff" + }, "CVE-2020-24503": { "cmt_msg": "" }, @@ -31183,6 +31469,9 @@ "CVE-2022-1263": { "cmt_msg": "KVM: avoid NULL pointer dereference in kvm_dirty_ring_push" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2019-15222": { "cmt_msg": "ALSA: usb-audio: Fix gpf in snd_usb_pipe_sanity_check" }, @@ -31201,6 +31490,9 @@ "CVE-2019-19241": { "cmt_msg": "io_uring: async workers should inherit the user creds" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-3595": { "cmt_msg": "cifs: fix double-fault crash during ntlmssp" }, @@ -31363,6 +31655,12 @@ "CVE-2023-2177": { "cmt_msg": "sctp: leave the err path free in sctp_stream_init to sctp_stream_free" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2013-7445": { "cmt_msg": "" }, @@ -31474,6 +31772,9 @@ "CVE-2022-3642": { "cmt_msg": "" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -31534,6 +31835,9 @@ "CVE-2023-35827": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-39801": { "cmt_msg": "" }, @@ -31582,6 +31886,9 @@ "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, @@ -31621,8 +31928,8 @@ "CVE-2019-16089": { "cmt_msg": "" }, - "CVE-2023-32250": { - "cmt_msg": "ksmbd: fix racy issue from session setup and logoff" + "CVE-2023-1206": { + "cmt_msg": "" }, "CVE-2022-0400": { "cmt_msg": "" @@ -32561,6 +32868,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -33278,6 +33588,9 @@ "CVE-2019-20811": { "cmt_msg": "net-sysfs: call dev_hold if kobject_init_and_add success" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -33290,6 +33603,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -33341,6 +33657,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -33494,6 +33813,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -33632,6 +33957,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -34418,9 +34746,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -34451,6 +34785,9 @@ "CVE-2019-16089": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -34520,6 +34857,9 @@ "CVE-2019-14283": { "cmt_msg": "floppy: fix out-of-bounds read in copy_buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -36137,6 +36477,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -36779,6 +37122,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -37280,6 +37626,9 @@ "CVE-2018-7273": { "cmt_msg": "printk: hash addresses printed with %p" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-23036": { "cmt_msg": "xen/grant-table: add gnttab_try_end_foreign_access()" }, @@ -37391,6 +37740,9 @@ "CVE-2017-0750": { "cmt_msg": "f2fs: do more integrity verification for superblock" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -37550,6 +37902,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -37610,6 +37965,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -37763,6 +38121,9 @@ "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -37919,6 +38280,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -38753,6 +39117,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -38801,6 +39171,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -39366,6 +39739,10 @@ "CVE-2017-1000253": { "cmt_msg": "fs/binfmt_elf.c: fix bug in loading of PIE binaries", "cmt_id": "3d262151b457c3af845e460bd32a746691898a53" + }, + "CVE-2015-3339": { + "cmt_msg": "fs: take i_mutex during prepare_binprm for set[ug]id executables", + "cmt_id": "de70236fbe30749fb8c317088c16a97e700fe232" } }, "3.14.42": { @@ -40002,6 +40379,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -40707,6 +41087,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -41058,6 +41441,9 @@ "CVE-2022-20148": { "cmt_msg": "f2fs: fix UAF in f2fs_available_free_memory" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-30456": { "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4" }, @@ -41256,6 +41642,9 @@ "CVE-2018-7273": { "cmt_msg": "printk: hash addresses printed with %p" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-23036": { "cmt_msg": "xen/grant-table: add gnttab_try_end_foreign_access()" }, @@ -41379,6 +41768,9 @@ "CVE-2017-0750": { "cmt_msg": "f2fs: do more integrity verification for superblock" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -41619,6 +42011,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -41790,6 +42185,9 @@ "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -41961,6 +42359,9 @@ "CVE-2022-1198": { "cmt_msg": "drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -42189,9 +42590,6 @@ "CVE-2017-1000379": { "cmt_msg": "mm: larger stack guard gap, between vmas" }, - "CVE-2015-3339": { - "cmt_msg": "fs: take i_mutex during prepare_binprm for set[ug]id executables" - }, "CVE-2018-18281": { "cmt_msg": "mremap: properly flush TLB before releasing the page" }, @@ -42891,6 +43289,12 @@ "CVE-2020-26557": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -42939,6 +43343,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -46231,6 +46638,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -46690,6 +47100,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -46702,6 +47115,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2017-18552": { "cmt_msg": "RDS: validate the requested traces user input against max supported" }, @@ -46729,6 +47145,9 @@ "CVE-2020-0427": { "cmt_msg": "pinctrl: devicetree: Avoid taking direct reference to device name string" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2017-9984": { "cmt_msg": "ALSA: msnd: Optimize / harden DSP and MIDI loops" }, @@ -46828,6 +47247,12 @@ "CVE-2021-3640": { "cmt_msg": "Bluetooth: sco: Fix lock_sock() blockage by memcpy_from_msg()" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -46894,6 +47319,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -46918,6 +47346,9 @@ "CVE-2022-3642": { "cmt_msg": "" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -47482,6 +47913,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -47545,6 +47982,9 @@ "CVE-2019-5489": { "cmt_msg": "Change mincore() to count \"mapped\" pages rather than \"cached\" pages" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2017-16648": { "cmt_msg": "dvb_frontend: don't use-after-free the frontend struct" } @@ -49631,6 +50071,12 @@ "cmt_id": "b520f2dc407ffcb097efd2282b42c26bed8492b7" } }, + "3.2.101": { + "CVE-2017-5715": { + "cmt_msg": "x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]", + "cmt_id": "0605c9a548fb39e5b0ee4765ffe828742ecf02ae" + } + }, "3.2.102": { "CVE-2019-9456": { "cmt_msg": "usb: usbmon: Read text within supplied buffer size", @@ -49731,6 +50177,9 @@ "CVE-2019-19966": { "cmt_msg": "media: cpia2: Fix use-after-free in cpia2_exit" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2020-24587": { "cmt_msg": "mac80211: prevent mixed key and fragment cache attacks" }, @@ -49785,6 +50234,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -50328,6 +50780,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -50610,9 +51065,6 @@ "CVE-2017-8797": { "cmt_msg": "nfsd: fix undefined behavior in nfsd4_layout_verify" }, - "CVE-2017-5715": { - "cmt_msg": "x86/cpufeatures: Add X86_BUG_SPECTRE_V[12]" - }, "CVE-2022-20141": { "cmt_msg": "igmp: Add ip_mc_list lock in ip_check_mc_rcu" }, @@ -50907,6 +51359,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -50943,6 +51398,9 @@ "CVE-2019-9458": { "cmt_msg": "media: v4l: event: Prevent freeing event subscriptions while accessed" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -51072,6 +51530,9 @@ "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -51159,6 +51620,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -51186,6 +51650,9 @@ "CVE-2019-19527": { "cmt_msg": "HID: hiddev: do cleanup in failure of opening a device" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -51885,6 +52352,12 @@ "CVE-2023-3022": { "cmt_msg": "ipv6: Use result arg in fib_lookup_arg consistently" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -51963,6 +52436,9 @@ "CVE-2020-36558": { "cmt_msg": "vt: vt_ioctl: fix race in VT_RESIZEX" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-23039": { "cmt_msg": "" }, @@ -51997,10 +52473,6 @@ }, "6.2": { "6.2": { - "CVE-2023-1513": { - "cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace", - "cmt_id": "2c10b61421a28e95a46ab489fd56c0f442ff6952" - }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu", "cmt_id": "ee059170b1f7e94e55fa6cadee544e176a6e59c2" @@ -52009,6 +52481,18 @@ "cmt_msg": "net: mpls: fix stale pointer if allocation fails during device rename", "cmt_id": "fda6c89fe3d9aca073495a664e1d5aea28cd4377" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "cmt_id": "a950b989ea29ab3b38ea7f6e3d2540700a3c54e8" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "cmt_id": "a950b989ea29ab3b38ea7f6e3d2540700a3c54e8" + }, + "CVE-2023-1513": { + "cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace", + "cmt_id": "2c10b61421a28e95a46ab489fd56c0f442ff6952" + }, "CVE-2022-27672": { "cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions", "cmt_id": "be8de49bea505e7777a69ef63d60e02ac1712683" @@ -52021,6 +52505,10 @@ } }, "6.2.3": { + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc", + "cmt_id": "abadeef9a82f86e6668759259adbcf8be6f44a9b" + }, "CVE-2023-1998": { "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS", "cmt_id": "ead3c8e54d28fa1d5454b1f8a21b96b4a969b1cb" @@ -52256,9 +52744,15 @@ "CVE-2020-11725": { "cmt_msg": "" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-23825": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -52277,6 +52771,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2020-15802": { "cmt_msg": "" }, @@ -52394,6 +52891,9 @@ "CVE-2023-35788": { "cmt_msg": "net/sched: flower: fix possible OOB write in fl_set_geneve_opt()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2023-35827": { "cmt_msg": "" }, @@ -52758,6 +53258,14 @@ "CVE-2023-26545": { "cmt_msg": "net: mpls: fix stale pointer if allocation fails during device rename", "cmt_id": "c376227845eef8f2e62e2c29c3cf2140d35dd8e8" + }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "cmt_id": "0a127ac972404600c99eb141c8d5b5348e53ee4f" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon", + "cmt_id": "0a127ac972404600c99eb141c8d5b5348e53ee4f" } }, "6.1.14": { @@ -52771,6 +53279,10 @@ } }, "6.1.16": { + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc", + "cmt_id": "31c4251a20fd7addc1bf4fe801f95f9ba1b38990" + }, "CVE-2023-1998": { "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS", "cmt_id": "08d87c87d6461d16827c9b88d84c48c26b6c994a" @@ -52965,6 +53477,10 @@ } }, "6.1.30": { + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "610a433810b277b3b77389733c07d22e8af68de2" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "9a342d4eb9fb8e52f7d1afe088a79513f3f9a9a5" @@ -52992,6 +53508,12 @@ "cmt_id": "a8eaa9a06addbd9cb0238cb1c729921ecbb6504c" } }, + "6.1.35": { + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE", + "cmt_id": "4aaa3b730d16c13cc3feaa127bfca1af201d969d" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -53035,6 +53557,9 @@ "CVE-2022-23825": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -53167,6 +53692,9 @@ "CVE-2021-3892": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-3642": { "cmt_msg": "" }, @@ -53675,6 +54203,9 @@ "CVE-2020-11725": { "cmt_msg": "" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-23825": { "cmt_msg": "" }, @@ -53732,6 +54263,9 @@ "CVE-2023-2156": { "cmt_msg": "net: rpl: fix rpl header size calculation" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2023-1583": { "cmt_msg": "io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()" }, @@ -53813,6 +54347,9 @@ "CVE-2022-4842": { "cmt_msg": "fs/ntfs3: Fix attr_punch_hole() null pointer derenference" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2020-10708": { "cmt_msg": "" }, @@ -53825,6 +54362,9 @@ "CVE-2022-4543": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2017-13693": { "cmt_msg": "" }, @@ -53846,6 +54386,12 @@ "CVE-2023-2176": { "cmt_msg": "RDMA/core: Refactor rdma_bind_addr" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -53933,6 +54479,9 @@ "CVE-2023-33203": { "cmt_msg": "net: qcom/emac: Fix use after free bug in emac_remove due to race condition" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2023-2235": { "cmt_msg": "perf: Fix check before add_event_to_groups() in perf_group_detach()" }, @@ -53954,6 +54503,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2011-4917": { "cmt_msg": "" }, @@ -54487,6 +55039,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -55132,6 +55687,9 @@ "CVE-2018-9363": { "cmt_msg": "Bluetooth: hidp: buffer overflow in hidp_process_report" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2016-10723": { "cmt_msg": "mm, oom: remove sleep from under oom_lock" }, @@ -55240,6 +55798,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -55843,6 +56404,9 @@ "CVE-2022-0617": { "cmt_msg": "udf: Fix NULL ptr deref when converting from inline format" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-23036": { "cmt_msg": "xen/grant-table: add gnttab_try_end_foreign_access()" }, @@ -55966,6 +56530,9 @@ "CVE-2017-15299": { "cmt_msg": "KEYS: don't let add_key() update an uninstantiated key" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -56233,6 +56800,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -56425,6 +56995,9 @@ "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -56614,6 +57187,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -57601,6 +58177,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -57649,6 +58231,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -61647,6 +62232,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -61926,6 +62514,9 @@ "CVE-2019-12382": { "cmt_msg": "drm/edid: Fix a missing-check bug in drm_load_edid_firmware()" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2017-13166": { "cmt_msg": "media: v4l2-ioctl.c: use check_fmt for enum/g/s/try_fmt" }, @@ -61977,12 +62568,18 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2017-18552": { "cmt_msg": "RDS: validate the requested traces user input against max supported" }, @@ -62001,6 +62598,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, @@ -62061,6 +62661,12 @@ "CVE-2022-42895": { "cmt_msg": "Bluetooth: L2CAP: Fix attempting to access uninitialized memory" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-1508": { "cmt_msg": "io_uring: reexpand under-reexpanded iters" }, @@ -62109,6 +62715,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -62133,6 +62742,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2021-4218": { "cmt_msg": "sysctl: pass kernel pointers to ->proc_handler" }, @@ -62511,6 +63123,9 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -62562,6 +63177,9 @@ "CVE-2019-5489": { "cmt_msg": "Change mincore() to count \"mapped\" pages rather than \"cached\" pages" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2017-16648": { "cmt_msg": "dvb_frontend: don't use-after-free the frontend struct" } @@ -62799,6 +63417,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -63525,6 +64146,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -63915,6 +64539,9 @@ "CVE-2022-20148": { "cmt_msg": "f2fs: fix UAF in f2fs_available_free_memory" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, @@ -64239,6 +64866,9 @@ "CVE-2017-15299": { "cmt_msg": "KEYS: don't let add_key() update an uninstantiated key" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -64500,6 +65130,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -64686,6 +65319,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -64872,6 +65511,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -65853,6 +66495,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -65898,6 +66546,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -66272,6 +66923,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -66905,6 +67559,9 @@ "CVE-2018-9363": { "cmt_msg": "Bluetooth: hidp: buffer overflow in hidp_process_report" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2016-10723": { "cmt_msg": "mm, oom: remove sleep from under oom_lock" }, @@ -67004,6 +67661,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -67718,6 +68378,9 @@ "CVE-2017-15299": { "cmt_msg": "KEYS: don't let add_key() update an uninstantiated key" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -67985,6 +68648,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -68168,6 +68834,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -68351,6 +69023,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -69335,6 +70010,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -69383,6 +70064,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -70902,6 +71586,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -71532,6 +72219,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -72078,6 +72768,9 @@ "CVE-2018-3693": { "cmt_msg": "ext4: fix spectre gadget in ext4_mb_regular_allocator()" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -72222,6 +72915,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -72276,6 +72972,9 @@ "CVE-2022-1419": { "cmt_msg": "drm/vgem: Close use-after-free race in vgem_gem_create" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -72426,6 +73125,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -72570,6 +73275,9 @@ "CVE-2022-1198": { "cmt_msg": "drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -73377,6 +74085,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -73416,6 +74130,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -74207,6 +74924,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -74726,6 +75446,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, @@ -74735,6 +75458,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -74771,6 +75497,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-1582": { "cmt_msg": "fs/proc: task_mmu.c: don't read mapcount for migration entry" }, @@ -74888,6 +75617,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -74969,6 +75704,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -74996,6 +75734,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -75581,9 +76322,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -75650,6 +76397,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -75973,6 +76723,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -76756,6 +77509,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -77149,6 +77905,9 @@ "CVE-2016-2847": { "cmt_msg": "pipe: limit the per-user amount of pages allocated in pipes" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-9422": { "cmt_msg": "futex: Remove requirement for lock_page() in get_futex_key()" }, @@ -77377,6 +78136,9 @@ "CVE-2022-0617": { "cmt_msg": "udf: Fix NULL ptr deref when converting from inline format" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-23036": { "cmt_msg": "xen/grant-table: add gnttab_try_end_foreign_access()" }, @@ -77506,6 +78268,9 @@ "CVE-2017-0750": { "cmt_msg": "f2fs: do more integrity verification for superblock" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2019-11190": { "cmt_msg": "binfmt_elf: switch to new creds when switching to new mm" }, @@ -77782,6 +78547,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -77980,6 +78748,9 @@ "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -78175,6 +78946,9 @@ "CVE-2022-1198": { "cmt_msg": "drivers: hamradio: 6pack: fix UAF bug caused by mod_timer()" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -79192,6 +79966,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -79240,6 +80020,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -80008,6 +80791,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -80230,6 +81016,9 @@ "CVE-2021-39657": { "cmt_msg": "scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-47946": { "cmt_msg": "io_uring: kill sqo_dead and sqo submission halting" }, @@ -80491,12 +81280,18 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -80656,6 +81451,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -80737,6 +81538,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -80764,6 +81568,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -81337,9 +82144,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -81406,6 +82219,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -82116,6 +82932,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -82320,6 +83139,9 @@ "CVE-2021-39657": { "cmt_msg": "scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-47946": { "cmt_msg": "io_uring: kill sqo_dead and sqo submission halting" }, @@ -82572,12 +83394,18 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -82725,6 +83553,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -82800,6 +83634,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -82827,6 +83664,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -83382,9 +84222,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -83450,6 +84296,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -84102,6 +84951,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -84309,6 +85161,9 @@ "CVE-2021-39657": { "cmt_msg": "scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-47946": { "cmt_msg": "io_uring: kill sqo_dead and sqo submission halting" }, @@ -84552,12 +85407,18 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -84699,6 +85560,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -84774,6 +85641,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -84801,6 +85671,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -85329,9 +86202,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -85397,6 +86276,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -89427,6 +90309,12 @@ "CVE-2023-31436": { "cmt_msg": "net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-2898": { "cmt_msg": "" }, @@ -89457,6 +90345,9 @@ "CVE-2022-40307": { "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-38096": { "cmt_msg": "" }, @@ -89724,6 +90615,12 @@ "CVE-2023-3358": { "cmt_msg": "HID: intel_ish-hid: Add check for ishtp_dma_tx_map" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-44033": { "cmt_msg": "" }, @@ -89889,8 +90786,8 @@ "CVE-2023-33203": { "cmt_msg": "net: qcom/emac: Fix use after free bug in emac_remove due to race condition" }, - "CVE-2023-2007": { - "cmt_msg": "scsi: dpt_i2o: Remove obsolete driver" + "CVE-2023-1206": { + "cmt_msg": "" }, "CVE-2023-26545": { "cmt_msg": "net: mpls: fix stale pointer if allocation fails during device rename" @@ -89919,6 +90816,9 @@ "CVE-2019-20811": { "cmt_msg": "net-sysfs: call dev_hold if kobject_init_and_add success" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -89928,6 +90828,9 @@ "CVE-2019-2025": { "cmt_msg": "binder: fix race that allows malicious free of live buffer" }, + "CVE-2023-2007": { + "cmt_msg": "scsi: dpt_i2o: Remove obsolete driver" + }, "CVE-2021-4218": { "cmt_msg": "sysctl: pass kernel pointers to ->proc_handler" }, @@ -90054,9 +90957,15 @@ "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2017-13166": { "cmt_msg": "media: v4l2-ioctl.c: use check_fmt for enum/g/s/try_fmt" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -90120,6 +91029,9 @@ "CVE-2023-0394": { "cmt_msg": "ipv6: raw: Deduct extension header length in rawv6_push_pending_frames" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2022-1679": { "cmt_msg": "ath9k: fix use-after-free in ath9k_hif_usb_rx_cb" }, @@ -90150,6 +91062,9 @@ "CVE-2022-1280": { "cmt_msg": "drm: avoid circular locks in drm_mode_getconnector" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2011-4917": { "cmt_msg": "" }, @@ -90469,6 +91384,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -91201,6 +92119,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -91591,6 +92512,9 @@ "CVE-2022-20148": { "cmt_msg": "f2fs: fix UAF in f2fs_available_free_memory" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2022-1786": { "cmt_msg": "io_uring: remove io_identity" }, @@ -91909,6 +92833,9 @@ "CVE-2017-15299": { "cmt_msg": "KEYS: don't let add_key() update an uninstantiated key" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2022-44033": { "cmt_msg": "" }, @@ -92167,6 +93094,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -92353,6 +93283,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -92536,6 +93472,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-26141": { "cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe" }, @@ -93505,6 +94444,12 @@ "CVE-2021-3609": { "cmt_msg": "can: bcm: delay release of struct bcm_op after synchronize_rcu()" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -93550,6 +94495,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -93943,6 +94891,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -94627,6 +95578,9 @@ "CVE-2019-2213": { "cmt_msg": "binder: fix possible UAF when freeing buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2020-25211": { "cmt_msg": "netfilter: ctnetlink: add a range check for l3/l4 protonum" }, @@ -94648,6 +95602,9 @@ "CVE-2018-9516": { "cmt_msg": "HID: debug: check length before copy_to_user()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2018-1128": { "cmt_msg": "libceph: add authorizer challenge" }, @@ -95488,6 +96445,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2018-1092": { "cmt_msg": "ext4: fail ext4_iget for root directory if unallocated" }, @@ -95563,6 +96523,9 @@ "CVE-2020-14314": { "cmt_msg": "ext4: fix potential negative array index in do_split()" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -95767,6 +96730,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -95935,6 +96904,9 @@ "CVE-2017-7542": { "cmt_msg": "ipv6: avoid overflow of offset in ip6_find_1stfragopt" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-9245": { "cmt_msg": "f2fs: sanity check of xattr entry size" }, @@ -96847,6 +97819,12 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -96886,6 +97864,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2021-38198": { "cmt_msg": "KVM: X86: MMU: Use the correct inherited permissions to get shadow page" }, @@ -97362,6 +98343,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -97914,6 +98898,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -98583,6 +99570,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -98646,6 +99636,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -98784,6 +99777,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -98883,6 +99882,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -98916,6 +99918,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -99642,9 +100647,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -99744,6 +100755,9 @@ "CVE-2019-14283": { "cmt_msg": "floppy: fix out-of-bounds read in copy_buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -100081,6 +101095,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -100624,6 +101641,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -101290,6 +102310,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -101350,6 +102373,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-1073": { "cmt_msg": "HID: check empty report_list in hid_validate_values()" }, @@ -101476,6 +102502,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -101578,6 +102610,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -101611,6 +102646,9 @@ "CVE-2019-19527": { "cmt_msg": "HID: hiddev: do cleanup in failure of opening a device" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -102334,9 +103372,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -102424,6 +103468,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -103290,6 +104337,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -103896,6 +104946,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -103908,6 +104961,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -103962,6 +105018,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-1582": { "cmt_msg": "fs/proc: task_mmu.c: don't read mapcount for migration entry" }, @@ -104088,6 +105147,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -104202,6 +105267,9 @@ "CVE-2020-15437": { "cmt_msg": "serial: 8250: fix null-ptr-deref in serial8250_start_tx()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -104235,6 +105303,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19526": { "cmt_msg": "NFC: pn533: fix use-after-free and memleaks" }, @@ -104913,9 +105984,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -104997,6 +106074,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -105651,6 +106731,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3542": { "cmt_msg": "" }, @@ -105834,6 +106917,9 @@ "CVE-2022-2588": { "cmt_msg": "net_sched: cls_route: remove from list when handle is 0" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-4744": { "cmt_msg": "tun: avoid double free in tun_free_netdev" }, @@ -106023,12 +107109,18 @@ "CVE-2023-1079": { "cmt_msg": "HID: asus: use spinlock to safely schedule workers" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -106152,6 +107244,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -106191,6 +107289,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -106221,6 +107322,9 @@ "CVE-2023-3357": { "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -106683,9 +107787,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -106751,6 +107861,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -107314,6 +108427,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3542": { "cmt_msg": "" }, @@ -107503,6 +108619,9 @@ "CVE-2022-2588": { "cmt_msg": "net_sched: cls_route: remove from list when handle is 0" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-4744": { "cmt_msg": "tun: avoid double free in tun_free_netdev" }, @@ -107677,12 +108796,18 @@ "CVE-2023-1079": { "cmt_msg": "HID: asus: use spinlock to safely schedule workers" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -107809,6 +108934,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -107851,6 +108982,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -107881,6 +109015,9 @@ "CVE-2023-3357": { "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -108322,9 +109459,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -108393,6 +109536,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -109974,6 +111120,10 @@ "cmt_msg": "netfilter: nf_conntrack_irc: Fix forged IP logic", "cmt_id": "e12ce30fe593dd438c5b392290ad7316befc11ca" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "cmt_id": "076f2479fc5a15c4a970ca3b5e57d42ba09a31fa" + }, "CVE-2022-40307": { "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write", "cmt_id": "918d9c4a4bdf5205f2fb3f64dddfb56c9a1d01d6" @@ -110512,6 +111662,10 @@ "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress", "cmt_id": "53245103786312f21fb9785327a4367cf10f0dbb" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "f4a371d3f5a7a71dff1ab48b3122c5cf23cc7ad5" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "5c23f6da62f71ebfeda6ea3960982ccd926ebb09" @@ -110541,6 +111695,12 @@ "cmt_id": "b60e862e133f646f19023ece1d476d630a660de1" } }, + "5.10.185": { + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel", + "cmt_id": "1c004b379b0327992c1713334198cf5eba29a4ba" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -110620,6 +111780,9 @@ "CVE-2022-1263": { "cmt_msg": "KVM: avoid NULL pointer dereference in kvm_dirty_ring_push" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -110629,6 +111792,9 @@ "CVE-2022-2209": { "cmt_msg": "" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-3595": { "cmt_msg": "cifs: fix double-fault crash during ntlmssp" }, @@ -110647,6 +111813,9 @@ "CVE-2021-3669": { "cmt_msg": "ipc: replace costly bailout check in sysvipc_find_ipc()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2020-15802": { "cmt_msg": "" }, @@ -110746,6 +111915,12 @@ "CVE-2023-2176": { "cmt_msg": "RDMA/core: Refactor rdma_bind_addr" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2013-7445": { "cmt_msg": "" }, @@ -110824,6 +111999,9 @@ "CVE-2022-0500": { "cmt_msg": "bpf: Introduce MEM_RDONLY flag" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-2327": { "cmt_msg": "io_uring: remove any grabbing of context" }, @@ -110833,6 +112011,9 @@ "CVE-2022-3642": { "cmt_msg": "" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2011-4917": { "cmt_msg": "" }, @@ -110899,6 +112080,9 @@ "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -111706,6 +112890,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3542": { "cmt_msg": "" }, @@ -111892,6 +113079,9 @@ "CVE-2022-2588": { "cmt_msg": "net_sched: cls_route: remove from list when handle is 0" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-47946": { "cmt_msg": "io_uring: kill sqo_dead and sqo submission halting" }, @@ -112111,12 +113301,18 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -112246,6 +113442,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -112300,6 +113502,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -112330,6 +113535,9 @@ "CVE-2023-3357": { "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -112798,9 +114006,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -112872,6 +114086,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -113567,6 +114784,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3542": { "cmt_msg": "" }, @@ -113585,6 +114805,9 @@ "CVE-2023-23000": { "cmt_msg": "phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-23559": { "cmt_msg": "wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid" }, @@ -113840,9 +115063,15 @@ "CVE-2020-26140": { "cmt_msg": "" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -113936,6 +115165,12 @@ "CVE-2022-29968": { "cmt_msg": "io_uring: fix uninitialized field in rw io_kiocb" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -113969,6 +115204,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -113993,6 +115231,9 @@ "CVE-2023-3357": { "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -114239,6 +115480,9 @@ "CVE-2022-2639": { "cmt_msg": "openvswitch: fix OOB access in reserve_sfa_size()" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2022-33743": { "cmt_msg": "xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()" }, @@ -114305,6 +115549,9 @@ "CVE-2022-45888": { "cmt_msg": "char: xillybus: Prevent use-after-free due to race condition" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, @@ -114358,6 +115605,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -114555,6 +115805,10 @@ "cmt_msg": "floppy: disable FDRAWCMD by default", "cmt_id": "d91ca05d52fabf68c0376bcfeed1a52be68a8e1b" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs", + "cmt_id": "019e80a7f71e8e62efda501081172dc70b5a635a" + }, "CVE-2022-1836": { "cmt_msg": "floppy: disable FDRAWCMD by default", "cmt_id": "d91ca05d52fabf68c0376bcfeed1a52be68a8e1b" @@ -114852,6 +116106,9 @@ "CVE-2023-31436": { "cmt_msg": "net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2022-3521": { "cmt_msg": "kcm: avoid potential race in kcm_tx_work" }, @@ -114888,6 +116145,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-38096": { "cmt_msg": "" }, @@ -115164,6 +116424,12 @@ "CVE-2023-2269": { "cmt_msg": "dm ioctl: fix nested locking in table_clear() to remove deadlock concern" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -115308,6 +116574,9 @@ "CVE-2023-35788": { "cmt_msg": "net/sched: flower: fix possible OOB write in fl_set_geneve_opt()" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2022-33743": { "cmt_msg": "xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()" }, @@ -115323,6 +116592,9 @@ "CVE-2023-33203": { "cmt_msg": "net: qcom/emac: Fix use after free bug in emac_remove due to race condition" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -115362,6 +116634,9 @@ "CVE-2022-42703": { "cmt_msg": "mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2022-41218": { "cmt_msg": "media: dvb-core: Fix UAF due to refcount races at releasing" }, @@ -115494,8 +116769,8 @@ "CVE-2022-3628": { "cmt_msg": "wifi: brcmfmac: Fix potential buffer overflow in brcmf_fweh_event_worker()" }, - "CVE-2023-3358": { - "cmt_msg": "HID: intel_ish-hid: Add check for ishtp_dma_tx_map" + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" }, "CVE-2022-45885": { "cmt_msg": "" @@ -115608,6 +116883,9 @@ "CVE-2022-44032": { "cmt_msg": "" }, + "CVE-2023-3358": { + "cmt_msg": "HID: intel_ish-hid: Add check for ishtp_dma_tx_map" + }, "CVE-2023-1513": { "cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace" }, @@ -115623,6 +116901,9 @@ "CVE-2022-40768": { "cmt_msg": "scsi: stex: Properly zero out the passthrough command structure" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-25265": { "cmt_msg": "" }, @@ -115649,6 +116930,9 @@ }, "CVE-2023-2002": { "cmt_msg": "bluetooth: Perform careful capability checks in hci_sock_ioctl()" + }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" } } }, @@ -116213,6 +117497,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2021-3542": { "cmt_msg": "" }, @@ -116399,6 +117686,9 @@ "CVE-2022-2588": { "cmt_msg": "net_sched: cls_route: remove from list when handle is 0" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2022-4744": { "cmt_msg": "tun: avoid double free in tun_free_netdev" }, @@ -116573,9 +117863,15 @@ "CVE-2023-1079": { "cmt_msg": "HID: asus: use spinlock to safely schedule workers" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -116684,6 +117980,12 @@ "CVE-2022-42895": { "cmt_msg": "Bluetooth: L2CAP: Fix attempting to access uninitialized memory" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -116723,6 +118025,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -116753,6 +118058,9 @@ "CVE-2023-3357": { "cmt_msg": "HID: amd_sfh: Add missing check for dma_alloc_coherent" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-15902": { "cmt_msg": "unknown" }, @@ -117146,9 +118454,15 @@ "CVE-2022-45888": { "cmt_msg": "char: xillybus: Prevent use-after-free due to race condition" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -117217,6 +118531,9 @@ }, "CVE-2023-23039": { "cmt_msg": "" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" } } }, @@ -118236,6 +119553,10 @@ "cmt_msg": "netfilter: nf_conntrack_irc: Fix forged IP logic", "cmt_id": "451c9ce1e2fc9b9e40303bef8e5a0dca1a923cc4" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "cmt_id": "55195563ec29f80f984237b743de0e2b6ba4d093" + }, "CVE-2022-40307": { "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write", "cmt_id": "dd291e070be0eca8807476b022bda00c891d9066" @@ -118668,6 +119989,10 @@ } }, "5.15.99": { + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc", + "cmt_id": "436fb91cadb82da0b0b114baa4fc3b5ef7e6d557" + }, "CVE-2023-3220": { "cmt_msg": "drm/msm/dpu: Add check for pstates", "cmt_id": "c7ee1772e3c36fff8e13daa5ce1ac61426544a33" @@ -118840,6 +120165,10 @@ } }, "5.15.113": { + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "7c8be27727fe194b4625da442ee2b854db76b200" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "162a9b321538972a260c7b178638c2368c071f77" @@ -118869,6 +120198,16 @@ "cmt_id": "6cfe9ddb6aa698464fa16fb77a0233f68c13360c" } }, + "5.15.118": { + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE", + "cmt_id": "44ebe988cb38e720b91826f4d7c31692061ca04a" + }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel", + "cmt_id": "2a974abc09761c05fef697fe229d1b85a7ce3918" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -118924,6 +120263,12 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -119029,6 +120374,12 @@ "CVE-2023-2176": { "cmt_msg": "RDMA/core: Refactor rdma_bind_addr" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2021-4095": { "cmt_msg": "KVM: x86: Fix wall clock writes in Xen shared_info not to mark page dirty" }, @@ -119086,6 +120437,9 @@ "CVE-2021-3892": { "cmt_msg": "" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-3642": { "cmt_msg": "" }, @@ -119158,6 +120512,9 @@ "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-32254": { "cmt_msg": "ksmbd: fix racy issue under cocurrent smb2 tree disconnect" }, @@ -119498,6 +120855,9 @@ "CVE-2022-21123": { "cmt_msg": "x86/speculation/mmio: Add mitigation for Processor MMIO Stale Data" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-28688": { "cmt_msg": "xen-blkback: don't leak persistent grants from xen_blkbk_map()" }, @@ -120092,6 +121452,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -120788,6 +122151,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, @@ -120851,6 +122217,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2019-13272": { "cmt_msg": "ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME" }, @@ -120995,6 +122364,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-36123": { "cmt_msg": "x86: Clear .brk area at early boot" }, @@ -121097,6 +122472,9 @@ "CVE-2022-41858": { "cmt_msg": "drivers: net: slip: fix NPD bug in sl_tx_timeout()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -121130,6 +122508,9 @@ "CVE-2019-19448": { "cmt_msg": "btrfs: only search for left_info if there is no right_info in try_merge_free_space" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2019-19449": { "cmt_msg": "f2fs: fix to do sanity check on segment/section count" }, @@ -121901,9 +123282,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -122009,6 +123396,9 @@ "CVE-2019-14283": { "cmt_msg": "floppy: fix out-of-bounds read in copy_buffer" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -124164,6 +125554,10 @@ "cmt_msg": "netfilter: nf_conntrack_irc: Fix forged IP logic", "cmt_id": "36f7b71f8ad8e4d224b45f7d6ecfeff63b091547" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data.", + "cmt_id": "3df71e11a4773d775c3633c44319f7acdb89011c" + }, "CVE-2022-3586": { "cmt_msg": "sch_sfb: Don't assume the skb is still around after enqueueing to child", "cmt_id": "279c7668e354fa151d5fd2e8c42b5153a1de3135" @@ -124622,6 +126016,10 @@ } }, "5.4.244": { + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb", + "cmt_id": "1aa872e967f2017041bb2284479b3c6ce8d121b5" + }, "CVE-2023-3141": { "cmt_msg": "memstick: r592: Fix UAF bug in r592_remove due to race condition", "cmt_id": "a2a5d3a584bf86c9c09017381a8fc63cfaf5a9e6" @@ -124647,6 +126045,22 @@ "cmt_id": "8e546674031fc1576da501e27a8fd165222e5a37" } }, + "5.4.248": { + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel", + "cmt_id": "6b1203ae83c3d07bad90b6f38ebf2e4d5998dd28" + } + }, + "5.4.249": { + "CVE-2023-2124": { + "cmt_msg": "xfs: verify buffer contents when we skip log replay", + "cmt_id": "c87439055174b31c51a89f8d66af2600033c664d" + }, + "CVE-2023-34255": { + "cmt_msg": "xfs: verify buffer contents when we skip log replay", + "cmt_id": "c87439055174b31c51a89f8d66af2600033c664d" + } + }, "outstanding": { "CVE-2023-0160": { "cmt_msg": "" @@ -124744,6 +126158,9 @@ "CVE-2022-1263": { "cmt_msg": "KVM: avoid NULL pointer dereference in kvm_dirty_ring_push" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -124756,6 +126173,9 @@ "CVE-2022-2209": { "cmt_msg": "" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-3595": { "cmt_msg": "cifs: fix double-fault crash during ntlmssp" }, @@ -124810,6 +126230,9 @@ "CVE-2007-3719": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-2961": { "cmt_msg": "" }, @@ -124885,6 +126308,12 @@ "CVE-2023-2176": { "cmt_msg": "RDMA/core: Refactor rdma_bind_addr" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2013-7445": { "cmt_msg": "" }, @@ -124966,6 +126395,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-2327": { "cmt_msg": "io_uring: remove any grabbing of context" }, @@ -124975,6 +126407,9 @@ "CVE-2022-3642": { "cmt_msg": "" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2022-25265": { "cmt_msg": "" }, @@ -124999,9 +126434,6 @@ "CVE-2022-3567": { "cmt_msg": "ipv6: Fix data races around sk->sk_prot." }, - "CVE-2023-34255": { - "cmt_msg": "xfs: verify buffer contents when we skip log replay" - }, "CVE-2022-3566": { "cmt_msg": "tcp: Fix data races around icsk->icsk_af_ops." }, @@ -125065,12 +126497,12 @@ "CVE-2023-22995": { "cmt_msg": "usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core" }, - "CVE-2023-2124": { - "cmt_msg": "xfs: verify buffer contents when we skip log replay" - }, "CVE-2021-3542": { "cmt_msg": "" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, @@ -125588,6 +127020,9 @@ "CVE-2023-31436": { "cmt_msg": "net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2022-3521": { "cmt_msg": "kcm: avoid potential race in kcm_tx_work" }, @@ -125615,6 +127050,9 @@ "CVE-2022-40307": { "cmt_msg": "efi: capsule-loader: Fix use-after-free in efi_capsule_write" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-38096": { "cmt_msg": "" }, @@ -125654,6 +127092,9 @@ "CVE-2023-0597": { "cmt_msg": "x86/mm: Randomize per-cpu entry area" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-42432": { "cmt_msg": "netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()" }, @@ -125789,6 +127230,9 @@ "CVE-2022-4842": { "cmt_msg": "fs/ntfs3: Fix attr_punch_hole() null pointer derenference" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-21102": { "cmt_msg": "efi: rt-wrapper: Add missing include" }, @@ -125846,6 +127290,12 @@ "CVE-2023-2269": { "cmt_msg": "dm ioctl: fix nested locking in table_clear() to remove deadlock concern" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -125987,9 +127437,15 @@ "CVE-2023-35788": { "cmt_msg": "net/sched: flower: fix possible OOB write in fl_set_geneve_opt()" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2023-33203": { "cmt_msg": "net: qcom/emac: Fix use after free bug in emac_remove due to race condition" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -126026,6 +127482,9 @@ "CVE-2022-42703": { "cmt_msg": "mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2022-41218": { "cmt_msg": "media: dvb-core: Fix UAF due to refcount races at releasing" }, @@ -126134,6 +127593,9 @@ "CVE-2023-1074": { "cmt_msg": "sctp: fail if no bound addresses can be used for a given scope" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2022-45885": { "cmt_msg": "" }, @@ -126610,6 +128072,9 @@ "CVE-2023-31436": { "cmt_msg": "net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2022-3521": { "cmt_msg": "kcm: avoid potential race in kcm_tx_work" }, @@ -126637,6 +128102,9 @@ "CVE-2023-1670": { "cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2022-38096": { "cmt_msg": "" }, @@ -126667,6 +128135,9 @@ "CVE-2023-31084": { "cmt_msg": "media: dvb-core: Fix kernel WARNING for blocking operation in wait_event*()" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2023-1583": { "cmt_msg": "io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()" }, @@ -126790,6 +128261,9 @@ "CVE-2022-4842": { "cmt_msg": "fs/ntfs3: Fix attr_punch_hole() null pointer derenference" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-21102": { "cmt_msg": "efi: rt-wrapper: Add missing include" }, @@ -126808,6 +128282,9 @@ "CVE-2022-3707": { "cmt_msg": "drm/i915/gvt: fix double free bug in split_2MB_gtt_entry" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2017-13693": { "cmt_msg": "" }, @@ -126835,6 +128312,12 @@ "CVE-2022-44034": { "cmt_msg": "" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -126973,9 +128456,15 @@ "CVE-2023-35788": { "cmt_msg": "net/sched: flower: fix possible OOB write in fl_set_geneve_opt()" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2023-33203": { "cmt_msg": "net: qcom/emac: Fix use after free bug in emac_remove due to race condition" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -127012,6 +128501,9 @@ "CVE-2023-32269": { "cmt_msg": "netrom: Fix use-after-free caused by accept on already connected socket" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2022-41218": { "cmt_msg": "media: dvb-core: Fix UAF due to refcount races at releasing" }, @@ -128191,6 +129683,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -128761,6 +130256,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2021-20317": { "cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer" }, @@ -128773,6 +130271,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -128821,6 +130322,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-1582": { "cmt_msg": "fs/proc: task_mmu.c: don't read mapcount for migration entry" }, @@ -128944,6 +130448,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -129046,6 +130556,9 @@ "CVE-2020-15437": { "cmt_msg": "serial: 8250: fix null-ptr-deref in serial8250_start_tx()" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -129076,6 +130589,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -129703,9 +131219,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -129778,6 +131300,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" } @@ -130445,6 +131970,9 @@ "CVE-2020-26559": { "cmt_msg": "" }, + "CVE-2023-3397": { + "cmt_msg": "" + }, "CVE-2022-26365": { "cmt_msg": "xen/blkfront: fix leaking data in shared pages" }, @@ -130940,6 +132468,9 @@ "CVE-2020-26541": { "cmt_msg": "certs: Add EFI_CERT_X509_GUID support for dbx entries" }, + "CVE-2023-3390": { + "cmt_msg": "netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE" + }, "CVE-2020-26143": { "cmt_msg": "" }, @@ -130949,6 +132480,9 @@ "CVE-2021-33061": { "cmt_msg": "ixgbe: add improvement for MDD response functionality" }, + "CVE-2023-3389": { + "cmt_msg": "io_uring: mutex locked poll hashing" + }, "CVE-2021-3864": { "cmt_msg": "" }, @@ -130985,6 +132519,9 @@ "CVE-2016-8660": { "cmt_msg": "" }, + "CVE-2023-3090": { + "cmt_msg": "ipvlan:Fix out-of-bounds caused by unclear skb->cb" + }, "CVE-2023-1582": { "cmt_msg": "fs/proc: task_mmu.c: don't read mapcount for migration entry" }, @@ -131105,6 +132642,12 @@ "CVE-2021-3760": { "cmt_msg": "nfc: nci: fix the UAF of rf_conn_info object" }, + "CVE-2023-33952": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, + "CVE-2023-33951": { + "cmt_msg": "drm/vmwgfx: Do not drop the reference to the handle too soon" + }, "CVE-2022-4382": { "cmt_msg": "USB: gadgetfs: Fix race between mounting and unmounting" }, @@ -131183,6 +132726,9 @@ "CVE-2022-3176": { "cmt_msg": "io_uring: fix UAF due to missing POLLFREE handling" }, + "CVE-2023-1206": { + "cmt_msg": "" + }, "CVE-2022-41850": { "cmt_msg": "HID: roccat: Fix use-after-free in roccat_read()" }, @@ -131210,6 +132756,9 @@ "CVE-2022-3643": { "cmt_msg": "xen/netback: Ensure protocol headers don't fall in the non-linear area" }, + "CVE-2023-3355": { + "cmt_msg": "drm/msm/gem: Add check for kmalloc" + }, "CVE-2020-0465": { "cmt_msg": "HID: core: Sanitize event code and type when mapping input" }, @@ -131792,9 +133341,15 @@ "CVE-2023-2124": { "cmt_msg": "xfs: verify buffer contents when we skip log replay" }, + "CVE-2023-3439": { + "cmt_msg": "mctp: defer the kfree of object mdev->addrs" + }, "CVE-2023-1281": { "cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu" }, + "CVE-2023-2860": { + "cmt_msg": "ipv6: sr: fix out-of-bounds read when setting HMAC data." + }, "CVE-2021-44879": { "cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection" }, @@ -131858,6 +133413,9 @@ "CVE-2023-23039": { "cmt_msg": "" }, + "CVE-2023-3338": { + "cmt_msg": "Remove DECnet support from kernel" + }, "CVE-2023-1637": { "cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume" }
diff --git a/data/stream_fixes.json b/data/stream_fixes.json index aca1783..744741b 100644 --- a/data/stream_fixes.json +++ b/data/stream_fixes.json
@@ -3245,6 +3245,12 @@ "fixed_version": "3.16.35" } }, + "CVE-2015-3339": { + "3.14": { + "cmt_id": "de70236fbe30749fb8c317088c16a97e700fe232", + "fixed_version": "3.14.41" + } + }, "CVE-2015-3636": { "3.12": { "cmt_id": "8a9a51ba2eff62e1a899daad7b623becfed8f3f1", @@ -11612,6 +11618,10 @@ } }, "CVE-2017-5715": { + "3.2": { + "cmt_id": "0605c9a548fb39e5b0ee4765ffe828742ecf02ae", + "fixed_version": "3.2.101" + }, "4.14": { "cmt_id": "9298e868dddd820829f814cd25a0f28c92036af7", "fixed_version": "4.14.14" @@ -37300,6 +37310,10 @@ "cmt_id": "6cfe9ddb6aa698464fa16fb77a0233f68c13360c", "fixed_version": "5.15.117" }, + "5.4": { + "cmt_id": "c87439055174b31c51a89f8d66af2600033c664d", + "fixed_version": "5.4.249" + }, "6.1": { "cmt_id": "a2961463d74f5c86a8dda3b41c484c28ccc4c289", "fixed_version": "6.1.33" @@ -37939,6 +37953,28 @@ "fixed_version": "6.2.7" } }, + "CVE-2023-2860": { + "4.14": { + "cmt_id": "dc9dbd65c803af1607484fed5da50d41dc8dd864", + "fixed_version": "4.14.293" + }, + "4.19": { + "cmt_id": "f684c16971ed5e77dfa25a9ad25b5297e1f58eab", + "fixed_version": "4.19.258" + }, + "5.10": { + "cmt_id": "076f2479fc5a15c4a970ca3b5e57d42ba09a31fa", + "fixed_version": "5.10.143" + }, + "5.15": { + "cmt_id": "55195563ec29f80f984237b743de0e2b6ba4d093", + "fixed_version": "5.15.68" + }, + "5.4": { + "cmt_id": "3df71e11a4773d775c3633c44319f7acdb89011c", + "fixed_version": "5.4.213" + } + }, "CVE-2023-28772": { "4.14": { "cmt_id": "50b51460f59acbd403475510ad423bb5ea7a4c97", @@ -38083,6 +38119,32 @@ "fixed_version": "6.2.9" } }, + "CVE-2023-3090": { + "4.14": { + "cmt_id": "8747ec637300f1212a47a9f15e2340cfe4dcbb9c", + "fixed_version": "4.14.316" + }, + "4.19": { + "cmt_id": "b36dcf3ed547c103acef6f52bed000a0ac6c074f", + "fixed_version": "4.19.284" + }, + "5.10": { + "cmt_id": "f4a371d3f5a7a71dff1ab48b3122c5cf23cc7ad5", + "fixed_version": "5.10.181" + }, + "5.15": { + "cmt_id": "7c8be27727fe194b4625da442ee2b854db76b200", + "fixed_version": "5.15.113" + }, + "5.4": { + "cmt_id": "1aa872e967f2017041bb2284479b3c6ce8d121b5", + "fixed_version": "5.4.244" + }, + "6.1": { + "cmt_id": "610a433810b277b3b77389733c07d22e8af68de2", + "fixed_version": "6.1.30" + } + }, "CVE-2023-3111": { "4.14": { "cmt_id": "ff0e8ed8dfb584575cffc1561f17a1d094e8565b", @@ -38419,6 +38481,42 @@ "fixed_version": "6.2.9" } }, + "CVE-2023-3338": { + "4.14": { + "cmt_id": "975840f8dec3c1e6a6b28a387bb7cf55a4775e18", + "fixed_version": "4.14.319" + }, + "4.19": { + "cmt_id": "3e77bbc87342841db66c18a3afca0441c8c555e4", + "fixed_version": "4.19.287" + }, + "5.10": { + "cmt_id": "1c004b379b0327992c1713334198cf5eba29a4ba", + "fixed_version": "5.10.185" + }, + "5.15": { + "cmt_id": "2a974abc09761c05fef697fe229d1b85a7ce3918", + "fixed_version": "5.15.118" + }, + "5.4": { + "cmt_id": "6b1203ae83c3d07bad90b6f38ebf2e4d5998dd28", + "fixed_version": "5.4.248" + } + }, + "CVE-2023-3355": { + "5.15": { + "cmt_id": "436fb91cadb82da0b0b114baa4fc3b5ef7e6d557", + "fixed_version": "5.15.99" + }, + "6.1": { + "cmt_id": "31c4251a20fd7addc1bf4fe801f95f9ba1b38990", + "fixed_version": "6.1.16" + }, + "6.2": { + "cmt_id": "abadeef9a82f86e6668759259adbcf8be6f44a9b", + "fixed_version": "6.2.3" + } + }, "CVE-2023-3357": { "5.15": { "cmt_id": "d238f94b2b61c77dd60db820aa683ff6a58c1543", @@ -38465,6 +38563,36 @@ "fixed_version": "6.1.11" } }, + "CVE-2023-3390": { + "5.15": { + "cmt_id": "44ebe988cb38e720b91826f4d7c31692061ca04a", + "fixed_version": "5.15.118" + }, + "6.1": { + "cmt_id": "4aaa3b730d16c13cc3feaa127bfca1af201d969d", + "fixed_version": "6.1.35" + } + }, + "CVE-2023-33951": { + "6.1": { + "cmt_id": "0a127ac972404600c99eb141c8d5b5348e53ee4f", + "fixed_version": "6.1.13" + }, + "6.2": { + "cmt_id": "a950b989ea29ab3b38ea7f6e3d2540700a3c54e8", + "fixed_version": "6.2" + } + }, + "CVE-2023-33952": { + "6.1": { + "cmt_id": "0a127ac972404600c99eb141c8d5b5348e53ee4f", + "fixed_version": "6.1.13" + }, + "6.2": { + "cmt_id": "a950b989ea29ab3b38ea7f6e3d2540700a3c54e8", + "fixed_version": "6.2" + } + }, "CVE-2023-34255": { "5.10": { "cmt_id": "0e98a97f772f2ffcee8ced7a49b71e72916e0aa1", @@ -38474,6 +38602,10 @@ "cmt_id": "6cfe9ddb6aa698464fa16fb77a0233f68c13360c", "fixed_version": "5.15.117" }, + "5.4": { + "cmt_id": "c87439055174b31c51a89f8d66af2600033c664d", + "fixed_version": "5.4.249" + }, "6.1": { "cmt_id": "a2961463d74f5c86a8dda3b41c484c28ccc4c289", "fixed_version": "6.1.33" @@ -38509,6 +38641,12 @@ "fixed_version": "6.2.16" } }, + "CVE-2023-3439": { + "5.17": { + "cmt_id": "019e80a7f71e8e62efda501081172dc70b5a635a", + "fixed_version": "5.17.6" + } + }, "CVE-2023-35788": { "4.19": { "cmt_id": "59a27414bb00e48c4153a8b794fb4e69910a6a1b",
diff --git a/kern.json b/kern.json index b4b9bfb..184800f 100644 --- a/kern.json +++ b/kern.json
@@ -3,6 +3,6 @@ "4.11", "4.13", "4.15", "4.16", "4.8", "4.17", "4.5", "4.6", "4.7", "4.3", "4.20", "5.0", "4.18", "5.1", "5.2", "5.3", "5.6", "5.5", "5.7", "5.9", "5.8", "5.9", "5.11", "5.12", "5.13", "5.14", - "5.15", "5.16", "5.17", "5.18", "5.19", "4.4"], - "supp_streams": ["4.9", "4.14", "4.19", "5.4", "5.10", "5.15", "6.0", "6.1", "6.2"] + "5.15", "5.16", "5.17", "5.18", "5.19", "4.4", "4.9", "6.0", "6.2"], + "supp_streams": ["4.14", "4.19", "5.4", "5.10", "5.15", "6.1", "6.3"] }