Update 16Apr23
[ci skip]
diff --git a/CHANGES.md b/CHANGES.md
index 1daadb3..2331502 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -1,56 +1,37 @@
# **Linux Kernel CVE Changes**
-## Last Update - 07Apr23 23:30
+## Last Update - 16Apr23 11:59
### **New CVEs Added:**
-[CVE-2023-1838](cves/CVE-2023-1838)
-[CVE-2023-1855](cves/CVE-2023-1855)
-[CVE-2023-1859](cves/CVE-2023-1859)
-[CVE-2023-20941](cves/CVE-2023-20941)
+[CVE-2023-1829](cves/CVE-2023-1829)
+[CVE-2023-1872](cves/CVE-2023-1872)
+[CVE-2023-1989](cves/CVE-2023-1989)
+[CVE-2023-1990](cves/CVE-2023-1990)
+[CVE-2023-1998](cves/CVE-2023-1998)
+[CVE-2023-2008](cves/CVE-2023-2008)
+[CVE-2023-30456](cves/CVE-2023-30456)
+[CVE-2023-30772](cves/CVE-2023-30772)
### **New Versions Checked:**
-[4.14.312](streams/4.14)
-[4.19.280](streams/4.19)
-[5.10.177](streams/5.10)
-[5.15.106](streams/5.15)
-[5.4.240](streams/5.4)
-[6.1.23](streams/6.1)
-[6.2.10](streams/6.2)
+[5.15.107](streams/5.15)
+[6.1.24](streams/6.1)
+[6.2.11](streams/6.2)
### **Updated CVEs:**
-[CVE-2020-36691](cves/CVE-2020-36691)
-[CVE-2021-3923](cves/CVE-2021-3923)
-[CVE-2022-38457](cves/CVE-2022-38457)
-[CVE-2022-40133](cves/CVE-2022-40133)
-[CVE-2022-4379](cves/CVE-2022-4379)
-[CVE-2022-4744](cves/CVE-2022-4744)
-[CVE-2023-0590](cves/CVE-2023-0590)
+[CVE-2022-2978](cves/CVE-2022-2978)
+[CVE-2023-1611](cves/CVE-2023-1611)
+[CVE-2023-1855](cves/CVE-2023-1855)
+[CVE-2023-1859](cves/CVE-2023-1859)
+[CVE-2020-11935](cves/CVE-2020-11935)
+[CVE-2022-42432](cves/CVE-2022-42432)
+[CVE-2023-1281](cves/CVE-2023-1281)
[CVE-2023-1582](cves/CVE-2023-1582)
-[CVE-2023-1637](cves/CVE-2023-1637)
[CVE-2023-1652](cves/CVE-2023-1652)
[CVE-2023-1670](cves/CVE-2023-1670)
-[CVE-2023-23454](cves/CVE-2023-23454)
-[CVE-2023-26544](cves/CVE-2023-26544)
-[CVE-2023-28466](cves/CVE-2023-28466)
-[CVE-2023-28772](cves/CVE-2023-28772)
-[CVE-2023-28866](cves/CVE-2023-28866)
-[CVE-2020-11935](cves/CVE-2020-11935)
-[CVE-2023-0179](cves/CVE-2023-0179)
-[CVE-2023-0210](cves/CVE-2023-0210)
-[CVE-2023-1073](cves/CVE-2023-1073)
-[CVE-2023-1074](cves/CVE-2023-1074)
-[CVE-2023-1075](cves/CVE-2023-1075)
-[CVE-2023-1076](cves/CVE-2023-1076)
-[CVE-2023-1077](cves/CVE-2023-1077)
-[CVE-2023-1078](cves/CVE-2023-1078)
-[CVE-2023-1079](cves/CVE-2023-1079)
-[CVE-2023-1380](cves/CVE-2023-1380)
-[CVE-2023-1513](cves/CVE-2023-1513)
-[CVE-2023-1611](cves/CVE-2023-1611)
-[CVE-2023-28464](cves/CVE-2023-28464)
+[CVE-2023-1838](cves/CVE-2023-1838)
diff --git a/data/3.12/3.12_CVEs.txt b/data/3.12/3.12_CVEs.txt
index 03858eb..e567717 100644
--- a/data/3.12/3.12_CVEs.txt
+++ b/data/3.12/3.12_CVEs.txt
@@ -1244,11 +1244,13 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1259,3 +1261,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/3.12/3.12_security.txt b/data/3.12/3.12_security.txt
index 6068081..c2c884f 100644
--- a/data/3.12/3.12_security.txt
+++ b/data/3.12/3.12_security.txt
@@ -1382,11 +1382,13 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1397,3 +1399,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/3.14/3.14_CVEs.txt b/data/3.14/3.14_CVEs.txt
index d164066..c38879f 100644
--- a/data/3.14/3.14_CVEs.txt
+++ b/data/3.14/3.14_CVEs.txt
@@ -1213,11 +1213,13 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1228,3 +1230,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/3.14/3.14_security.txt b/data/3.14/3.14_security.txt
index 8f1650b..12cd947 100644
--- a/data/3.14/3.14_security.txt
+++ b/data/3.14/3.14_security.txt
@@ -1347,11 +1347,13 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1362,3 +1364,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/3.16/3.16_CVEs.txt b/data/3.16/3.16_CVEs.txt
index 4bcf926..e925a54 100644
--- a/data/3.16/3.16_CVEs.txt
+++ b/data/3.16/3.16_CVEs.txt
@@ -1201,11 +1201,13 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1216,3 +1218,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/3.16/3.16_security.txt b/data/3.16/3.16_security.txt
index 6ef273f..2d1e047 100644
--- a/data/3.16/3.16_security.txt
+++ b/data/3.16/3.16_security.txt
@@ -1307,11 +1307,13 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1322,3 +1324,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/3.18/3.18_CVEs.txt b/data/3.18/3.18_CVEs.txt
index 7989695..7410cc3 100644
--- a/data/3.18/3.18_CVEs.txt
+++ b/data/3.18/3.18_CVEs.txt
@@ -1186,11 +1186,14 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1201,3 +1204,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/3.18/3.18_security.txt b/data/3.18/3.18_security.txt
index 776c69d..b6a1f94 100644
--- a/data/3.18/3.18_security.txt
+++ b/data/3.18/3.18_security.txt
@@ -1420,11 +1420,14 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1435,3 +1438,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/3.2/3.2_CVEs.txt b/data/3.2/3.2_CVEs.txt
index 25832ca..dc9d038 100644
--- a/data/3.2/3.2_CVEs.txt
+++ b/data/3.2/3.2_CVEs.txt
@@ -1214,11 +1214,13 @@
CVE-2023-1118: Fix not seen in stream
CVE-2023-1380: Fix unknown
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1229,3 +1231,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/3.2/3.2_security.txt b/data/3.2/3.2_security.txt
index b35ecaf..9814c16 100644
--- a/data/3.2/3.2_security.txt
+++ b/data/3.2/3.2_security.txt
@@ -1370,11 +1370,13 @@
CVE-2023-1118: (unk) media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
CVE-2023-1380: (unk)
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1385,3 +1387,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.1/4.1_CVEs.txt b/data/4.1/4.1_CVEs.txt
index 4a39c1f..012f6d6 100644
--- a/data/4.1/4.1_CVEs.txt
+++ b/data/4.1/4.1_CVEs.txt
@@ -1151,11 +1151,14 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1167,3 +1170,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.1/4.1_security.txt b/data/4.1/4.1_security.txt
index a1edff3..314a383 100644
--- a/data/4.1/4.1_security.txt
+++ b/data/4.1/4.1_security.txt
@@ -1247,11 +1247,14 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1263,3 +1266,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.10/4.10_CVEs.txt b/data/4.10/4.10_CVEs.txt
index 0ac6b17..42410ef 100644
--- a/data/4.10/4.10_CVEs.txt
+++ b/data/4.10/4.10_CVEs.txt
@@ -1058,11 +1058,15 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1074,3 +1078,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.10/4.10_security.txt b/data/4.10/4.10_security.txt
index 31ae585..dea9679 100644
--- a/data/4.10/4.10_security.txt
+++ b/data/4.10/4.10_security.txt
@@ -1092,11 +1092,15 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1108,3 +1112,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.11/4.11_CVEs.txt b/data/4.11/4.11_CVEs.txt
index 3999859..a2e3d9c 100644
--- a/data/4.11/4.11_CVEs.txt
+++ b/data/4.11/4.11_CVEs.txt
@@ -1030,11 +1030,15 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1046,3 +1050,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.11/4.11_security.txt b/data/4.11/4.11_security.txt
index f57f1ea..42bd977 100644
--- a/data/4.11/4.11_security.txt
+++ b/data/4.11/4.11_security.txt
@@ -1052,11 +1052,15 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1068,3 +1072,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.12/4.12_CVEs.txt b/data/4.12/4.12_CVEs.txt
index 7dad338..d423657 100644
--- a/data/4.12/4.12_CVEs.txt
+++ b/data/4.12/4.12_CVEs.txt
@@ -1016,11 +1016,16 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1032,3 +1037,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.12/4.12_security.txt b/data/4.12/4.12_security.txt
index 0850335..a2a9f51 100644
--- a/data/4.12/4.12_security.txt
+++ b/data/4.12/4.12_security.txt
@@ -1042,11 +1042,16 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1058,3 +1063,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.13/4.13_CVEs.txt b/data/4.13/4.13_CVEs.txt
index d8acc81..bef3793 100644
--- a/data/4.13/4.13_CVEs.txt
+++ b/data/4.13/4.13_CVEs.txt
@@ -1000,11 +1000,16 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1017,3 +1022,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.13/4.13_security.txt b/data/4.13/4.13_security.txt
index 1144cce..e520cec 100644
--- a/data/4.13/4.13_security.txt
+++ b/data/4.13/4.13_security.txt
@@ -1028,11 +1028,16 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1045,3 +1050,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.14/4.14_CVEs.txt b/data/4.14/4.14_CVEs.txt
index 9682a8d..13aea85 100644
--- a/data/4.14/4.14_CVEs.txt
+++ b/data/4.14/4.14_CVEs.txt
@@ -970,11 +970,16 @@
CVE-2023-1390: Fixed with 4.14.217
CVE-2023-1513: Fixed with 4.14.306
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fixed with 4.14.312
+CVE-2023-1829: Fixed with 4.14.308
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fixed with 4.14.311
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fixed with 4.14.312
+CVE-2023-1990: Fixed with 4.14.311
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -988,3 +993,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fixed with 4.14.240
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fixed with 4.14.312
diff --git a/data/4.14/4.14_security.txt b/data/4.14/4.14_security.txt
index 7eebd77..f13f9fb 100644
--- a/data/4.14/4.14_security.txt
+++ b/data/4.14/4.14_security.txt
@@ -1288,13 +1288,17 @@
CVEs fixed in 4.14.308:
CVE-2023-1079: df0fad94ca3787727b9cdd76797aaacf46fe93ed HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: 0987f836bc1a258cb8fb51669a5afb67bb01c31b media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1829: 53af9c793f644d5841d84d8e0ad83bd7ab47f3e0 net/sched: Retire tcindex classifier
CVEs fixed in 4.14.311:
CVE-2023-1855: c809ed776e190edfc04f8d6b25a62855b1386a0d hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: 2156490c4b7cacda9a18ec99929940b8376dc0e3 nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
CVEs fixed in 4.14.312:
CVE-2023-1670: fe7eebebca51d56b900331c3052a6342731f1117 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: 95eacef5692545f199fae4e52abfbfa273acb351 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-23454: c4b1e702dc841a79664c5b8000fd99ffe9b3e9c2 net: sched: cbq: dont intepret cls results when asked to drop
+ CVE-2023-30772: bbf45f079f41efcf1e51bb65a0a45d2b31061bd5 power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -1491,12 +1495,15 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
CVE-2023-23039: (unk)
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
diff --git a/data/4.15/4.15_CVEs.txt b/data/4.15/4.15_CVEs.txt
index 4455bbc..4aef09a 100644
--- a/data/4.15/4.15_CVEs.txt
+++ b/data/4.15/4.15_CVEs.txt
@@ -921,11 +921,16 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -939,3 +944,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.15/4.15_security.txt b/data/4.15/4.15_security.txt
index aed9f68..57aee2f 100644
--- a/data/4.15/4.15_security.txt
+++ b/data/4.15/4.15_security.txt
@@ -953,11 +953,16 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
@@ -971,3 +976,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.16/4.16_CVEs.txt b/data/4.16/4.16_CVEs.txt
index 6db208e..bd743fc 100644
--- a/data/4.16/4.16_CVEs.txt
+++ b/data/4.16/4.16_CVEs.txt
@@ -901,11 +901,16 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -919,3 +924,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.16/4.16_security.txt b/data/4.16/4.16_security.txt
index 218f2ec..573d1cb 100644
--- a/data/4.16/4.16_security.txt
+++ b/data/4.16/4.16_security.txt
@@ -933,11 +933,16 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
@@ -951,3 +956,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.17/4.17_CVEs.txt b/data/4.17/4.17_CVEs.txt
index edc6345..e92d73f 100644
--- a/data/4.17/4.17_CVEs.txt
+++ b/data/4.17/4.17_CVEs.txt
@@ -882,12 +882,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -901,3 +906,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.17/4.17_security.txt b/data/4.17/4.17_security.txt
index ec238d7..0eb01c8 100644
--- a/data/4.17/4.17_security.txt
+++ b/data/4.17/4.17_security.txt
@@ -914,12 +914,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
@@ -933,3 +938,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.18/4.18_CVEs.txt b/data/4.18/4.18_CVEs.txt
index 37d4323..4a77097 100644
--- a/data/4.18/4.18_CVEs.txt
+++ b/data/4.18/4.18_CVEs.txt
@@ -860,12 +860,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -879,3 +884,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.18/4.18_security.txt b/data/4.18/4.18_security.txt
index 4e7798f..917a921 100644
--- a/data/4.18/4.18_security.txt
+++ b/data/4.18/4.18_security.txt
@@ -892,12 +892,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
@@ -911,3 +916,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.19/4.19_CVEs.txt b/data/4.19/4.19_CVEs.txt
index 7db20e2..dc9e5ac 100644
--- a/data/4.19/4.19_CVEs.txt
+++ b/data/4.19/4.19_CVEs.txt
@@ -839,12 +839,17 @@
CVE-2023-1390: Fixed with 4.19.170
CVE-2023-1513: Fixed with 4.19.273
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fixed with 4.19.238
CVE-2023-1670: Fixed with 4.19.280
+CVE-2023-1829: Fixed with 4.19.276
CVE-2023-1838: Fixed with 4.19.245
CVE-2023-1855: Fixed with 4.19.279
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fixed with 4.19.280
+CVE-2023-1990: Fixed with 4.19.279
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23000: Fix not seen in stream
@@ -859,3 +864,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fixed with 4.19.198
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fixed with 4.19.280
diff --git a/data/4.19/4.19_security.txt b/data/4.19/4.19_security.txt
index 6c352a2..954003b 100644
--- a/data/4.19/4.19_security.txt
+++ b/data/4.19/4.19_security.txt
@@ -1109,14 +1109,18 @@
CVEs fixed in 4.19.276:
CVE-2023-1079: 74b78391a9b6f67de90b13f5a85e329e3b3f5a72 HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: 52bde2754d76fc97390f097fba763413607f157a media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1829: 01d0d2b8b4e3cf2110baba9371c0c3d04ad5c77b net/sched: Retire tcindex classifier
CVEs fixed in 4.19.279:
CVE-2023-1855: e0a37b43cd732038e37b4e7f6c6c0658fe0b6d73 hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: 3405eb641dafcc8b28d174784b203c1622c121bf nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
CVEs fixed in 4.19.280:
CVE-2022-4744: 8eb43d635950e27c29f1e9e49a23b31637f37757 tun: avoid double free in tun_free_netdev
CVE-2023-1670: 526660c25d3b93b1232a525b75469048388f0928 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: af4d48754d5517d33bac5e504ff1f1de0808e29e Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-23454: 8ed4c82571d848d76877c4d70687686e607766e3 net: sched: cbq: dont intepret cls results when asked to drop
+ CVE-2023-30772: 533d915899b4a5a7b5b5a99eec24b2920ccd1f11 power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -1292,8 +1296,10 @@
CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu
CVE-2023-1380: (unk)
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
@@ -1301,3 +1307,4 @@
CVE-2023-26242: (unk)
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
diff --git a/data/4.20/4.20_CVEs.txt b/data/4.20/4.20_CVEs.txt
index d18535a..7d8220e 100644
--- a/data/4.20/4.20_CVEs.txt
+++ b/data/4.20/4.20_CVEs.txt
@@ -832,12 +832,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -854,3 +859,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.20/4.20_security.txt b/data/4.20/4.20_security.txt
index 2d465e1..33b29e8 100644
--- a/data/4.20/4.20_security.txt
+++ b/data/4.20/4.20_security.txt
@@ -864,12 +864,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -886,3 +891,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.3/4.3_CVEs.txt b/data/4.3/4.3_CVEs.txt
index e7d65df..06eb1d7 100644
--- a/data/4.3/4.3_CVEs.txt
+++ b/data/4.3/4.3_CVEs.txt
@@ -1151,11 +1151,14 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1167,3 +1170,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.3/4.3_security.txt b/data/4.3/4.3_security.txt
index 3a66bb4..9941e4f 100644
--- a/data/4.3/4.3_security.txt
+++ b/data/4.3/4.3_security.txt
@@ -1167,11 +1167,14 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1183,3 +1186,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.4/4.4_CVEs.txt b/data/4.4/4.4_CVEs.txt
index cf4604a..522539e 100644
--- a/data/4.4/4.4_CVEs.txt
+++ b/data/4.4/4.4_CVEs.txt
@@ -1132,11 +1132,14 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1148,3 +1151,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fixed with 4.4.276
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.4/4.4_security.txt b/data/4.4/4.4_security.txt
index ac26294..c5f10c6 100644
--- a/data/4.4/4.4_security.txt
+++ b/data/4.4/4.4_security.txt
@@ -1617,11 +1617,14 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1632,3 +1635,5 @@
CVE-2023-26607: (unk) ntfs: fix out-of-bounds read in ntfs_attr_find()
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.5/4.5_CVEs.txt b/data/4.5/4.5_CVEs.txt
index d1b2afd..993297c 100644
--- a/data/4.5/4.5_CVEs.txt
+++ b/data/4.5/4.5_CVEs.txt
@@ -1115,11 +1115,14 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1131,3 +1134,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.5/4.5_security.txt b/data/4.5/4.5_security.txt
index 7ab2896..63e96d2 100644
--- a/data/4.5/4.5_security.txt
+++ b/data/4.5/4.5_security.txt
@@ -1131,11 +1131,14 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1147,3 +1150,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.6/4.6_CVEs.txt b/data/4.6/4.6_CVEs.txt
index 8cf917b..8f46999 100644
--- a/data/4.6/4.6_CVEs.txt
+++ b/data/4.6/4.6_CVEs.txt
@@ -1088,11 +1088,14 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1104,3 +1107,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.6/4.6_security.txt b/data/4.6/4.6_security.txt
index d6257cf..711b6a1 100644
--- a/data/4.6/4.6_security.txt
+++ b/data/4.6/4.6_security.txt
@@ -1106,11 +1106,14 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1122,3 +1125,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.7/4.7_CVEs.txt b/data/4.7/4.7_CVEs.txt
index 9f13e1b..f22a532 100644
--- a/data/4.7/4.7_CVEs.txt
+++ b/data/4.7/4.7_CVEs.txt
@@ -1071,11 +1071,14 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1087,3 +1090,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.7/4.7_security.txt b/data/4.7/4.7_security.txt
index 7a2a2f6..e7d07d4 100644
--- a/data/4.7/4.7_security.txt
+++ b/data/4.7/4.7_security.txt
@@ -1091,11 +1091,14 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1107,3 +1110,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.8/4.8_CVEs.txt b/data/4.8/4.8_CVEs.txt
index f28f4ee..81e0ad3 100644
--- a/data/4.8/4.8_CVEs.txt
+++ b/data/4.8/4.8_CVEs.txt
@@ -1075,11 +1075,14 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
-CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1091,3 +1094,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.8/4.8_security.txt b/data/4.8/4.8_security.txt
index 63512ec..409dff3 100644
--- a/data/4.8/4.8_security.txt
+++ b/data/4.8/4.8_security.txt
@@ -1105,11 +1105,14 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
- CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1121,3 +1124,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/4.9/4.9_CVEs.txt b/data/4.9/4.9_CVEs.txt
index fd0b45a..b7a5f89 100644
--- a/data/4.9/4.9_CVEs.txt
+++ b/data/4.9/4.9_CVEs.txt
@@ -1074,11 +1074,15 @@
CVE-2023-1390: Fixed with 4.9.253
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
CVE-2023-23039: Fix unknown
@@ -1090,3 +1094,5 @@
CVE-2023-28328: Fixed with 4.9.337
CVE-2023-28464: Fix unknown
CVE-2023-28772: Fixed with 4.9.276
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/4.9/4.9_security.txt b/data/4.9/4.9_security.txt
index bab2cb0..ed43edf 100644
--- a/data/4.9/4.9_security.txt
+++ b/data/4.9/4.9_security.txt
@@ -1621,11 +1621,15 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23039: (unk)
@@ -1634,3 +1638,5 @@
CVE-2023-23559: (unk) wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid
CVE-2023-26545: (unk) net: mpls: fix stale pointer if allocation fails during device rename
CVE-2023-28464: (unk)
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.0/5.0_CVEs.txt b/data/5.0/5.0_CVEs.txt
index 3847835..69be08a 100644
--- a/data/5.0/5.0_CVEs.txt
+++ b/data/5.0/5.0_CVEs.txt
@@ -811,12 +811,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -833,3 +838,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.0/5.0_security.txt b/data/5.0/5.0_security.txt
index 787ff37..4d27c91 100644
--- a/data/5.0/5.0_security.txt
+++ b/data/5.0/5.0_security.txt
@@ -859,12 +859,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -881,3 +886,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.1/5.1_CVEs.txt b/data/5.1/5.1_CVEs.txt
index 12677c5..41ccb18 100644
--- a/data/5.1/5.1_CVEs.txt
+++ b/data/5.1/5.1_CVEs.txt
@@ -789,12 +789,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -811,3 +816,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.1/5.1_security.txt b/data/5.1/5.1_security.txt
index 7deb399..432120e 100644
--- a/data/5.1/5.1_security.txt
+++ b/data/5.1/5.1_security.txt
@@ -825,12 +825,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -847,3 +852,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.10/5.10_CVEs.txt b/data/5.10/5.10_CVEs.txt
index fd712b1..03850a9 100644
--- a/data/5.10/5.10_CVEs.txt
+++ b/data/5.10/5.10_CVEs.txt
@@ -523,12 +523,17 @@
CVE-2023-1390: Fixed with 5.10.10
CVE-2023-1513: Fixed with 5.10.169
CVE-2023-1582: Fixed with 5.10.102
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fixed with 5.10.177
CVE-2023-1637: Fixed with 5.10.111
CVE-2023-1670: Fixed with 5.10.177
+CVE-2023-1829: Fixed with 5.10.173
CVE-2023-1838: Fixed with 5.10.118
CVE-2023-1855: Fixed with 5.10.176
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fixed with 5.10.177
+CVE-2023-1990: Fixed with 5.10.176
+CVE-2023-2008: Fixed with 5.10.127
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -551,3 +556,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fixed with 5.10.177
CVE-2023-28772: Fixed with 5.10.51
+CVE-2023-30456: Fixed with 5.10.176
+CVE-2023-30772: Fixed with 5.10.177
diff --git a/data/5.10/5.10_security.txt b/data/5.10/5.10_security.txt
index f466678..dc8cc96 100644
--- a/data/5.10/5.10_security.txt
+++ b/data/5.10/5.10_security.txt
@@ -479,6 +479,7 @@
CVEs fixed in 5.10.127:
CVE-2021-33656: 3acb7dc242ca25eb258493b513ef2f4b0f2a9ad1 vt: drop old FONT ioctls
+ CVE-2023-2008: 20119c1e0fff89542ff3272ace87e04cf6ee6bea udmabuf: add back sanity check
CVEs fixed in 5.10.129:
CVE-2022-2318: 8f74cb27c2b4872fd14bf046201fa7b36a46885e net: rose: fix UAF bugs caused by timer handler
@@ -665,16 +666,22 @@
CVE-2023-1077: 80a1751730b302d8ab63a084b2fa52c820ad0273 sched/rt: pick_next_rt_entity(): check list_entry
CVE-2023-1079: 21a2eec4a440060a6eb294dc890eaf553101ba09 HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: 78da5a378bdacd5bf68c3a6389bdc1dd0c0f5b3c media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1829: 18c3fa7a7fdbb4d21dafc8a7710ae2c1680930f6 net/sched: Retire tcindex classifier
CVE-2023-23004: a5bbea50d622b8f49ab8ee3b0eb283107febcf1a malidp: Fix NULL vs IS_ERR() checking
CVE-2023-25012: fddde36316da8acb45a3cca2e5fda102f5215877 HID: bigben: use spinlock to safely schedule workers
CVEs fixed in 5.10.176:
CVE-2023-1855: 0a73c8b3cc99d214dff83c51805c844240c4f749 hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: 43aa468df246175207a7d5d7d6d31b231f15b49c nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-30456: c54974ccaff73525462e278602dfe4069877cfaa KVM: nVMX: add missing consistency checks for CR0 and CR4
CVEs fixed in 5.10.177:
CVE-2022-4379: 01e4c9c03de8a9f8839cb7342bc4bccf9104efe5 NFSD: fix use-after-free in __nfs42_ssc_open()
+ CVE-2023-1611: 5f6347034341bf45056ca1ec3fa72040152ecf83 btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1670: bfeeb3aaad4ee8eaaefe5d9edd9b2ccb5d9b7505 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: da3d3fdfb4d523c5da30e35a8dd90e04f0fd8962 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-28466: 1fde5782f187daa05919d2bebd872df8ebcc00d1 net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30772: 75e2144291e847009fbc0350e10ec588ff96e05a power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -801,8 +808,8 @@
CVE-2023-0615: (unk)
CVE-2023-1075: (unk) net/tls: tls_is_tx_ready() checked list_entry
CVE-2023-1380: (unk)
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
diff --git a/data/5.11/5.11_CVEs.txt b/data/5.11/5.11_CVEs.txt
index 911734a..d3a7cb3 100644
--- a/data/5.11/5.11_CVEs.txt
+++ b/data/5.11/5.11_CVEs.txt
@@ -514,12 +514,17 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -543,3 +548,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.11/5.11_security.txt b/data/5.11/5.11_security.txt
index cc067ae..3684322 100644
--- a/data/5.11/5.11_security.txt
+++ b/data/5.11/5.11_security.txt
@@ -554,12 +554,17 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -583,3 +588,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.12/5.12_CVEs.txt b/data/5.12/5.12_CVEs.txt
index c919625..bf4b0a3 100644
--- a/data/5.12/5.12_CVEs.txt
+++ b/data/5.12/5.12_CVEs.txt
@@ -465,12 +465,17 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -494,3 +499,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fixed with 5.12.18
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.12/5.12_security.txt b/data/5.12/5.12_security.txt
index 1cbc97c..a079cbb 100644
--- a/data/5.12/5.12_security.txt
+++ b/data/5.12/5.12_security.txt
@@ -498,12 +498,17 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -526,3 +531,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.13/5.13_CVEs.txt b/data/5.13/5.13_CVEs.txt
index 73a2318..409a76d 100644
--- a/data/5.13/5.13_CVEs.txt
+++ b/data/5.13/5.13_CVEs.txt
@@ -433,12 +433,17 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -462,3 +467,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fixed with 5.13.3
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.13/5.13_security.txt b/data/5.13/5.13_security.txt
index 01187e7..ecfa1b1 100644
--- a/data/5.13/5.13_security.txt
+++ b/data/5.13/5.13_security.txt
@@ -466,12 +466,17 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -494,3 +499,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.14/5.14_CVEs.txt b/data/5.14/5.14_CVEs.txt
index b9906ff..a4f8cc9 100644
--- a/data/5.14/5.14_CVEs.txt
+++ b/data/5.14/5.14_CVEs.txt
@@ -406,13 +406,18 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -435,3 +440,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.14/5.14_security.txt b/data/5.14/5.14_security.txt
index e35c581..a322855 100644
--- a/data/5.14/5.14_security.txt
+++ b/data/5.14/5.14_security.txt
@@ -440,13 +440,18 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -469,3 +474,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.15/5.15_CVEs.txt b/data/5.15/5.15_CVEs.txt
index 0bdd2c2..ce9bbf5 100644
--- a/data/5.15/5.15_CVEs.txt
+++ b/data/5.15/5.15_CVEs.txt
@@ -391,13 +391,18 @@
CVE-2023-1382: Fixed with 5.15.81
CVE-2023-1513: Fixed with 5.15.95
CVE-2023-1582: Fixed with 5.15.25
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fixed with 5.15.106
CVE-2023-1637: Fixed with 5.15.34
CVE-2023-1652: Fixed with 5.15.91
CVE-2023-1670: Fixed with 5.15.105
+CVE-2023-1829: Fixed with 5.15.100
CVE-2023-1838: Fixed with 5.15.42
CVE-2023-1855: Fixed with 5.15.104
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fixed with 5.15.105
+CVE-2023-1990: Fixed with 5.15.104
+CVE-2023-2008: Fixed with 5.15.51
CVE-2023-20928: Fixed with 5.15.61
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -422,3 +427,5 @@
CVE-2023-28328: Fixed with 5.15.86
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fixed with 5.15.105
+CVE-2023-30456: Fixed with 5.15.104
+CVE-2023-30772: Fixed with 5.15.105
diff --git a/data/5.15/5.15_security.txt b/data/5.15/5.15_security.txt
index ddd3b3d..5bc6a7d 100644
--- a/data/5.15/5.15_security.txt
+++ b/data/5.15/5.15_security.txt
@@ -250,6 +250,9 @@
CVE-2022-21125: ebd0f558b48082c265fd594ffb205ae5350bfe79 x86/speculation/mmio: Reuse SRBDS mitigation for SBDS
CVE-2022-21166: 2044838ab2283c23869ffa7b062e5f388136e432 x86/speculation/mmio: Enable CPU Fill buffer clearing on idle
+CVEs fixed in 5.15.51:
+ CVE-2023-2008: 5b45535865d62633e3816ee30eb8d3213038dc17 udmabuf: add back sanity check
+
CVEs fixed in 5.15.53:
CVE-2022-2318: 659d39545260100628d8a30020d09fb6bf63b915 net: rose: fix UAF bugs caused by timer handler
CVE-2022-26365: 7ed65a4ad8fa9f40bc3979b32c54243d6a684ec9 xen/blkfront: fix leaking data in shared pages
@@ -464,16 +467,24 @@
CVE-2023-25012: 0fd9998052926ed24cfb30ab1a294cfeda4d0a8f HID: bigben: use spinlock to safely schedule workers
CVEs fixed in 5.15.100:
+ CVE-2023-1829: 7c183dc0af472dec33d2c0786a5e356baa8cad19 net/sched: Retire tcindex classifier
CVE-2023-23004: 1c7988d5c79f72287177bb774cde15fde69f3c97 malidp: Fix NULL vs IS_ERR() checking
CVEs fixed in 5.15.104:
CVE-2023-1855: 7091951c2ca9d3fbec75ef1d677cbd89eeac9793 hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: 84dd9cc34014e3a3dcce0eb6d54b8a067e97676b nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-30456: 9c2f09add608a505f0e5fb694805f4766801583f KVM: nVMX: add missing consistency checks for CR0 and CR4
CVEs fixed in 5.15.105:
CVE-2022-4269: 169a41073993add6b0cfdc44e168e75f92f4834d act_mirred: use the backlog for nested calls to mirred ingress
CVE-2022-4379: ec5b7814353532243e8a9147d232a32549174909 NFSD: fix use-after-free in __nfs42_ssc_open()
CVE-2023-1670: 4ab9e85a5ce0b2ef6e63abf861179898da613d78 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: 8efae2112d910d8e5166dd0a836791b08721eef1 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-28466: 0b54d75aa43a1edebc8a3770901f5c3557ee0daa net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30772: 0fdb1cc4fe5255d0198c332b961bc4c1f8787982 power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
+
+CVEs fixed in 5.15.106:
+ CVE-2023-1611: c976f9233ef926e090db5614a837824a0bcab3fb btrfs: fix race between quota disable and quota assign ioctls
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -578,8 +589,8 @@
CVE-2023-1193: (unk)
CVE-2023-1194: (unk)
CVE-2023-1380: (unk)
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
CVE-2023-23000: (unk) phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function
diff --git a/data/5.16/5.16_CVEs.txt b/data/5.16/5.16_CVEs.txt
index e982fd8..121639b 100644
--- a/data/5.16/5.16_CVEs.txt
+++ b/data/5.16/5.16_CVEs.txt
@@ -358,13 +358,18 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fixed with 5.16.10
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fixed with 5.16.20
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -389,3 +394,5 @@
CVE-2023-28328: Fix not seen in stream
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.16/5.16_security.txt b/data/5.16/5.16_security.txt
index 358068a..7551f45 100644
--- a/data/5.16/5.16_security.txt
+++ b/data/5.16/5.16_security.txt
@@ -399,12 +399,17 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -425,3 +430,5 @@
CVE-2023-28328: (unk) media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.17/5.17_CVEs.txt b/data/5.17/5.17_CVEs.txt
index 13082bb..a39318b 100644
--- a/data/5.17/5.17_CVEs.txt
+++ b/data/5.17/5.17_CVEs.txt
@@ -302,13 +302,18 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fixed with 5.17.3
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fixed with 5.17.10
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fixed with 5.17.3
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20938: Fixed with 5.17.6
CVE-2023-20941: Fix unknown
@@ -331,3 +336,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28866: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.17/5.17_security.txt b/data/5.17/5.17_security.txt
index 6a8591d..2fcd001 100644
--- a/data/5.17/5.17_security.txt
+++ b/data/5.17/5.17_security.txt
@@ -43,6 +43,7 @@
CVE-2022-29582: 11cd7959400258beb1dc17c8680055966263f316 io_uring: fix race between timeout flush and removal
CVE-2022-3202: 2e0e1de4f7a17e0886524c1d6701b8e2bf5a7363 jfs: prevent NULL deref in diFree
CVE-2023-1637: 9ffaef8717992fd23184a745ca8224d9635f9db3 x86/speculation: Restore speculation related MSRs during S3 resume
+ CVE-2023-1872: d657effd9029e9901243a6cec0467d425ab1fde5 io_uring: propagate issue_flags state down to file assignment
CVEs fixed in 5.17.4:
CVE-2022-3526: f382df5ff36bc9fa10e0f898f3051d0702085304 macvlan: Fix leaking skb in source mode with nodst option
@@ -338,11 +339,15 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22997: (unk) module: Fix NULL vs IS_ERR checking for module_get_next_page
@@ -363,3 +368,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.18/5.18_CVEs.txt b/data/5.18/5.18_CVEs.txt
index f4505fb..4e9e2f2 100644
--- a/data/5.18/5.18_CVEs.txt
+++ b/data/5.18/5.18_CVEs.txt
@@ -256,12 +256,16 @@
CVE-2023-1380: Fix unknown
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fixed with 5.18
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fixed with 5.18.8
CVE-2023-20928: Fixed with 5.18.18
CVE-2023-20941: Fix unknown
CVE-2023-22997: Fix not seen in stream
@@ -282,3 +286,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28866: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.18/5.18_security.txt b/data/5.18/5.18_security.txt
index ec72ab6..0b03b78 100644
--- a/data/5.18/5.18_security.txt
+++ b/data/5.18/5.18_security.txt
@@ -40,6 +40,9 @@
CVEs fixed in 5.18.6:
CVE-2022-1976: bba36a27c38650eefc79d18c33a0acd0dcbeabb8 io_uring: reinstate the inflight tracking
+CVEs fixed in 5.18.8:
+ CVE-2023-2008: 44bb0618ae37c8a05b93acfcd044b9beb42201dd udmabuf: add back sanity check
+
CVEs fixed in 5.18.10:
CVE-2022-2318: 570b99c2e1508708c4a32a58f98071fbc3c2c351 net: rose: fix UAF bugs caused by timer handler
CVE-2022-26365: 62b5d188a270a25138a88c18409c596c1406b993 xen/blkfront: fix leaking data in shared pages
@@ -291,11 +294,14 @@
CVE-2023-1380: (unk)
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
CVE-2023-20941: (unk)
CVE-2023-22997: (unk) module: Fix NULL vs IS_ERR checking for module_get_next_page
CVE-2023-23004: (unk) malidp: Fix NULL vs IS_ERR() checking
@@ -314,3 +320,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.19/5.19_CVEs.txt b/data/5.19/5.19_CVEs.txt
index fb7f3ea..c43a7d3 100644
--- a/data/5.19/5.19_CVEs.txt
+++ b/data/5.19/5.19_CVEs.txt
@@ -75,7 +75,7 @@
CVE-2022-2785: Fixed with 5.19.4
CVE-2022-2905: Fixed with 5.19.6
CVE-2022-2961: Fix unknown
-CVE-2022-2978: Fix not seen in stream
+CVE-2022-2978: Fixed with 5.19.15
CVE-2022-3028: Fixed with 5.19.6
CVE-2022-3169: Fix not seen in stream
CVE-2022-3238: Fix unknown
@@ -213,11 +213,15 @@
CVE-2023-1382: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1583: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-1998: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22997: Fix not seen in stream
@@ -237,3 +241,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28866: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.19/5.19_security.txt b/data/5.19/5.19_security.txt
index 0103a3a..3bb3a4a 100644
--- a/data/5.19/5.19_security.txt
+++ b/data/5.19/5.19_security.txt
@@ -49,6 +49,9 @@
CVEs fixed in 5.19.14:
CVE-2022-2308: 38d854c4a11c3bbf6a96ea46f14b282670c784ac vduse: prevent uninitialized memory accesses
+CVEs fixed in 5.19.15:
+ CVE-2022-2978: 81de80330fa6907aec32eb54c5619059e6e36452 fs: fix UAF/GPF bug in nilfs_mdt_destroy
+
CVEs fixed in 5.19.16:
CVE-2022-3621: caf2c6b580433b3d3e413a3d54b8414a94725dcd nilfs2: fix NULL pointer dereference at nilfs_bmap_lookup_at_level()
CVE-2022-40768: 6ae8aa5dcf0d7ada07964c8638e55d3af5896a86 scsi: stex: Properly zero out the passthrough command structure
@@ -131,7 +134,6 @@
CVE-2022-26878: (unk)
CVE-2022-27672: (unk) x86/speculation: Identify processors vulnerable to SMT RSB predictions
CVE-2022-2961: (unk)
- CVE-2022-2978: (unk) fs: fix UAF/GPF bug in nilfs_mdt_destroy
CVE-2022-3169: (unk) nvme: ensure subsystem reset is single threaded
CVE-2022-3238: (unk)
CVE-2022-3344: (unk) KVM: x86: nSVM: harden svm_free_nested against freeing vmcb02 while still in use
@@ -242,11 +244,15 @@
CVE-2023-1382: (unk) tipc: set con sock in tipc_conn_alloc
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1583: (unk) io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-1998: (unk) x86/speculation: Allow enabling STIBP with legacy IBRS
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22997: (unk) module: Fix NULL vs IS_ERR checking for module_get_next_page
@@ -265,3 +271,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.2/5.2_CVEs.txt b/data/5.2/5.2_CVEs.txt
index 9d2ef3c..9fd6cdf 100644
--- a/data/5.2/5.2_CVEs.txt
+++ b/data/5.2/5.2_CVEs.txt
@@ -752,12 +752,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -774,3 +779,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.2/5.2_security.txt b/data/5.2/5.2_security.txt
index 7a977ee..5686a08 100644
--- a/data/5.2/5.2_security.txt
+++ b/data/5.2/5.2_security.txt
@@ -790,12 +790,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -812,3 +817,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.3/5.3_CVEs.txt b/data/5.3/5.3_CVEs.txt
index e43ddb3..5d9e371 100644
--- a/data/5.3/5.3_CVEs.txt
+++ b/data/5.3/5.3_CVEs.txt
@@ -725,12 +725,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -748,3 +753,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.3/5.3_security.txt b/data/5.3/5.3_security.txt
index 3600a56..78e294e 100644
--- a/data/5.3/5.3_security.txt
+++ b/data/5.3/5.3_security.txt
@@ -761,12 +761,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -784,3 +789,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.4/5.4_CVEs.txt b/data/5.4/5.4_CVEs.txt
index ee74020..64d3216 100644
--- a/data/5.4/5.4_CVEs.txt
+++ b/data/5.4/5.4_CVEs.txt
@@ -654,12 +654,17 @@
CVE-2023-1390: Fixed with 5.4.92
CVE-2023-1513: Fixed with 5.4.232
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fixed with 5.4.189
CVE-2023-1670: Fixed with 5.4.240
+CVE-2023-1829: Fixed with 5.4.235
CVE-2023-1838: Fixed with 5.4.196
CVE-2023-1855: Fixed with 5.4.238
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fixed with 5.4.240
+CVE-2023-1990: Fixed with 5.4.238
+CVE-2023-2008: Fixed with 5.4.202
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -678,3 +683,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fixed with 5.4.240
CVE-2023-28772: Fixed with 5.4.133
+CVE-2023-30456: Fixed with 5.4.238
+CVE-2023-30772: Fixed with 5.4.240
diff --git a/data/5.4/5.4_security.txt b/data/5.4/5.4_security.txt
index bc07830..bad2666 100644
--- a/data/5.4/5.4_security.txt
+++ b/data/5.4/5.4_security.txt
@@ -725,6 +725,7 @@
CVEs fixed in 5.4.202:
CVE-2021-33656: c87e851b23e5cb2ba90a3049ef38340ed7d5746f vt: drop old FONT ioctls
+ CVE-2023-2008: c7bdaad9cbfe17c83e4f56c7bb7a2d87d944f0fb udmabuf: add back sanity check
CVEs fixed in 5.4.204:
CVE-2022-2318: bb91556d2af066f8ca2e7fd8e334d652e731ee29 net: rose: fix UAF bugs caused by timer handler
@@ -872,15 +873,20 @@
CVE-2023-1077: 084cd75643b61fb924f70cba98a71dea14942938 sched/rt: pick_next_rt_entity(): check list_entry
CVE-2023-1079: dd08e68d04d08d2f42b09162c939a0b0841216cc HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: d120334278b370b6a1623a75ebe53b0c76cb247c media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1829: 7a6fb69bbcb21e9ce13bdf18c008c268874f0480 net/sched: Retire tcindex classifier
CVEs fixed in 5.4.238:
CVE-2023-1855: 26c176ce902861a45f8d699e057245ed7e0bcdf2 hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: b0c202a8dc63008205a5d546559736507a9aae66 nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-30456: 65e4c9a6d0c9a8c81ce75576869d46fff5d7964f KVM: nVMX: add missing consistency checks for CR0 and CR4
CVEs fixed in 5.4.240:
CVE-2022-4744: 0c0e566f0387490d16f166808c72e9c772027681 tun: avoid double free in tun_free_netdev
CVE-2023-0590: 0f5c0e0a4c0b081e5f959578a8e56c7921e63a2d net: sched: fix race condition in qdisc_graft()
CVE-2023-1670: a07ec453e86abbd14e2d06d59367b4dd11437358 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: a18fb433ceb56e0787546a9d77056dd0f215e762 Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-28466: 754838aa02050ff3d8675bef79d172097218ea71 net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
+ CVE-2023-30772: 6fe078c2864b9defaa632733a5bae969b398b673 power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -1028,8 +1034,9 @@
CVE-2023-1281: (unk) net/sched: tcindex: update imperfect hash filters respecting rcu
CVE-2023-1380: (unk)
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
diff --git a/data/5.5/5.5_CVEs.txt b/data/5.5/5.5_CVEs.txt
index b7e3bf3..c6fe6c1 100644
--- a/data/5.5/5.5_CVEs.txt
+++ b/data/5.5/5.5_CVEs.txt
@@ -615,12 +615,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -639,3 +644,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.5/5.5_security.txt b/data/5.5/5.5_security.txt
index 858eee7..92a3f79 100644
--- a/data/5.5/5.5_security.txt
+++ b/data/5.5/5.5_security.txt
@@ -649,12 +649,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -673,3 +678,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.6/5.6_CVEs.txt b/data/5.6/5.6_CVEs.txt
index 8aa5d87..2c98947 100644
--- a/data/5.6/5.6_CVEs.txt
+++ b/data/5.6/5.6_CVEs.txt
@@ -592,12 +592,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -617,3 +622,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.6/5.6_security.txt b/data/5.6/5.6_security.txt
index a153b28..d5e5cb6 100644
--- a/data/5.6/5.6_security.txt
+++ b/data/5.6/5.6_security.txt
@@ -626,12 +626,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -651,3 +656,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.7/5.7_CVEs.txt b/data/5.7/5.7_CVEs.txt
index 9f79fd4..ff678a7 100644
--- a/data/5.7/5.7_CVEs.txt
+++ b/data/5.7/5.7_CVEs.txt
@@ -586,12 +586,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -613,3 +618,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.7/5.7_security.txt b/data/5.7/5.7_security.txt
index 1f8be71..837092c 100644
--- a/data/5.7/5.7_security.txt
+++ b/data/5.7/5.7_security.txt
@@ -620,12 +620,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -647,3 +652,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.8/5.8_CVEs.txt b/data/5.8/5.8_CVEs.txt
index 0a3145b..72a2478 100644
--- a/data/5.8/5.8_CVEs.txt
+++ b/data/5.8/5.8_CVEs.txt
@@ -570,12 +570,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -597,3 +602,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.8/5.8_security.txt b/data/5.8/5.8_security.txt
index 5282332..1fe0d26 100644
--- a/data/5.8/5.8_security.txt
+++ b/data/5.8/5.8_security.txt
@@ -604,12 +604,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -631,3 +636,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/5.9/5.9_CVEs.txt b/data/5.9/5.9_CVEs.txt
index 098799a..7436a9a 100644
--- a/data/5.9/5.9_CVEs.txt
+++ b/data/5.9/5.9_CVEs.txt
@@ -543,12 +543,17 @@
CVE-2023-1390: Fix not seen in stream
CVE-2023-1513: Fix not seen in stream
CVE-2023-1582: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1637: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1838: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1872: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-2008: Fix not seen in stream
CVE-2023-20928: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22995: Fix not seen in stream
@@ -570,3 +575,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28772: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/5.9/5.9_security.txt b/data/5.9/5.9_security.txt
index 56952d2..bd210e5 100644
--- a/data/5.9/5.9_security.txt
+++ b/data/5.9/5.9_security.txt
@@ -573,12 +573,17 @@
CVE-2023-1390: (unk) tipc: fix NULL deref in tipc_link_xmit()
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1582: (unk) fs/proc: task_mmu.c: don't read mapcount for migration entry
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1637: (unk) x86/speculation: Restore speculation related MSRs during S3 resume
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1838: (unk) Fix double fget() in vhost_net_set_backend()
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1872: (unk) io_uring: propagate issue_flags state down to file assignment
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-2008: (unk) udmabuf: add back sanity check
CVE-2023-20928: (unk) android: binder: stop saving a pointer to the VMA
CVE-2023-20941: (unk)
CVE-2023-22995: (unk) usb: dwc3: dwc3-qcom: Add missing platform_device_put() in dwc3_qcom_acpi_register_core
@@ -600,3 +605,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28772: (unk) seq_buf: Fix overflow in seq_buf_putmem_hex()
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/6.0/6.0_CVEs.txt b/data/6.0/6.0_CVEs.txt
index 9439a89..2a7afe5 100644
--- a/data/6.0/6.0_CVEs.txt
+++ b/data/6.0/6.0_CVEs.txt
@@ -177,11 +177,15 @@
CVE-2023-1382: Fixed with 6.0.11
CVE-2023-1513: Fix not seen in stream
CVE-2023-1583: Fix not seen in stream
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fix not seen in stream
CVE-2023-1652: Fix not seen in stream
CVE-2023-1670: Fix not seen in stream
+CVE-2023-1829: Fix not seen in stream
CVE-2023-1855: Fix not seen in stream
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1989: Fix not seen in stream
+CVE-2023-1990: Fix not seen in stream
+CVE-2023-1998: Fix not seen in stream
CVE-2023-20941: Fix unknown
CVE-2023-22997: Fixed with 6.0.16
CVE-2023-23039: Fix unknown
@@ -199,3 +203,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fix not seen in stream
CVE-2023-28866: Fix not seen in stream
+CVE-2023-30456: Fix not seen in stream
+CVE-2023-30772: Fix not seen in stream
diff --git a/data/6.0/6.0_security.txt b/data/6.0/6.0_security.txt
index 9f3a8b7..1ad9839 100644
--- a/data/6.0/6.0_security.txt
+++ b/data/6.0/6.0_security.txt
@@ -219,11 +219,15 @@
CVE-2023-1380: (unk)
CVE-2023-1513: (unk) kvm: initialize all of the kvm_debugregs structure before sending it to userspace
CVE-2023-1583: (unk) io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()
- CVE-2023-1611: (unk)
+ CVE-2023-1611: (unk) btrfs: fix race between quota disable and quota assign ioctls
CVE-2023-1652: (unk) NFSD: fix use-after-free in nfsd4_ssc_setup_dul()
CVE-2023-1670: (unk) xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1829: (unk) net/sched: Retire tcindex classifier
CVE-2023-1855: (unk) hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
+ CVE-2023-1989: (unk) Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
+ CVE-2023-1990: (unk) nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-1998: (unk) x86/speculation: Allow enabling STIBP with legacy IBRS
CVE-2023-20941: (unk)
CVE-2023-23039: (unk)
CVE-2023-23559: (unk) wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid
@@ -233,3 +237,5 @@
CVE-2023-28464: (unk)
CVE-2023-28466: (unk) net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVE-2023-28866: (unk) Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30456: (unk) KVM: nVMX: add missing consistency checks for CR0 and CR4
+ CVE-2023-30772: (unk) power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
diff --git a/data/6.1/6.1_CVEs.txt b/data/6.1/6.1_CVEs.txt
index b74e1e7..6c9f981 100644
--- a/data/6.1/6.1_CVEs.txt
+++ b/data/6.1/6.1_CVEs.txt
@@ -125,11 +125,15 @@
CVE-2023-1380: Fix unknown
CVE-2023-1513: Fixed with 6.1.13
CVE-2023-1583: Fixed with 6.1.22
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fixed with 6.1.23
CVE-2023-1652: Fixed with 6.1.9
CVE-2023-1670: Fixed with 6.1.22
+CVE-2023-1829: Fixed with 6.1.18
CVE-2023-1855: Fixed with 6.1.21
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1989: Fixed with 6.1.22
+CVE-2023-1990: Fixed with 6.1.21
+CVE-2023-1998: Fixed with 6.1.16
CVE-2023-20941: Fix unknown
CVE-2023-22997: Fixed with 6.1.2
CVE-2023-23005: Fix not seen in stream
@@ -147,3 +151,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fixed with 6.1.20
CVE-2023-28866: Fixed with 6.1.22
+CVE-2023-30456: Fixed with 6.1.21
+CVE-2023-30772: Fixed with 6.1.22
diff --git a/data/6.1/6.1_security.txt b/data/6.1/6.1_security.txt
index cbd8ae5..b76efe5 100644
--- a/data/6.1/6.1_security.txt
+++ b/data/6.1/6.1_security.txt
@@ -76,19 +76,30 @@
CVE-2023-1077: 6b4fcc4e8a3016e85766c161daf0732fca16c3a3 sched/rt: pick_next_rt_entity(): check list_entry
CVE-2023-1079: ee907829b36949c452c6f89485cb2a58e97c048e HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: 029c1410e345ce579db5c007276340d072aac54a media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1998: 08d87c87d6461d16827c9b88d84c48c26b6c994a x86/speculation: Allow enabling STIBP with legacy IBRS
CVE-2023-25012: f2bf592ebd5077661e00aa11e12e054c4c8f6dd0 HID: bigben: use spinlock to safely schedule workers
+CVEs fixed in 6.1.18:
+ CVE-2023-1829: 3abebc503a5148072052c229c6b04b329a420ecd net/sched: Retire tcindex classifier
+
CVEs fixed in 6.1.20:
CVE-2023-28466: 14c17c673e1bba08032d245d5fb025d1cbfee123 net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVEs fixed in 6.1.21:
CVE-2023-1855: b2ae1f15cd6fe0cb36e432a179ae7d479ae2e6e0 hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: 5e331022b448fbc5e76f24349cd0246844dcad25 nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-30456: 4bba9c8adec804f03d12dc762e50d083ee88b6b0 KVM: nVMX: add missing consistency checks for CR0 and CR4
CVEs fixed in 6.1.22:
CVE-2022-4269: 4c8fc3fe28e47e2a495444347375f7354c24b018 act_mirred: use the backlog for nested calls to mirred ingress
CVE-2023-1583: 7b100a45dc19ffd708f364ba66601efaca1ccf56 io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()
CVE-2023-1670: 9d882229d365f68f74028252261ab14a8de7faed xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: cbf8deacb7053ce3e3fed64b277c6c6989e65bba Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-28866: b3168abd24245aa0775c5a387dcf94d36ca7e738 Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30772: 47b2e1a67e6da172bb4cf69ef9dafde4458bde5f power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
+
+CVEs fixed in 6.1.23:
+ CVE-2023-1611: a38ff2024805a30d9b96f52557c6ea0bbc31252a btrfs: fix race between quota disable and quota assign ioctls
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -176,8 +187,7 @@
CVE-2023-1193: (unk)
CVE-2023-1194: (unk)
CVE-2023-1380: (unk)
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
CVE-2023-20941: (unk)
CVE-2023-23005: (unk) mm/demotion: fix NULL vs IS_ERR checking in memory_tier_init
CVE-2023-23039: (unk)
diff --git a/data/6.2/6.2_CVEs.txt b/data/6.2/6.2_CVEs.txt
index 232555e..43c285c 100644
--- a/data/6.2/6.2_CVEs.txt
+++ b/data/6.2/6.2_CVEs.txt
@@ -91,10 +91,14 @@
CVE-2023-1380: Fix unknown
CVE-2023-1513: Fixed with 6.2
CVE-2023-1583: Fixed with 6.2.9
-CVE-2023-1611: Fix unknown
+CVE-2023-1611: Fixed with 6.2.10
CVE-2023-1670: Fixed with 6.2.9
+CVE-2023-1829: Fixed with 6.2.5
CVE-2023-1855: Fixed with 6.2.8
-CVE-2023-1859: Fix unknown
+CVE-2023-1859: Fix not seen in stream
+CVE-2023-1989: Fixed with 6.2.9
+CVE-2023-1990: Fixed with 6.2.8
+CVE-2023-1998: Fixed with 6.2.3
CVE-2023-20941: Fix unknown
CVE-2023-23039: Fix unknown
CVE-2023-25012: Fixed with 6.2.3
@@ -103,3 +107,5 @@
CVE-2023-28464: Fix unknown
CVE-2023-28466: Fixed with 6.2.7
CVE-2023-28866: Fixed with 6.2.9
+CVE-2023-30456: Fixed with 6.2.8
+CVE-2023-30772: Fixed with 6.2.9
diff --git a/data/6.2/6.2_security.txt b/data/6.2/6.2_security.txt
index 92d6a7c..11c97e2 100644
--- a/data/6.2/6.2_security.txt
+++ b/data/6.2/6.2_security.txt
@@ -11,19 +11,30 @@
CVE-2023-1077: 1099004ae1664703ec573fc4c61ffb24144bcb63 sched/rt: pick_next_rt_entity(): check list_entry
CVE-2023-1079: b08bcfb4c97d7bd41b362cff44b2c537ce9e8540 HID: asus: use spinlock to safely schedule workers
CVE-2023-1118: 182ea492aae5b64067277e60a4ea5995c4628555 media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
+ CVE-2023-1998: ead3c8e54d28fa1d5454b1f8a21b96b4a969b1cb x86/speculation: Allow enabling STIBP with legacy IBRS
CVE-2023-25012: 90289e71514e9533a9c44d694e2b492be9ed2b77 HID: bigben: use spinlock to safely schedule workers
+CVEs fixed in 6.2.5:
+ CVE-2023-1829: 372ae77cf11d11fb118cbe2d37def9dd5f826abd net/sched: Retire tcindex classifier
+
CVEs fixed in 6.2.7:
CVE-2023-28466: 5231fa057bb0e52095591b303cf95ebd17bc62ce net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()
CVEs fixed in 6.2.8:
CVE-2023-1855: eacd1f6bb43ac4b9de3bf886083a71c18d5f329f hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition
+ CVE-2023-1990: f589e5b56c562d99ea74e05b1c3f0eab78aa17a3 nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition
+ CVE-2023-30456: 71d05b9fa0bfc131a6e2250dea045a818ff25550 KVM: nVMX: add missing consistency checks for CR0 and CR4
CVEs fixed in 6.2.9:
CVE-2022-4269: 8c9e553c58a491ad328c622441e08178373442dc act_mirred: use the backlog for nested calls to mirred ingress
CVE-2023-1583: 2ff9f7319b915acc42cf8fcf743589f926f4a014 io_uring/rsrc: fix null-ptr-deref in io_file_bitmap_get()
CVE-2023-1670: 9c515f3290456bb6850bd7ee29d5bf6652d7f103 xirc2ps_cs: Fix use after free bug in xirc2ps_detach
+ CVE-2023-1989: c59c65a14e8f7d738429648833f3bb3f9df0513f Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work
CVE-2023-28866: 8497222b22b591c6b2d106e0e3c1672ffe4e10e0 Bluetooth: HCI: Fix global-out-of-bounds
+ CVE-2023-30772: a7d686b36aa8021ee96128290ac3b58c4c1f6297 power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition
+
+CVEs fixed in 6.2.10:
+ CVE-2023-1611: 4caab245b0469ce9258ba099a41e909f5d307b33 btrfs: fix race between quota disable and quota assign ioctls
Outstanding CVEs:
CVE-2005-3660: (unk)
@@ -109,8 +120,7 @@
CVE-2023-1193: (unk)
CVE-2023-1194: (unk)
CVE-2023-1380: (unk)
- CVE-2023-1611: (unk)
- CVE-2023-1859: (unk)
+ CVE-2023-1859: (unk) 9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition
CVE-2023-20941: (unk)
CVE-2023-23039: (unk)
CVE-2023-26242: (unk)
diff --git a/data/CVEs.txt b/data/CVEs.txt
index 6d9cac8..09ae688 100644
--- a/data/CVEs.txt
+++ b/data/CVEs.txt
@@ -2320,13 +2320,19 @@
CVE-2023-1513: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 2c10b61421a28e95a46ab489fd56c0f442ff6952 (v2.6.12-rc2 to v6.2)
CVE-2023-1582: e9b61f19858a5d6c42ce2298cf138279375d0d9b - 24d7275ce2791829953ed4e72f68277ceb2571c6 (v4.5-rc1 to v5.17-rc4)
CVE-2023-1583: 4278a0deb1f6cac40ded3362fe2a9827d7efee3d - 02a4d923e4400a36d340ea12d8058f69ebf3a383 (v5.19-rc1 to v6.3-rc4)
-CVE-2023-1611: (n/a) - (n/a) (unk to unk)
+CVE-2023-1611: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 2f1a6be12ab6c8470d5776e68644726c94257c54 (v2.6.12-rc2 to v6.3-rc5)
CVE-2023-1637: 772439717dbf703b39990be58d8d4e3e4ad0598a - e2a1256b17b16f9b9adf1b6fea56819e7b68e463 (v4.17-rc7 to v5.18-rc2)
CVE-2023-1652: f4e44b393389c77958f7c58bf4415032b4cda15b - e6cf91b7b47ff82b624bdfe2fdcde32bb52e71dd (v5.14-rc1 to v6.2-rc5)
CVE-2023-1670: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - e8d20c3ded59a092532513c9bd030d1ea66f5f44 (v2.6.12-rc2 to v6.3-rc4)
+CVE-2023-1829: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 8c710f75256bb3cf05ac7b1672c82b92c43f3d28 (v2.6.12-rc2 to v6.3-rc1)
CVE-2023-1838: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - fb4554c2232e44d595920f4d5c66cf8f7d13f9bc (v2.6.12-rc2 to v5.18)
-CVE-2023-1855: (n/a) - cb090e64cf25602b9adaf32d5dfc9c8bec493cd1 (unk to v6.3-rc3)
-CVE-2023-1859: (n/a) - (n/a) (unk to unk)
+CVE-2023-1855: 2ca492e22cb70a001749377506bd22eb06f60ecc - cb090e64cf25602b9adaf32d5dfc9c8bec493cd1 (v4.9-rc1 to v6.3-rc3)
+CVE-2023-1859: 71ebd71921e451f0f942ddfe85d01e31ddc6eb88 - ea4f1009408efb4989a0f139b70fb338e7f687d0 (v4.12-rc1 to unk)
+CVE-2023-1872: (n/a) - 5106dd6e74ab6c94daac1c357094f11e6934b36f (unk to v5.18-rc2)
+CVE-2023-1989: ddbaf13e3609442b64abb931ac21527772d87980 - 1e9ac114c4428fdb7ff4635b45d4f46017e8916f (v2.6.24-rc1 to v6.3-rc4)
+CVE-2023-1990: 35630df68d6030daf12dde12ed07bbe26324e6ac - 5000fe6c27827a61d8250a7e4a1d26c3298ef4f6 (v3.17-rc1 to v6.3-rc3)
+CVE-2023-1998: 7c693f54c873691a4b7da05c7e0f74e67745d144 - 6921ed9049bc7457f66c1596c5b78aec0dae4a9d (v5.19-rc7 to v6.3-rc1)
+CVE-2023-2008: (n/a) - 05b252cccb2e5c3f56119d25de684b4f810ba40a (unk to v5.19-rc4)
CVE-2023-20928: dd2283f2605e3b3e9c61bcae844b34f2afa4813f - a43cfc87caaf46710c8027a8c23b8a55f1078f19 (v4.20-rc1 to v6.0-rc1)
CVE-2023-20937: Vendor Specific
CVE-2023-20938: 09184ae9b5756cc469db6fd1d1cfdcffbf627c2d - ef38de9217a04c9077629a24652689d8fdb4c6c6 (v5.17-rc1 to v5.18-rc5)
@@ -2361,3 +2367,5 @@
CVE-2023-28466: 3c4d7559159bfe1e3b94df3a657b2cda3a34e218 - 49c47cc21b5b7a3d8deb18fc57b0aa2ab1286962 (v4.13-rc1 to v6.3-rc2)
CVE-2023-28772: 5e3ca0ec76fce92daa4eed0d02de9c79b1fe3920 - d3b16034a24a112bb83aeb669ac5b9b01f744bb7 (v2.6.27-rc1 to v5.14-rc1)
CVE-2023-28866: d0b137062b2de75b264b84143d21c98abc5f5ad2 - bce56405201111807cc8e4f47c6de3e10b17c1ac (v5.17-rc1 to v6.3-rc4)
+CVE-2023-30456: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 112e66017bff7f2837030f34c2bc19501e9212d5 (v2.6.12-rc2 to v6.3-rc3)
+CVE-2023-30772: (n/a) - 06615d11cc78162dfd5116efb71f29eb29502d37 (unk to v6.3-rc4)
diff --git a/data/cmts.json b/data/cmts.json
index 4682f7c..f63aecf 100644
--- a/data/cmts.json
+++ b/data/cmts.json
@@ -68,6 +68,7 @@
"058504edd02667eef8fac9be27ab3ea74332e9b4": "v3.16-rc4",
"05a974efa4bdf6e2a150e3f27dc6fcf0a9ad5655": "v4.10-rc5",
"05ab8f2647e4221cbdb3856dd7d32bd5407316b3": "v3.15-rc2",
+ "05b252cccb2e5c3f56119d25de684b4f810ba40a": "v5.19-rc4",
"05ca5270005c18ec46decacef87992ea968f9fce": "v4.8-rc1",
"05cd84691eafcd7959a1e120d5e72c0dd98c5d91": "v5.11-rc3",
"05f0ffbc487517a529c00119d0bfde33df509b52": "v3.10-rc1",
@@ -75,6 +76,7 @@
"060423bfdee3f8bc6e2c1bac97de24d5415e2bc4": "v5.3",
"0614e2b73768b502fc32a75349823356d98aae2c": "v5.4-rc1",
"0625b4ba1a5d4703c7fb01c497bd6c156908af00": "v4.19-rc1",
+ "06615d11cc78162dfd5116efb71f29eb29502d37": "v6.3-rc4",
"06b6a1cf6e776426766298d055bb3991957d90a7": "v3.6-rc1",
"06bd3c36a733ac27962fea7d6f47168841376824": "v4.7-rc1",
"06c8173eb92bbfc03a0fe8bb64315857d0badd06": "v4.0-rc3",
@@ -209,6 +211,7 @@
"10db10d144c0248f285242f79daf6b9de6b00a62": "v2.6.28-rc1",
"10eec60ce79187686e052092e5383c99b4420a20": "v4.8-rc1",
"1109c00547fc66df45b9ff923544be4c1e1bec13": "v3.18-rc1",
+ "112e66017bff7f2837030f34c2bc19501e9212d5": "v6.3-rc3",
"113630b581d6d423998d2113a8e892ed6e6af6f9": "v4.10-rc1",
"1137b5e2529a8f5ca8ee709288ecba3e68044df2": "v4.14-rc7",
"115bb1ffa54c3934f3617bdd4e4dfc68b11e1e69": "v2.6.37-rc1",
@@ -393,6 +396,7 @@
"1e866afd4bcdd01a70a5eddb4371158d3035ce03": "v6.1-rc1",
"1e87a2456b0227ca4ab881e19a11bb99d164e792": "v3.12-rc1",
"1e98ffea5a8935ec040ab72299e349cb44b8defd": "v4.16-rc1",
+ "1e9ac114c4428fdb7ff4635b45d4f46017e8916f": "v6.3-rc4",
"1ebb71143758f45dc0fa76e2f48429e13b16d110": "v4.10-rc4",
"1ebb7cc6a58321a4b22c4c9097b4651b0ab859d0": "v3.12-rc1",
"1ee0a224bc9aad1de496c795f96bc6ba2c394811": "v3.8-rc5",
@@ -567,6 +571,7 @@
"2c5816b4beccc8ba709144539f6fdd764f8fa49c": "v4.4-rc5",
"2ca13a4cc56c920a6c9fc8ee45d02bccacd7f46c": "v5.11-rc1",
"2ca39528c01a933f6689cd6505ce65bd6d68a530": "v3.9-rc3",
+ "2ca492e22cb70a001749377506bd22eb06f60ecc": "v4.9-rc1",
"2cb33cac622afde897aa02d3dcd9fbba8bae839e": "v3.11-rc1",
"2cb80187ba065d7decad7c6614e35e07aec8a974": "v4.14",
"2d07dc79fe04a43d82a346ced6bbf07bdb523f1b": "v4.2-rc1",
@@ -595,6 +600,7 @@
"2e90ca68b0d2f5548804f22f0dd61145516171e3": "v5.6-rc4",
"2ec220e27f5040aec1e88901c1b6ea3d135787ad": "v2.6.29-rc1",
"2ee824026288eb7068e6327c5f34b8ddbea74094": "v4.19-rc1",
+ "2f1a6be12ab6c8470d5776e68644726c94257c54": "v6.3-rc5",
"2f2aa13724d56829d910b2fa8e80c502d388f106": "v5.7-rc1",
"2f2d0088eb93db5c649d2a5e34a3800a8a935fc5": "v4.15-rc4",
"2f446ffe9d737e9a844b97887919c4fda18246e7": "v5.19-rc6",
@@ -673,6 +679,7 @@
"3557baabf28088f49bdf72a048fd33ab62e205b1": "v2.6.23-rc1",
"355a901e6cf1b2b763ec85caa2a9f04fbcc4ab4a": "v3.19-rc1",
"355b98553789b646ed97ad801a619ff898471b92": "v5.1-rc4",
+ "35630df68d6030daf12dde12ed07bbe26324e6ac": "v3.17-rc1",
"3567eb6af614dac436c4b16a8d426f9faed639b3": "v4.5-rc1",
"35732d01fe311ec13c4e42936878b782b8e7ea85": "v4.15-rc1",
"3573e22cfecaac83f82ef4f6847d90e466fc8e10": "v3.16-rc1",
@@ -1024,6 +1031,7 @@
"4fb8b5aa2a1126783ae00bae544d6f3c519408ef": "v5.7-rc1",
"4fbcc1a4cb20fe26ad0225679c536c80f1648221": "v5.17-rc1",
"4fd6931ebe24640bec72b91ba612325843a5e3cc": "v2.6.25-rc1",
+ "5000fe6c27827a61d8250a7e4a1d26c3298ef4f6": "v6.3-rc3",
"500a373d731ac506612db12631ec21295c1ff360": "v5.10-rc1",
"50145474f6ef4a9c19205b173da6264a644c7489": "v5.9-rc6",
"50220dead1650609206efe91f0cc116132d59b3f": "v4.6-rc1",
@@ -1033,6 +1041,7 @@
"505d9dcb0f7ddf9d075e729523a33d38642ae680": "v5.15-rc4",
"50d88758a3f9787cbdbdbc030560b815721eab4b": "v2.6.30-rc1",
"50e7044535537b2a54c7ab798cd34c7f6d900bd2": "v4.17-rc1",
+ "5106dd6e74ab6c94daac1c357094f11e6934b36f": "v5.18-rc2",
"51093254bf879bc9ce96590400a87897c7498463": "v4.6-rc1",
"511885d7061eda3eb1faf3f57dcc936ff75863f1": "v5.4-rc1",
"511e6bc071db1484d1a3d1d0bd4c244cf33910ff": "v4.4-rc1",
@@ -1330,6 +1339,7 @@
"68faa679b8be1a74e6663c21c3a9d25d32f1c079": "v5.5-rc6",
"68fda450a7df51cff9e5a4d4a4d9d0d5f2589153": "v4.15-rc9",
"690b2549b19563ec5ad53e5c82f6a944d910086e": "v5.19-rc1",
+ "6921ed9049bc7457f66c1596c5b78aec0dae4a9d": "v6.3-rc1",
"6934da9238da947628be83635e365df41064b09b": "v4.4-rc1",
"69664cf16af4f31cd54d77948a4baf9c7e0ca7b9": "v2.6.26-rc1",
"696e1a48b1a1b01edad542a1ef293665864a4dd0": "v6.2-rc5",
@@ -1576,6 +1586,7 @@
"7c051267931a9be9c6620cc17b362bc6ee6dedc8": "v4.7-rc1",
"7c4a5b89a0b5a57a64b601775b296abf77a9fe97": "v6.3-rc1",
"7c657876b63cb1d8a2ec06f8fc6c37bb8412e66c": "v2.6.14-rc1",
+ "7c693f54c873691a4b7da05c7e0f74e67745d144": "v5.19-rc7",
"7c6967326267bd5c0dded0a99541357d70dd11ac": "v5.10-rc1",
"7c80f9e4a588f1925b07134bb2e3689335f6c6d8": "v4.14-rc5",
"7c94e1c157a227837b04f02f5edeff8301410ba2": "v3.18-rc1",
@@ -1763,6 +1774,7 @@
"8c21c54a53ab21842f5050fa090f26b03c0313d6": "v6.0-rc1",
"8c55dedb795be8ec0cf488f98c03a1c2176f7fb1": "v5.4-rc6",
"8c6de56a42e0c657955e12b882a81ef07d1d073e": "v5.6-rc1",
+ "8c710f75256bb3cf05ac7b1672c82b92c43f3d28": "v6.3-rc1",
"8c7188b23474cca017b3ef354c4a58456f68303a": "v4.4-rc4",
"8c75d585b931ac874fbe4ee5a8f1811d20c2817f": "v5.16-rc1",
"8ca86f1639ec5890d400fff9211aca22d0a392eb": "v4.16-rc3",
@@ -2776,6 +2788,7 @@
"dd83c161fbcc5d8be637ab159c0de015cbff5ba4": "v4.13-rc1",
"dd99e9f98fbf423ff6d365b37a98e8879170f17c": "v5.14-rc1",
"dd9cfe236f95bbda9ceb5a4ca419b9fb574c95f9": "v3.12-rc1",
+ "ddbaf13e3609442b64abb931ac21527772d87980": "v2.6.24-rc1",
"ddbd89deb7d32b1fbb879f48d68fda1a8ac58e8e": "v5.17-rc6",
"ddf0322db79c5984dc1a1db890f946dd19b7d6d9": "v5.7-rc1",
"de1e0c40aceb9d5bff09c3a3b97b2f1b178af53f": "v3.11-rc1",
diff --git a/data/kernel_cves.json b/data/kernel_cves.json
index 0497ec7..25fa990 100644
--- a/data/kernel_cves.json
+++ b/data/kernel_cves.json
@@ -54221,8 +54221,21 @@
"CVE-2020-11935": {
"affected_versions": "unk to unk",
"breaks": "",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "None",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
+ "score": 5.5
+ },
+ "cwe": "Unspecified",
"fixes": "",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2020-11935",
@@ -74674,7 +74687,7 @@
"cwe": "Use After Free",
"fixes": "2e488f13755ffbb60f307e991b27024716a33b29",
"last_affected_version": "6.0.0",
- "last_modified": "2023-01-13",
+ "last_modified": "2023-04-16",
"nvd_text": "A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following call to function nilfs_mdt_destroy. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2022-2978",
@@ -78180,9 +78193,21 @@
"affected_versions": "v5.2-rc1 to v6.0-rc7",
"breaks": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
"cmt_msg": "netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "None",
+ "Confidentiality": "High",
+ "Integrity": "None",
+ "Privileges Required": "High",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
+ "score": 4.4
+ },
"fixes": "559c36c5a8d730c49ef805a72b213d3bba155cc8",
"last_affected_version": "5.19.11",
- "last_modified": "2023-03-31",
+ "last_modified": "2023-04-16",
"nvd_text": "This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel 6.0-rc2. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the nft_osf_eval function. The issue results from the lack of proper initialization of memory prior to accessing it. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the kernel. Was ZDI-CAN-18540.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2022-42432",
@@ -80349,8 +80374,8 @@
},
"fixes": "ee059170b1f7e94e55fa6cadee544e176a6e59c2",
"last_affected_version": "6.1",
- "last_modified": "2023-03-31",
- "nvd_text": "Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called with the destroyed tcf_ext. A local attacker user can use this vulnerability to elevate its privileges to root. This issue affects Linux Kernel: from 4.14 before git commit ee059170b1f7e94e55fa6cadee544e176a6e59c2.",
+ "last_modified": "2023-04-16",
+ "nvd_text": "Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation.\u00a0The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called with the destroyed tcf_ext.\u00a0A local attacker user can use this vulnerability to elevate its privileges to root.\nThis issue affects Linux Kernel: from 4.14 before git commit ee059170b1f7e94e55fa6cadee544e176a6e59c2.\n\n",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1281",
"ExploitDB": "https://www.exploit-db.com/search?cve=2023-1281",
@@ -80466,9 +80491,21 @@
"affected_versions": "v4.5-rc1 to v5.17-rc4",
"breaks": "e9b61f19858a5d6c42ce2298cf138279375d0d9b",
"cmt_msg": "fs/proc: task_mmu.c: don't read mapcount for migration entry",
+ "cvss3": {
+ "Attack Complexity": "High",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "None",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
+ "score": 4.7
+ },
"fixes": "24d7275ce2791829953ed4e72f68277ceb2571c6",
"last_affected_version": "5.16.9",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "A race problem was found in fs/proc/task_mmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1582",
@@ -80509,10 +80546,24 @@
}
},
"CVE-2023-1611": {
- "affected_versions": "unk to unk",
- "breaks": "",
- "fixes": "",
- "last_modified": "2023-04-07",
+ "affected_versions": "v2.6.12-rc2 to v6.3-rc5",
+ "breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls",
+ "cvss3": {
+ "Attack Complexity": "High",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
+ "score": 6.3
+ },
+ "fixes": "2f1a6be12ab6c8470d5776e68644726c94257c54",
+ "last_affected_version": "6.2.9",
+ "last_modified": "2023-04-16",
"nvd_text": "A use-after-free flaw was found in btrfs_search_slot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information lea",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1611",
@@ -80556,9 +80607,21 @@
"affected_versions": "v5.14-rc1 to v6.2-rc5",
"breaks": "f4e44b393389c77958f7c58bf4415032b4cda15b",
"cmt_msg": "NFSD: fix use-after-free in nfsd4_ssc_setup_dul()",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
+ "score": 7.1
+ },
"fixes": "e6cf91b7b47ff82b624bdfe2fdcde32bb52e71dd",
"last_affected_version": "6.1.8",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "A use-after-free flaw was found in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a kernel information leak problem.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1652",
@@ -80573,9 +80636,21 @@
"affected_versions": "v2.6.12-rc2 to v6.3-rc4",
"breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "High",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+ "score": 7.8
+ },
"fixes": "e8d20c3ded59a092532513c9bd030d1ea66f5f44",
"last_affected_version": "6.2.8",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1670",
@@ -80586,13 +80661,42 @@
"Ubuntu": "https://ubuntu.com/security/CVE-2023-1670"
}
},
+ "CVE-2023-1829": {
+ "affected_versions": "v2.6.12-rc2 to v6.3-rc1",
+ "breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "fixes": "8c710f75256bb3cf05ac7b1672c82b92c43f3d28",
+ "last_affected_version": "6.2.4",
+ "last_modified": "2023-04-16",
+ "nvd_text": "A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation.\u00a0The tcindex_delete function which does not properly deactivate filters in case of a perfect hashes while deleting the underlying structure which can later lead to double freeing the structure.\u00a0A local attacker user can use this vulnerability to elevate its privileges to root.\nWe recommend upgrading past commit 8c710f75256bb3cf05ac7b1672c82b92c43f3d28.\n\n",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1829",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1829",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1829",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1829",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-1829",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1829"
+ }
+ },
"CVE-2023-1838": {
"affected_versions": "v2.6.12-rc2 to v5.18",
"breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"cmt_msg": "Fix double fget() in vhost_net_set_backend()",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
+ "score": 7.1
+ },
"fixes": "fb4554c2232e44d595920f4d5c66cf8f7d13f9bc",
"last_affected_version": "5.17",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system, and could even lead to a kernel information leak problem.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1838",
@@ -80604,12 +80708,24 @@
}
},
"CVE-2023-1855": {
- "affected_versions": "unk to v6.3-rc3",
- "breaks": "",
+ "affected_versions": "v4.9-rc1 to v6.3-rc3",
+ "breaks": "2ca492e22cb70a001749377506bd22eb06f60ecc",
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
+ "cvss3": {
+ "Attack Complexity": "High",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "None",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
+ "score": 6.3
+ },
"fixes": "cb090e64cf25602b9adaf32d5dfc9c8bec493cd1",
"last_affected_version": "6.2.7",
- "last_modified": "2023-04-07",
+ "last_modified": "2023-04-16",
"nvd_text": "A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). This flaw could allow a local attacker to crash the system due to a race problem. This vulnerability could even lead to a kernel information leak problem.",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1855",
@@ -80621,10 +80737,11 @@
}
},
"CVE-2023-1859": {
- "affected_versions": "unk to unk",
- "breaks": "",
- "fixes": "",
- "last_modified": "2023-04-07",
+ "affected_versions": "v4.12-rc1 to unk",
+ "breaks": "71ebd71921e451f0f942ddfe85d01e31ddc6eb88",
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition",
+ "fixes": "ea4f1009408efb4989a0f139b70fb338e7f687d0",
+ "last_modified": "2023-04-16",
"ref_urls": {
"Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1859",
"ExploitDB": "https://www.exploit-db.com/search?cve=2023-1859",
@@ -80634,6 +80751,90 @@
"Ubuntu": "https://ubuntu.com/security/CVE-2023-1859"
}
},
+ "CVE-2023-1872": {
+ "affected_versions": "unk to v5.18-rc2",
+ "breaks": "",
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment",
+ "fixes": "5106dd6e74ab6c94daac1c357094f11e6934b36f",
+ "last_affected_version": "5.17.2",
+ "last_modified": "2023-04-16",
+ "nvd_text": "A use-after-free vulnerability in the Linux Kernel io_uring system can be exploited to achieve local privilege escalation.\n\nThe io_file_get_fixed function lacks the presence of ctx->uring_lock which can lead to a Use-After-Free vulnerability due a race condition with fixed files getting unregistered.\n\nWe recommend upgrading past commit da24142b1ef9fd5d36b76e36bab328a5b27523e8.\n\n",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1872",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1872",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1872",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1872",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-1872",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1872"
+ }
+ },
+ "CVE-2023-1989": {
+ "affected_versions": "v2.6.24-rc1 to v6.3-rc4",
+ "breaks": "ddbaf13e3609442b64abb931ac21527772d87980",
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "fixes": "1e9ac114c4428fdb7ff4635b45d4f46017e8916f",
+ "last_affected_version": "6.2.8",
+ "last_modified": "2023-04-16",
+ "nvd_text": "A use-after-free flaw was found in btsdio_remove in drivers\\bluetooth\\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1989",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1989",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1989",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1989",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-1989",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1989"
+ }
+ },
+ "CVE-2023-1990": {
+ "affected_versions": "v3.17-rc1 to v6.3-rc3",
+ "breaks": "35630df68d6030daf12dde12ed07bbe26324e6ac",
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "fixes": "5000fe6c27827a61d8250a7e4a1d26c3298ef4f6",
+ "last_affected_version": "6.2.7",
+ "last_modified": "2023-04-16",
+ "nvd_text": "A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1990",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1990",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1990",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1990",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-1990",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1990"
+ }
+ },
+ "CVE-2023-1998": {
+ "affected_versions": "v5.19-rc7 to v6.3-rc1",
+ "breaks": "7c693f54c873691a4b7da05c7e0f74e67745d144",
+ "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS",
+ "fixes": "6921ed9049bc7457f66c1596c5b78aec0dae4a9d",
+ "last_affected_version": "6.2.2",
+ "last_modified": "2023-04-16",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-1998",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-1998",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-1998",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-1998",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-1998",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-1998"
+ }
+ },
+ "CVE-2023-2008": {
+ "affected_versions": "unk to v5.19-rc4",
+ "breaks": "",
+ "cmt_msg": "udmabuf: add back sanity check",
+ "fixes": "05b252cccb2e5c3f56119d25de684b4f810ba40a",
+ "last_affected_version": "5.18.7",
+ "last_modified": "2023-04-16",
+ "nvd_text": "A flaw was found in the Linux kernel's udmabuf device driver. The specific flaw exists within a fault handler. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an array. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the kernel.",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-2008",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-2008",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-2008",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-2008",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-2008",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-2008"
+ }
+ },
"CVE-2023-20928": {
"affected_versions": "v4.20-rc1 to v6.0-rc1",
"breaks": "dd2283f2605e3b3e9c61bcae844b34f2afa4813f",
@@ -81567,5 +81768,52 @@
"SUSE": "https://www.suse.com/security/cve/CVE-2023-28866",
"Ubuntu": "https://ubuntu.com/security/CVE-2023-28866"
}
+ },
+ "CVE-2023-30456": {
+ "affected_versions": "v2.6.12-rc2 to v6.3-rc3",
+ "breaks": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cvss3": {
+ "Attack Complexity": "Low",
+ "Attack Vector": "Local",
+ "Availability": "High",
+ "Confidentiality": "High",
+ "Integrity": "High",
+ "Privileges Required": "Low",
+ "Scope": "Unchanged",
+ "User Interaction": "None",
+ "raw": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+ "score": 7.8
+ },
+ "cwe": "Unspecified",
+ "fixes": "112e66017bff7f2837030f34c2bc19501e9212d5",
+ "last_affected_version": "6.2.7",
+ "last_modified": "2023-04-16",
+ "nvd_text": "An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4.",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-30456",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-30456",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-30456",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-30456",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-30456",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-30456"
+ }
+ },
+ "CVE-2023-30772": {
+ "affected_versions": "unk to v6.3-rc4",
+ "breaks": "",
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "fixes": "06615d11cc78162dfd5116efb71f29eb29502d37",
+ "last_affected_version": "6.2.8",
+ "last_modified": "2023-04-16",
+ "nvd_text": "The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/power/supply/da9150-charger.c if a physically proximate attacker unplugs a device.",
+ "ref_urls": {
+ "Debian": "https://security-tracker.debian.org/tracker/CVE-2023-30772",
+ "ExploitDB": "https://www.exploit-db.com/search?cve=2023-30772",
+ "NVD": "https://nvd.nist.gov/vuln/detail/CVE-2023-30772",
+ "Red Hat": "https://access.redhat.com/security/cve/CVE-2023-30772",
+ "SUSE": "https://www.suse.com/security/cve/CVE-2023-30772",
+ "Ubuntu": "https://ubuntu.com/security/CVE-2023-30772"
+ }
}
}
\ No newline at end of file
diff --git a/data/stream_data.json b/data/stream_data.json
index 65aa3b5..50a8a95 100644
--- a/data/stream_data.json
+++ b/data/stream_data.json
@@ -2084,6 +2084,9 @@
"CVE-2021-39714": {
"cmt_msg": "staging: android: ion: Drop ion_map_kernel interface"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-28388": {
"cmt_msg": "can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error path"
},
@@ -2478,7 +2481,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-17666": {
"cmt_msg": "rtlwifi: Fix potential overflow on P2P code"
@@ -2759,6 +2762,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
},
@@ -2831,6 +2837,9 @@
"CVE-2022-3424": {
"cmt_msg": "misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -2861,6 +2870,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -3077,6 +3089,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2016-9644": {
"cmt_msg": "x86/mm: Expand the exception table logic to allow new handling options"
},
@@ -3164,6 +3179,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-0067": {
"cmt_msg": "f2fs: fix to avoid memory leakage in f2fs_listxattr"
},
@@ -3671,6 +3689,9 @@
"CVE-2022-20424": {
"cmt_msg": "io_uring: remove io_identity"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2017-5549": {
"cmt_msg": "USB: serial: kl5kusb105: fix line-state error handling"
},
@@ -4157,12 +4178,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
},
@@ -4667,6 +4682,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2017-17558": {
"cmt_msg": "USB: core: prevent malicious bNumInterfaces overflow"
},
@@ -5516,6 +5534,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -5523,7 +5544,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -5612,6 +5633,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -5666,6 +5690,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -5789,6 +5816,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -5951,6 +5981,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-8824": {
"cmt_msg": "dccp: CVE-2017-8824: use-after-free in DCCP code"
},
@@ -6071,6 +6104,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2017-18222": {
"cmt_msg": "net: hns: fix ethtool_get_strings overflow in hns driver"
},
@@ -7436,9 +7472,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -8049,6 +8082,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -8844,11 +8880,14 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -8928,6 +8967,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -8973,6 +9015,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -9078,6 +9123,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -9216,6 +9264,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-8824": {
"cmt_msg": "dccp: CVE-2017-8824: use-after-free in DCCP code"
},
@@ -9324,6 +9375,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-5814": {
"cmt_msg": "usbip: usbip_host: fix NULL-ptr deref and use-after-free errors"
},
@@ -10600,7 +10654,7 @@
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
@@ -11074,6 +11128,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2017-17558": {
"cmt_msg": "USB: core: prevent malicious bNumInterfaces overflow"
},
@@ -11914,6 +11971,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -11921,7 +11981,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -12007,6 +12067,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -12052,6 +12115,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -12169,6 +12235,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -12313,6 +12382,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-8824": {
"cmt_msg": "dccp: CVE-2017-8824: use-after-free in DCCP code"
},
@@ -12430,6 +12502,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-5814": {
"cmt_msg": "usbip: usbip_host: fix NULL-ptr deref and use-after-free errors"
},
@@ -13751,7 +13826,7 @@
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-11609": {
"cmt_msg": "media: stv06xx: add missing descriptor sanity checks"
@@ -14227,6 +14302,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -14995,11 +15073,14 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -15079,6 +15160,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -15223,6 +15307,9 @@
"CVE-2020-8834": {
"cmt_msg": "KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppc_save/restore_tm"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -15451,6 +15538,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-19854": {
"cmt_msg": "crypto: user - fix leaking uninitialized memory to userspace"
},
@@ -15961,6 +16051,9 @@
"CVE-2019-16413": {
"cmt_msg": "9p: use inode->i_lock to protect i_size_write() under 32-bit"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -16012,6 +16105,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3111": {
"cmt_msg": "power: supply: wm8350-power: Add missing free in free_charger_irq"
},
@@ -16655,7 +16751,7 @@
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-11609": {
"cmt_msg": "media: stv06xx: add missing descriptor sanity checks"
@@ -20393,6 +20489,10 @@
"cmt_msg": "HID: asus: use spinlock to safely schedule workers",
"cmt_id": "df0fad94ca3787727b9cdd76797aaacf46fe93ed"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "53af9c793f644d5841d84d8e0ad83bd7ab47f3e0"
+ },
"CVE-2023-1118": {
"cmt_msg": "media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()",
"cmt_id": "0987f836bc1a258cb8fb51669a5afb67bb01c31b"
@@ -20402,9 +20502,21 @@
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "c809ed776e190edfc04f8d6b25a62855b1386a0d"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "2156490c4b7cacda9a18ec99929940b8376dc0e3"
}
},
"4.14.312": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "bbf45f079f41efcf1e51bb65a0a45d2b31061bd5"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "95eacef5692545f199fae4e52abfbfa273acb351"
+ },
"CVE-2023-1670": {
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
"cmt_id": "fe7eebebca51d56b900331c3052a6342731f1117"
@@ -20481,6 +20593,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -20613,6 +20728,9 @@
"CVE-2021-4037": {
"cmt_msg": "xfs: fix up non-directory creation in SGID directories"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-45884": {
"cmt_msg": ""
},
@@ -20721,6 +20839,9 @@
"CVE-2012-4542": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2013-7445": {
"cmt_msg": ""
},
@@ -20932,7 +21053,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
@@ -20956,7 +21077,7 @@
"cmt_msg": ""
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2018-20449": {
"cmt_msg": "printk: hash addresses printed with %p"
@@ -21404,6 +21525,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -21765,7 +21889,7 @@
"cmt_msg": "drm/i915: Lower RM timeout to avoid DSI hard hangs"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-36386": {
"cmt_msg": "Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()"
@@ -22136,11 +22260,14 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -22220,6 +22347,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -22364,6 +22494,9 @@
"CVE-2020-8834": {
"cmt_msg": "KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppc_save/restore_tm"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2020-14314": {
"cmt_msg": "ext4: fix potential negative array index in do_split()"
},
@@ -22577,6 +22710,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-26141": {
"cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe"
},
@@ -23048,6 +23184,9 @@
"CVE-2019-16413": {
"cmt_msg": "9p: use inode->i_lock to protect i_size_write() under 32-bit"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -23102,6 +23241,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-12771": {
"cmt_msg": "bcache: fix potential deadlock problem in btree_gc_coalesce"
},
@@ -24152,6 +24294,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -24905,11 +25050,14 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -24992,6 +25140,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -25139,6 +25290,9 @@
"CVE-2020-8834": {
"cmt_msg": "KVM: PPC: Book3S HV: Factor fake-suspend handling out of kvmppc_save/restore_tm"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2020-14314": {
"cmt_msg": "ext4: fix potential negative array index in do_split()"
},
@@ -25367,6 +25521,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-26141": {
"cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe"
},
@@ -25847,6 +26004,9 @@
"CVE-2019-16413": {
"cmt_msg": "9p: use inode->i_lock to protect i_size_write() under 32-bit"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -25901,6 +26061,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3111": {
"cmt_msg": "power: supply: wm8350-power: Add missing free in free_charger_irq"
},
@@ -26538,7 +26701,7 @@
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
@@ -29764,6 +29927,10 @@
"cmt_msg": "HID: asus: use spinlock to safely schedule workers",
"cmt_id": "74b78391a9b6f67de90b13f5a85e329e3b3f5a72"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "01d0d2b8b4e3cf2110baba9371c0c3d04ad5c77b"
+ },
"CVE-2023-1118": {
"cmt_msg": "media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()",
"cmt_id": "52bde2754d76fc97390f097fba763413607f157a"
@@ -29773,9 +29940,21 @@
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "e0a37b43cd732038e37b4e7f6c6c0658fe0b6d73"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "3405eb641dafcc8b28d174784b203c1622c121bf"
}
},
"4.19.280": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "533d915899b4a5a7b5b5a99eec24b2920ccd1f11"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "af4d48754d5517d33bac5e504ff1f1de0808e29e"
+ },
"CVE-2023-1670": {
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
"cmt_id": "526660c25d3b93b1232a525b75469048388f0928"
@@ -29859,6 +30038,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -29982,6 +30164,9 @@
"CVE-2021-4037": {
"cmt_msg": "xfs: fix up non-directory creation in SGID directories"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-45884": {
"cmt_msg": ""
},
@@ -30063,6 +30248,9 @@
"CVE-2012-4542": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2013-7445": {
"cmt_msg": ""
},
@@ -30259,7 +30447,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
@@ -30286,7 +30474,7 @@
"cmt_msg": ""
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-26242": {
"cmt_msg": ""
@@ -30697,6 +30885,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -31052,7 +31243,7 @@
"cmt_msg": "drm/i915: Lower RM timeout to avoid DSI hard hangs"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-36386": {
"cmt_msg": "Bluetooth: Fix slab-out-of-bounds read in hci_extended_inquiry_result_evt()"
@@ -31405,11 +31596,14 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -31489,6 +31683,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -31639,6 +31836,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2020-14314": {
"cmt_msg": "ext4: fix potential negative array index in do_split()"
},
@@ -31852,6 +32052,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -32305,6 +32508,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -32359,6 +32565,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-12771": {
"cmt_msg": "bcache: fix potential deadlock problem in btree_gc_coalesce"
},
@@ -34744,6 +34953,9 @@
"CVE-2017-7518": {
"cmt_msg": "KVM: x86: fix singlestepping over syscall"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -35479,6 +35691,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -35486,7 +35701,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -35566,6 +35781,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -35581,6 +35799,9 @@
"CVE-2016-5828": {
"cmt_msg": "powerpc/tm: Always reclaim in start_thread() for exec() class syscalls"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2018-9422": {
"cmt_msg": "futex: Remove requirement for lock_page() in get_futex_key()"
},
@@ -35977,6 +36198,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-0047": {
"cmt_msg": "mm, oom: do not trigger out_of_memory from the #PF"
},
@@ -36526,6 +36750,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3111": {
"cmt_msg": "power: supply: wm8350-power: Add missing free in free_charger_irq"
},
@@ -36694,9 +36921,6 @@
"CVE-2017-9725": {
"cmt_msg": "mm: cma: fix incorrect type conversion for size during dma allocation"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-3594": {
"cmt_msg": "r8152: Rate limit overflow messages"
},
@@ -37186,9 +37410,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -38519,6 +38740,9 @@
"CVE-2021-39714": {
"cmt_msg": "staging: android: ion: Drop ion_map_kernel interface"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-19966": {
"cmt_msg": "media: cpia2: Fix use-after-free in cpia2_exit"
},
@@ -38816,6 +39040,9 @@
"CVE-2021-20321": {
"cmt_msg": "ovl: fix missing negative dentry check in ovl_rename()"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-12127": {
"cmt_msg": "s390/speculation: Support 'mitigations=' cmdline option"
},
@@ -39326,6 +39553,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -39333,7 +39563,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -39413,6 +39643,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -39428,6 +39661,9 @@
"CVE-2022-20148": {
"cmt_msg": "f2fs: fix UAF in f2fs_available_free_memory"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2018-9422": {
"cmt_msg": "futex: Remove requirement for lock_page() in get_futex_key()"
},
@@ -40490,6 +40726,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3111": {
"cmt_msg": "power: supply: wm8350-power: Add missing free in free_charger_irq"
},
@@ -40664,9 +40903,6 @@
"CVE-2017-9725": {
"cmt_msg": "mm: cma: fix incorrect type conversion for size during dma allocation"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-3594": {
"cmt_msg": "r8152: Rate limit overflow messages"
},
@@ -41219,9 +41455,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -44175,6 +44408,9 @@
"CVE-2021-39714": {
"cmt_msg": "staging: android: ion: Drop ion_map_kernel interface"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2021-28711": {
"cmt_msg": "xen/blkfront: harden blkfront against event channel storms"
},
@@ -44422,7 +44658,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2016-10723": {
"cmt_msg": "mm, oom: remove sleep from under oom_lock"
@@ -44643,6 +44879,9 @@
"CVE-2022-45919": {
"cmt_msg": ""
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
},
@@ -44712,6 +44951,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2021-34981": {
"cmt_msg": "Bluetooth: cmtp: fix file refcount when cmtp_attach_device fails"
},
@@ -44922,6 +45164,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-0067": {
"cmt_msg": "f2fs: fix to avoid memory leakage in f2fs_listxattr"
},
@@ -45210,6 +45455,9 @@
"CVE-2022-20166": {
"cmt_msg": "drivers core: Use sysfs_emit and sysfs_emit_at for show(device *...) functions"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
},
@@ -45249,6 +45497,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-12771": {
"cmt_msg": "bcache: fix potential deadlock problem in btree_gc_coalesce"
},
@@ -45693,12 +45944,6 @@
"CVE-2021-44879": {
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
},
@@ -48064,6 +48309,9 @@
"CVE-2017-7518": {
"cmt_msg": "KVM: x86: fix singlestepping over syscall"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -48661,8 +48909,11 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -48730,6 +48981,9 @@
"CVE-2022-3424": {
"cmt_msg": "misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -49036,6 +49290,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-26141": {
"cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe"
},
@@ -49432,6 +49689,9 @@
"CVE-2013-1819": {
"cmt_msg": "xfs: fix _xfs_buf_find oops on blocks beyond the filesystem end"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -49480,6 +49740,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3111": {
"cmt_msg": "power: supply: wm8350-power: Add missing free in free_charger_irq"
},
@@ -49618,9 +49881,6 @@
"CVE-2017-9725": {
"cmt_msg": "mm: cma: fix incorrect type conversion for size during dma allocation"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2018-14609": {
"cmt_msg": "btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized"
},
@@ -50011,9 +50271,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -50126,6 +50383,10 @@
}
},
"6.2.3": {
+ "CVE-2023-1998": {
+ "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS",
+ "cmt_id": "ead3c8e54d28fa1d5454b1f8a21b96b4a969b1cb"
+ },
"CVE-2023-1032": {
"cmt_msg": "net: avoid double iput when sock_alloc_file fails",
"cmt_id": "cb6aedc1fd9d808d7319db2f953f4886dd46c627"
@@ -50151,6 +50412,12 @@
"cmt_id": "182ea492aae5b64067277e60a4ea5995c4628555"
}
},
+ "6.2.5": {
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "372ae77cf11d11fb118cbe2d37def9dd5f826abd"
+ }
+ },
"6.2.7": {
"CVE-2023-28466": {
"cmt_msg": "net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()",
@@ -50158,20 +50425,36 @@
}
},
"6.2.8": {
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cmt_id": "71d05b9fa0bfc131a6e2250dea045a818ff25550"
+ },
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "eacd1f6bb43ac4b9de3bf886083a71c18d5f329f"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "f589e5b56c562d99ea74e05b1c3f0eab78aa17a3"
}
},
"6.2.9": {
- "CVE-2022-4269": {
- "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
- "cmt_id": "8c9e553c58a491ad328c622441e08178373442dc"
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "a7d686b36aa8021ee96128290ac3b58c4c1f6297"
},
"CVE-2023-28866": {
"cmt_msg": "Bluetooth: HCI: Fix global-out-of-bounds",
"cmt_id": "8497222b22b591c6b2d106e0e3c1672ffe4e10e0"
},
+ "CVE-2022-4269": {
+ "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
+ "cmt_id": "8c9e553c58a491ad328c622441e08178373442dc"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "c59c65a14e8f7d738429648833f3bb3f9df0513f"
+ },
"CVE-2023-1670": {
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
"cmt_id": "9c515f3290456bb6850bd7ee29d5bf6652d7f103"
@@ -50181,6 +50464,12 @@
"cmt_id": "2ff9f7319b915acc42cf8fcf743589f926f4a014"
}
},
+ "6.2.10": {
+ "CVE-2023-1611": {
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls",
+ "cmt_id": "4caab245b0469ce9258ba099a41e909f5d307b33"
+ }
+ },
"outstanding": {
"CVE-2023-0160": {
"cmt_msg": ""
@@ -50390,7 +50679,7 @@
"cmt_msg": ""
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2018-12929": {
"cmt_msg": ""
@@ -50404,9 +50693,6 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
- "CVE-2023-1611": {
- "cmt_msg": ""
- },
"CVE-2023-1194": {
"cmt_msg": ""
},
@@ -50659,6 +50945,10 @@
}
},
"6.1.16": {
+ "CVE-2023-1998": {
+ "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS",
+ "cmt_id": "08d87c87d6461d16827c9b88d84c48c26b6c994a"
+ },
"CVE-2023-1032": {
"cmt_msg": "net: avoid double iput when sock_alloc_file fails",
"cmt_id": "7c7570791b15c3b78e3229ae97825e7eb869c7da"
@@ -50684,6 +50974,12 @@
"cmt_id": "029c1410e345ce579db5c007276340d072aac54a"
}
},
+ "6.1.18": {
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "3abebc503a5148072052c229c6b04b329a420ecd"
+ }
+ },
"6.1.20": {
"CVE-2023-28466": {
"cmt_msg": "net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()",
@@ -50691,20 +50987,36 @@
}
},
"6.1.21": {
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cmt_id": "4bba9c8adec804f03d12dc762e50d083ee88b6b0"
+ },
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "b2ae1f15cd6fe0cb36e432a179ae7d479ae2e6e0"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "5e331022b448fbc5e76f24349cd0246844dcad25"
}
},
"6.1.22": {
- "CVE-2022-4269": {
- "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
- "cmt_id": "4c8fc3fe28e47e2a495444347375f7354c24b018"
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "47b2e1a67e6da172bb4cf69ef9dafde4458bde5f"
},
"CVE-2023-28866": {
"cmt_msg": "Bluetooth: HCI: Fix global-out-of-bounds",
"cmt_id": "b3168abd24245aa0775c5a387dcf94d36ca7e738"
},
+ "CVE-2022-4269": {
+ "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
+ "cmt_id": "4c8fc3fe28e47e2a495444347375f7354c24b018"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "cbf8deacb7053ce3e3fed64b277c6c6989e65bba"
+ },
"CVE-2023-1670": {
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
"cmt_id": "9d882229d365f68f74028252261ab14a8de7faed"
@@ -50714,6 +51026,12 @@
"cmt_id": "7b100a45dc19ffd708f364ba66601efaca1ccf56"
}
},
+ "6.1.23": {
+ "CVE-2023-1611": {
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls",
+ "cmt_id": "a38ff2024805a30d9b96f52557c6ea0bbc31252a"
+ }
+ },
"outstanding": {
"CVE-2023-0160": {
"cmt_msg": ""
@@ -50932,7 +51250,7 @@
"cmt_msg": ""
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2018-12929": {
"cmt_msg": ""
@@ -50946,9 +51264,6 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
- "CVE-2023-1611": {
- "cmt_msg": ""
- },
"CVE-2023-1194": {
"cmt_msg": ""
},
@@ -51358,6 +51673,9 @@
"CVE-2022-23825": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2023-0179": {
"cmt_msg": "netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits"
},
@@ -51478,6 +51796,9 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -51595,9 +51916,15 @@
"CVE-2021-39800": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-4269": {
"cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress"
},
+ "CVE-2023-1998": {
+ "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS"
+ },
"CVE-2022-45885": {
"cmt_msg": ""
},
@@ -51620,7 +51947,7 @@
"cmt_msg": "net: avoid double iput when sock_alloc_file fails"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-23559": {
"cmt_msg": "wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid"
@@ -51646,8 +51973,11 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-1195": {
"cmt_msg": "cifs: fix use-after-free caused by invalid pointer `hostname`"
@@ -51682,6 +52012,9 @@
"CVE-2023-1513": {
"cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-3847": {
"cmt_msg": ""
},
@@ -52125,6 +52458,9 @@
"CVE-2021-28712": {
"cmt_msg": "xen/netfront: harden netfront against event channel storms"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2018-10938": {
"cmt_msg": "Cipso: cipso_v4_optptr enter infinite loop"
},
@@ -52434,6 +52770,9 @@
"CVE-2021-20321": {
"cmt_msg": "ovl: fix missing negative dentry check in ovl_rename()"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-12127": {
"cmt_msg": "s390/speculation: Support 'mitigations=' cmdline option"
},
@@ -52998,6 +53337,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -53005,7 +53347,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -53097,6 +53439,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -53160,6 +53505,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -53289,6 +53637,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -53463,6 +53814,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-5576": {
"cmt_msg": "drm/vc4: Fix an integer overflow in temporary allocation layout."
},
@@ -54462,9 +54816,6 @@
"CVE-2021-37576": {
"cmt_msg": "KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2016-4569": {
"cmt_msg": "ALSA: timer: Fix leak in SNDRV_TIMER_IOCTL_PARAMS"
},
@@ -55035,9 +55386,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -58820,6 +59168,9 @@
"CVE-2018-3646": {
"cmt_msg": "x86/microcode: Allow late microcode loading with SMT disabled"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1419": {
"cmt_msg": "drm/vgem: Close use-after-free race in vgem_gem_create"
},
@@ -58971,7 +59322,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2016-10723": {
"cmt_msg": "mm, oom: remove sleep from under oom_lock"
@@ -59123,6 +59474,9 @@
"CVE-2022-45919": {
"cmt_msg": ""
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-2586": {
"cmt_msg": "netfilter: nf_tables: do not allow SET_ID to refer to another table"
},
@@ -59180,6 +59534,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-1390": {
"cmt_msg": "tipc: fix NULL deref in tipc_link_xmit()"
},
@@ -59264,6 +59621,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -59315,6 +59675,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-0067": {
"cmt_msg": "f2fs: fix to avoid memory leakage in f2fs_listxattr"
},
@@ -59507,6 +59870,9 @@
"CVE-2022-26365": {
"cmt_msg": "xen/blkfront: fix leaking data in shared pages"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
},
@@ -59540,6 +59906,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-20369": {
"cmt_msg": "media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across ioctls"
},
@@ -59819,12 +60188,6 @@
"CVE-2021-44879": {
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
},
@@ -60206,6 +60569,9 @@
"CVE-2018-5873": {
"cmt_msg": "nsfs: mark dentry with DCACHE_RCUACCESS"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2017-17558": {
"cmt_msg": "USB: core: prevent malicious bNumInterfaces overflow"
},
@@ -60497,6 +60863,9 @@
"CVE-2021-20321": {
"cmt_msg": "ovl: fix missing negative dentry check in ovl_rename()"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-12127": {
"cmt_msg": "s390/speculation: Support 'mitigations=' cmdline option"
},
@@ -61052,6 +61421,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -61059,7 +61431,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -61151,6 +61523,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -61208,6 +61583,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -61328,6 +61706,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -61493,6 +61874,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-5576": {
"cmt_msg": "drm/vc4: Fix an integer overflow in temporary allocation layout."
},
@@ -62477,9 +62861,6 @@
"CVE-2021-20317": {
"cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-3594": {
"cmt_msg": "r8152: Rate limit overflow messages"
},
@@ -63050,9 +63431,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -63562,6 +63940,9 @@
"CVE-2021-28712": {
"cmt_msg": "xen/netfront: harden netfront against event channel storms"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2018-10938": {
"cmt_msg": "Cipso: cipso_v4_optptr enter infinite loop"
},
@@ -63862,6 +64243,9 @@
"CVE-2021-20321": {
"cmt_msg": "ovl: fix missing negative dentry check in ovl_rename()"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-12127": {
"cmt_msg": "s390/speculation: Support 'mitigations=' cmdline option"
},
@@ -64417,6 +64801,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -64424,7 +64811,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -64516,6 +64903,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -64573,6 +64963,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -64690,6 +65083,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -64861,6 +65257,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-5576": {
"cmt_msg": "drm/vc4: Fix an integer overflow in temporary allocation layout."
},
@@ -65845,9 +66244,6 @@
"CVE-2021-20317": {
"cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-3594": {
"cmt_msg": "r8152: Rate limit overflow messages"
},
@@ -66418,9 +66814,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -68050,6 +68443,9 @@
"CVE-2021-39714": {
"cmt_msg": "staging: android: ion: Drop ion_map_kernel interface"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-19966": {
"cmt_msg": "media: cpia2: Fix use-after-free in cpia2_exit"
},
@@ -68764,8 +69160,11 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -68839,6 +69238,9 @@
"CVE-2022-3424": {
"cmt_msg": "misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -68962,6 +69364,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2020-14314": {
"cmt_msg": "ext4: fix potential negative array index in do_split()"
},
@@ -69091,6 +69496,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-0447": {
"cmt_msg": "l2tp: protect sock pointer of struct pppol2tp_session with RCU"
},
@@ -69184,6 +69592,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-26141": {
"cmt_msg": "ath10k: Fix TKIP Michael MIC verification for PCIe"
},
@@ -69649,6 +70060,9 @@
"CVE-2018-10876": {
"cmt_msg": "ext4: only look at the bg_flags field if it is valid"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -70339,15 +70753,9 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
},
@@ -70809,6 +71217,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -71032,7 +71443,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -71262,6 +71673,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -71337,6 +71751,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-1390": {
"cmt_msg": "tipc: fix NULL deref in tipc_link_xmit()"
},
@@ -71475,6 +71892,9 @@
"CVE-2020-12768": {
"cmt_msg": "KVM: SVM: Fix potential memory leak in svm_cpu_init()"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -71568,6 +71988,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -71919,6 +72342,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
},
@@ -71961,6 +72387,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -72394,7 +72823,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
@@ -72881,6 +73310,9 @@
"CVE-2021-28712": {
"cmt_msg": "xen/netfront: harden netfront against event channel storms"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2018-10938": {
"cmt_msg": "Cipso: cipso_v4_optptr enter infinite loop"
},
@@ -73196,6 +73628,9 @@
"CVE-2021-20321": {
"cmt_msg": "ovl: fix missing negative dentry check in ovl_rename()"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2018-12127": {
"cmt_msg": "s390/speculation: Support 'mitigations=' cmdline option"
},
@@ -73775,6 +74210,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -73782,7 +74220,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -73871,6 +74309,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -73943,6 +74384,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -74081,6 +74525,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -74264,6 +74711,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-7895": {
"cmt_msg": "nfsd: stricter decoding of write-like NFSv2/v3 ops"
},
@@ -75290,9 +75740,6 @@
"CVE-2021-37576": {
"cmt_msg": "KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2016-4569": {
"cmt_msg": "ALSA: timer: Fix leak in SNDRV_TIMER_IOCTL_PARAMS"
},
@@ -75887,9 +76334,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -76196,6 +76640,9 @@
"CVE-2020-36322": {
"cmt_msg": "fuse: fix bad inode"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2020-35508": {
"cmt_msg": "fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent"
},
@@ -76349,6 +76796,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -76563,7 +77013,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -76850,6 +77300,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-1390": {
"cmt_msg": "tipc: fix NULL deref in tipc_link_xmit()"
},
@@ -76973,6 +77426,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -77054,6 +77510,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -77399,6 +77858,9 @@
"CVE-2021-3428": {
"cmt_msg": "ext4: handle error of ext4_setup_system_zone() on remount"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -77435,6 +77897,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -77868,7 +78333,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -78145,6 +78610,9 @@
"CVE-2020-36322": {
"cmt_msg": "fuse: fix bad inode"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2020-35508": {
"cmt_msg": "fork: fix copy_process(CLONE_PARENT) race with the exiting ->real_parent"
},
@@ -78298,6 +78766,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -78451,6 +78922,9 @@
"CVE-2021-28964": {
"cmt_msg": "btrfs: fix race when cloning extent buffer during rewind of an old root"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2021-4083": {
"cmt_msg": "fget: check that the fd still exists after getting a ref to it"
},
@@ -78506,7 +78980,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -78892,6 +79366,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -78970,6 +79447,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -79288,6 +79768,9 @@
"CVE-2022-20166": {
"cmt_msg": "drivers core: Use sysfs_emit and sysfs_emit_at for show(device *...) functions"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -79327,6 +79810,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -79748,7 +80234,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -79978,6 +80464,9 @@
"CVE-2020-36322": {
"cmt_msg": "fuse: fix bad inode"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-3649": {
"cmt_msg": "nilfs2: fix use-after-free bug of struct nilfs_root"
},
@@ -80131,6 +80620,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2020-26145": {
"cmt_msg": "ath10k: drop fragments with multicast DA for PCIe"
},
@@ -80275,6 +80767,9 @@
"CVE-2021-28964": {
"cmt_msg": "btrfs: fix race when cloning extent buffer during rewind of an old root"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2021-4083": {
"cmt_msg": "fget: check that the fd still exists after getting a ref to it"
},
@@ -80327,7 +80822,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -80710,6 +81205,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -80785,6 +81283,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -81097,6 +81598,9 @@
"CVE-2022-20166": {
"cmt_msg": "drivers core: Use sysfs_emit and sysfs_emit_at for show(device *...) functions"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -81130,6 +81634,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -81530,7 +82037,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -85553,6 +86060,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -85697,6 +86207,9 @@
"CVE-2021-4037": {
"cmt_msg": "xfs: fix up non-directory creation in SGID directories"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-45884": {
"cmt_msg": ""
},
@@ -85730,6 +86243,9 @@
"CVE-2020-26145": {
"cmt_msg": "ath10k: drop fragments with multicast DA for PCIe"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-25265": {
"cmt_msg": ""
},
@@ -85838,6 +86354,9 @@
"CVE-2020-36691": {
"cmt_msg": "netlink: limit recursion depth in policy validation"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -85850,6 +86369,9 @@
"CVE-2022-44033": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2013-7445": {
"cmt_msg": ""
},
@@ -85883,6 +86405,9 @@
"CVE-2019-19927": {
"cmt_msg": "drm/ttm: fix incrementing the page pointer for huge pages"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-3636": {
"cmt_msg": "net: ethernet: mtk_eth_soc: use after free in __mtk_ppe_check_skb()"
},
@@ -85979,9 +86504,6 @@
"CVE-2018-20509": {
"cmt_msg": "binder: refactor binder ref inc/dec for thread safety"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2023-26545": {
"cmt_msg": "net: mpls: fix stale pointer if allocation fails during device rename"
},
@@ -86078,6 +86600,9 @@
"CVE-2022-3169": {
"cmt_msg": "nvme: ensure subsystem reset is single threaded"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-4744": {
"cmt_msg": "tun: avoid double free in tun_free_netdev"
},
@@ -86160,7 +86685,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2022-29901": {
"cmt_msg": "x86/kvm/vmx: Make noinstr clean"
@@ -86505,6 +87030,9 @@
"CVE-2019-13631": {
"cmt_msg": "Input: gtco - bounds check collection indent level"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2017-7374": {
"cmt_msg": "fscrypt: remove broken support for detecting keyring key revocation"
},
@@ -86619,6 +87147,9 @@
"CVE-2021-28712": {
"cmt_msg": "xen/netfront: harden netfront against event channel storms"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2017-17558": {
"cmt_msg": "USB: core: prevent malicious bNumInterfaces overflow"
},
@@ -87477,6 +88008,9 @@
"CVE-2019-19319": {
"cmt_msg": "ext4: protect journal inode's blocks using block_validity"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2017-18017": {
"cmt_msg": "netfilter: xt_TCPMSS: add more sanity tests on tcph->doff"
},
@@ -87484,7 +88018,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -87573,6 +88107,9 @@
"CVE-2017-11089": {
"cmt_msg": "cfg80211: Define nla_policy for NL80211_ATTR_LOCAL_MESH_POWER_MODE"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -87630,6 +88167,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -87750,6 +88290,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -87912,6 +88455,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-5576": {
"cmt_msg": "drm/vc4: Fix an integer overflow in temporary allocation layout."
},
@@ -88887,9 +89433,6 @@
"CVE-2021-20317": {
"cmt_msg": "lib/timerqueue: Rely on rbtree semantics for next timer"
},
- "CVE-2023-1855": {
- "cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
- },
"CVE-2022-3594": {
"cmt_msg": "r8152: Rate limit overflow messages"
},
@@ -89454,9 +89997,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -89964,6 +90504,9 @@
"CVE-2019-11085": {
"cmt_msg": "drm/i915/gvt: Fix mmap range check"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2017-17558": {
"cmt_msg": "USB: core: prevent malicious bNumInterfaces overflow"
},
@@ -90801,6 +91344,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2019-19530": {
"cmt_msg": "usb: cdc-acm: make sure a refcount is taken early enough"
},
@@ -90808,7 +91354,7 @@
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-3772": {
"cmt_msg": "sctp: use init_tag from inithdr for ABORT chunk"
@@ -90897,6 +91443,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -90945,6 +91494,9 @@
"CVE-2020-14381": {
"cmt_msg": "futex: Fix inode life-time issue"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2019-19768": {
"cmt_msg": "blktrace: Protect q->blk_trace with RCU"
},
@@ -91056,6 +91608,9 @@
"CVE-2019-20812": {
"cmt_msg": "af_packet: set defaule value for tmo"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2018-1118": {
"cmt_msg": "vhost: fix info leak due to uninitialized memory"
},
@@ -91200,6 +91755,9 @@
"CVE-2018-10322": {
"cmt_msg": "xfs: enhance dinode verifier"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2017-8824": {
"cmt_msg": "dccp: CVE-2017-8824: use-after-free in DCCP code"
},
@@ -91320,6 +91878,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2017-18222": {
"cmt_msg": "net: hns: fix ethtool_get_strings overflow in hns driver"
},
@@ -92664,9 +93225,6 @@
"CVE-2019-15505": {
"cmt_msg": "media: technisat-usb2: break out of loop at end of buffer"
},
- "CVE-2023-1859": {
- "cmt_msg": ""
- },
"CVE-2017-1000": {
"cmt_msg": "udp: consistently apply ufo or fragmentation"
},
@@ -93129,7 +93687,7 @@
"cmt_msg": "Bluetooth: Fix faulty expression for minimum encryption key size check"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-36158": {
"cmt_msg": "mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start"
@@ -93233,6 +93791,9 @@
"CVE-2022-3202": {
"cmt_msg": "jfs: prevent NULL deref in diFree"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -93287,6 +93848,9 @@
"CVE-2020-29660": {
"cmt_msg": "tty: Fix ->session locking"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33624": {
"cmt_msg": "bpf: Inherit expanded/patched seen count from old aux data"
},
@@ -93597,7 +94161,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-17666": {
"cmt_msg": "rtlwifi: Fix potential overflow on P2P code"
@@ -93884,6 +94448,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -93962,6 +94529,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -94280,6 +94850,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -94718,6 +95291,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -94769,6 +95345,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-12771": {
"cmt_msg": "bcache: fix potential deadlock problem in btree_gc_coalesce"
},
@@ -95692,7 +96271,7 @@
"cmt_msg": "netfilter: nf_tables: disallow non-stateful expression in sets earlier"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2020-36158": {
"cmt_msg": "mwifiex: Fix possible buffer overflows in mwifiex_cmd_802_11_ad_hoc_start"
@@ -95802,6 +96381,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -95850,6 +96432,9 @@
"CVE-2020-29660": {
"cmt_msg": "tty: Fix ->session locking"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33624": {
"cmt_msg": "bpf: Inherit expanded/patched seen count from old aux data"
},
@@ -96139,7 +96724,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-17666": {
"cmt_msg": "rtlwifi: Fix potential overflow on P2P code"
@@ -96420,6 +97005,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -96504,6 +97092,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -96747,6 +97338,9 @@
"CVE-2020-10781": {
"cmt_msg": "Revert \"zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()\""
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-26139": {
"cmt_msg": "mac80211: do not accept/forward invalid EAPOL frames"
},
@@ -96819,6 +97413,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -97245,6 +97842,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -98339,6 +98939,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -98381,6 +98984,9 @@
"CVE-2020-29660": {
"cmt_msg": "tty: Fix ->session locking"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33624": {
"cmt_msg": "bpf: Inherit expanded/patched seen count from old aux data"
},
@@ -98640,7 +99246,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-17666": {
"cmt_msg": "rtlwifi: Fix potential overflow on P2P code"
@@ -98894,6 +99500,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -98978,6 +99587,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-18282": {
"cmt_msg": "net/flow_dissector: switch to siphash"
},
@@ -99212,6 +99824,9 @@
"CVE-2020-10781": {
"cmt_msg": "Revert \"zram: convert remaining CLASS_ATTR() to CLASS_ATTR_RO()\""
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-26139": {
"cmt_msg": "mac80211: do not accept/forward invalid EAPOL frames"
},
@@ -99272,6 +99887,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -99701,6 +100319,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -100266,7 +100887,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
@@ -100598,6 +101219,9 @@
}
},
"outstanding": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-3649": {
"cmt_msg": "nilfs2: fix use-after-free bug of struct nilfs_root"
},
@@ -100730,6 +101354,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -100838,6 +101465,9 @@
"CVE-2022-42703": {
"cmt_msg": "mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2022-0264": {
"cmt_msg": "bpf: Fix kernel address leakage in atomic fetch"
},
@@ -100884,7 +101514,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2022-26490": {
"cmt_msg": "nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION"
@@ -101189,6 +101819,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-2639": {
"cmt_msg": "openvswitch: fix OOB access in reserve_sfa_size()"
},
@@ -101249,6 +101882,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1079": {
"cmt_msg": "HID: asus: use spinlock to safely schedule workers"
},
@@ -101495,6 +102131,9 @@
"CVE-2022-26365": {
"cmt_msg": "xen/blkfront: fix leaking data in shared pages"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -101528,6 +102167,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -101859,7 +102501,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -102108,6 +102750,9 @@
}
},
"outstanding": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-3649": {
"cmt_msg": "nilfs2: fix use-after-free bug of struct nilfs_root"
},
@@ -102234,6 +102879,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -102382,7 +103030,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2022-26490": {
"cmt_msg": "nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION"
@@ -102600,6 +103248,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-23454": {
"cmt_msg": "net: sched: cbq: dont intepret cls results when asked to drop"
},
@@ -102681,6 +103332,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-0185": {
"cmt_msg": "vfs: fs_context: fix up param length parsing in legacy_parse_param"
},
@@ -102729,6 +103383,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1079": {
"cmt_msg": "HID: asus: use spinlock to safely schedule workers"
},
@@ -102978,6 +103635,9 @@
"CVE-2022-26365": {
"cmt_msg": "xen/blkfront: fix leaking data in shared pages"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -103008,6 +103668,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-25265": {
"cmt_msg": ""
},
@@ -103321,7 +103984,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -104756,6 +105419,10 @@
"CVE-2021-33656": {
"cmt_msg": "vt: drop old FONT ioctls",
"cmt_id": "3acb7dc242ca25eb258493b513ef2f4b0f2a9ad1"
+ },
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check",
+ "cmt_id": "20119c1e0fff89542ff3272ace87e04cf6ee6bea"
}
},
"5.10.129": {
@@ -105275,6 +105942,10 @@
}
},
"5.10.173": {
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "18c3fa7a7fdbb4d21dafc8a7710ae2c1680930f6"
+ },
"CVE-2023-23004": {
"cmt_msg": "malidp: Fix NULL vs IS_ERR() checking",
"cmt_id": "a5bbea50d622b8f49ab8ee3b0eb283107febcf1a"
@@ -105301,16 +105972,36 @@
}
},
"5.10.176": {
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cmt_id": "c54974ccaff73525462e278602dfe4069877cfaa"
+ },
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "0a73c8b3cc99d214dff83c51805c844240c4f749"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "43aa468df246175207a7d5d7d6d31b231f15b49c"
}
},
"5.10.177": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "75e2144291e847009fbc0350e10ec588ff96e05a"
+ },
+ "CVE-2023-1611": {
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls",
+ "cmt_id": "5f6347034341bf45056ca1ec3fa72040152ecf83"
+ },
"CVE-2022-4379": {
"cmt_msg": "NFSD: fix use-after-free in __nfs42_ssc_open()",
"cmt_id": "01e4c9c03de8a9f8839cb7342bc4bccf9104efe5"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "da3d3fdfb4d523c5da30e35a8dd90e04f0fd8962"
+ },
"CVE-2023-28466": {
"cmt_msg": "net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()",
"cmt_id": "1fde5782f187daa05919d2bebd872df8ebcc00d1"
@@ -105372,6 +106063,9 @@
"CVE-2023-23000": {
"cmt_msg": "phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -105661,7 +106355,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
@@ -105681,9 +106375,6 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
- "CVE-2023-1611": {
- "cmt_msg": ""
- },
"CVE-2023-26242": {
"cmt_msg": ""
},
@@ -106017,6 +106708,9 @@
}
},
"outstanding": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-3649": {
"cmt_msg": "nilfs2: fix use-after-free bug of struct nilfs_root"
},
@@ -106155,6 +106849,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2020-26145": {
"cmt_msg": "ath10k: drop fragments with multicast DA for PCIe"
},
@@ -106287,6 +106984,9 @@
"CVE-2022-42703": {
"cmt_msg": "mm/rmap: Fix anon_vma->degree ambiguity leading to double-reuse"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2021-4083": {
"cmt_msg": "fget: check that the fd still exists after getting a ref to it"
},
@@ -106333,7 +107033,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -106680,6 +107380,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -106746,6 +107449,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -107019,6 +107725,9 @@
"CVE-2022-26365": {
"cmt_msg": "xen/blkfront: fix leaking data in shared pages"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -107052,6 +107761,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -107398,7 +108110,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -107970,6 +108682,9 @@
"CVE-2023-1670": {
"cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -108000,6 +108715,9 @@
"CVE-2021-33061": {
"cmt_msg": "ixgbe: add improvement for MDD response functionality"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2023-0179": {
"cmt_msg": "netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits"
},
@@ -108138,6 +108856,9 @@
"CVE-2022-47938": {
"cmt_msg": "ksmbd: prevent out of bound read for SMB2_TREE_CONNNECT"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2023-0590": {
"cmt_msg": "net: sched: fix race condition in qdisc_graft()"
},
@@ -108276,6 +108997,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -108429,6 +109153,9 @@
"CVE-2021-3714": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-1943": {
"cmt_msg": "udf: Avoid using stale lengthOfImpUse"
},
@@ -108513,6 +109240,9 @@
"CVE-2022-36946": {
"cmt_msg": "netfilter: nf_queue: do not allow packet truncation below transport header offset"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-36123": {
"cmt_msg": "x86: Clear .brk area at early boot"
},
@@ -108652,7 +109382,7 @@
"cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-3526": {
"cmt_msg": "macvlan: Fix leaking skb in source mode with nodst option"
@@ -108685,7 +109415,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-1195": {
"cmt_msg": "cifs: fix use-after-free caused by invalid pointer `hostname`"
@@ -108720,6 +109450,9 @@
"CVE-2023-1513": {
"cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-3847": {
"cmt_msg": ""
},
@@ -108906,9 +109639,9 @@
}
},
"5.17.3": {
- "CVE-2022-28893": {
- "cmt_msg": "SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()",
- "cmt_id": "d21287d8a4589dd8513038f887ece980fbc399cf"
+ "CVE-2022-29582": {
+ "cmt_msg": "io_uring: fix race between timeout flush and removal",
+ "cmt_id": "11cd7959400258beb1dc17c8680055966263f316"
},
"CVE-2022-1263": {
"cmt_msg": "KVM: avoid NULL pointer dereference in kvm_dirty_ring_push",
@@ -108918,13 +109651,17 @@
"cmt_msg": "jfs: prevent NULL deref in diFree",
"cmt_id": "2e0e1de4f7a17e0886524c1d6701b8e2bf5a7363"
},
- "CVE-2022-29582": {
- "cmt_msg": "io_uring: fix race between timeout flush and removal",
- "cmt_id": "11cd7959400258beb1dc17c8680055966263f316"
- },
"CVE-2023-1637": {
"cmt_msg": "x86/speculation: Restore speculation related MSRs during S3 resume",
"cmt_id": "9ffaef8717992fd23184a745ca8224d9635f9db3"
+ },
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment",
+ "cmt_id": "d657effd9029e9901243a6cec0467d425ab1fde5"
+ },
+ "CVE-2022-28893": {
+ "cmt_msg": "SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()",
+ "cmt_id": "d21287d8a4589dd8513038f887ece980fbc399cf"
}
},
"5.17.4": {
@@ -109213,6 +109950,9 @@
"CVE-2021-33061": {
"cmt_msg": "ixgbe: add improvement for MDD response functionality"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2023-0179": {
"cmt_msg": "netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits"
},
@@ -109330,6 +110070,9 @@
"CVE-2022-47938": {
"cmt_msg": "ksmbd: prevent out of bound read for SMB2_TREE_CONNNECT"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-21505": {
"cmt_msg": "lockdown: Fix kexec lockdown bypass with ima policy"
},
@@ -109456,6 +110199,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -109582,6 +110328,9 @@
"CVE-2021-3714": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2023-0468": {
"cmt_msg": "io_uring: make poll refs more robust"
},
@@ -109654,6 +110403,9 @@
"CVE-2022-36946": {
"cmt_msg": "netfilter: nf_queue: do not allow packet truncation below transport header offset"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-36123": {
"cmt_msg": "x86: Clear .brk area at early boot"
},
@@ -109781,7 +110533,7 @@
"cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-23559": {
"cmt_msg": "wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid"
@@ -109811,7 +110563,7 @@
"cmt_msg": "KVM: SEV: add cache flush to solve SEV cache incoherency issues"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-1195": {
"cmt_msg": "cifs: fix use-after-free caused by invalid pointer `hostname`"
@@ -109846,6 +110598,9 @@
"CVE-2023-1513": {
"cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-3847": {
"cmt_msg": ""
},
@@ -110076,6 +110831,9 @@
}
},
"outstanding": {
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-3649": {
"cmt_msg": "nilfs2: fix use-after-free bug of struct nilfs_root"
},
@@ -110196,6 +110954,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -110341,7 +111102,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2022-26490": {
"cmt_msg": "nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION"
@@ -110556,6 +111317,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-23454": {
"cmt_msg": "net: sched: cbq: dont intepret cls results when asked to drop"
},
@@ -110637,6 +111401,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-0185": {
"cmt_msg": "vfs: fs_context: fix up param length parsing in legacy_parse_param"
},
@@ -110682,6 +111449,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1079": {
"cmt_msg": "HID: asus: use spinlock to safely schedule workers"
},
@@ -110892,6 +111662,9 @@
"CVE-2022-26365": {
"cmt_msg": "xen/blkfront: fix leaking data in shared pages"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2022-23041": {
"cmt_msg": "xen/9p: use alloc/free_pages_exact()"
},
@@ -110916,6 +111689,9 @@
"CVE-2022-26966": {
"cmt_msg": "sr9700: sanity check for packet length"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2022-25265": {
"cmt_msg": ""
},
@@ -111202,7 +111978,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-1516": {
"cmt_msg": "net/x25: Fix null-ptr-deref caused by x25_disconnect"
@@ -112037,6 +112813,12 @@
"cmt_id": "d74f4eb1ddf076a55ff0682a89e66af5c1974321"
}
},
+ "5.15.51": {
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check",
+ "cmt_id": "5b45535865d62633e3816ee30eb8d3213038dc17"
+ }
+ },
"5.15.53": {
"CVE-2022-2318": {
"cmt_msg": "net: rose: fix UAF bugs caused by timer handler",
@@ -112659,23 +113441,43 @@
"CVE-2023-23004": {
"cmt_msg": "malidp: Fix NULL vs IS_ERR() checking",
"cmt_id": "1c7988d5c79f72287177bb774cde15fde69f3c97"
+ },
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "7c183dc0af472dec33d2c0786a5e356baa8cad19"
}
},
"5.15.104": {
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cmt_id": "9c2f09add608a505f0e5fb694805f4766801583f"
+ },
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "7091951c2ca9d3fbec75ef1d677cbd89eeac9793"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "84dd9cc34014e3a3dcce0eb6d54b8a067e97676b"
}
},
"5.15.105": {
- "CVE-2022-4269": {
- "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
- "cmt_id": "169a41073993add6b0cfdc44e168e75f92f4834d"
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "0fdb1cc4fe5255d0198c332b961bc4c1f8787982"
},
"CVE-2022-4379": {
"cmt_msg": "NFSD: fix use-after-free in __nfs42_ssc_open()",
"cmt_id": "ec5b7814353532243e8a9147d232a32549174909"
},
+ "CVE-2022-4269": {
+ "cmt_msg": "act_mirred: use the backlog for nested calls to mirred ingress",
+ "cmt_id": "169a41073993add6b0cfdc44e168e75f92f4834d"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "8efae2112d910d8e5166dd0a836791b08721eef1"
+ },
"CVE-2023-28466": {
"cmt_msg": "net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()",
"cmt_id": "0b54d75aa43a1edebc8a3770901f5c3557ee0daa"
@@ -112685,6 +113487,12 @@
"cmt_id": "4ab9e85a5ce0b2ef6e63abf861179898da613d78"
}
},
+ "5.15.106": {
+ "CVE-2023-1611": {
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls",
+ "cmt_id": "c976f9233ef926e090db5614a837824a0bcab3fb"
+ }
+ },
"outstanding": {
"CVE-2023-0160": {
"cmt_msg": ""
@@ -112725,6 +113533,9 @@
"CVE-2023-23000": {
"cmt_msg": "phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -112954,7 +113765,7 @@
"cmt_msg": ""
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2018-12929": {
"cmt_msg": ""
@@ -112971,9 +113782,6 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
- "CVE-2023-1611": {
- "cmt_msg": ""
- },
"CVE-2023-1194": {
"cmt_msg": ""
},
@@ -113362,6 +114170,9 @@
"CVE-2022-3202": {
"cmt_msg": "jfs: prevent NULL deref in diFree"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2019-11477": {
"cmt_msg": "tcp: limit payload size of sacked skbs"
},
@@ -113416,6 +114227,9 @@
"CVE-2020-29660": {
"cmt_msg": "tty: Fix ->session locking"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33624": {
"cmt_msg": "bpf: Inherit expanded/patched seen count from old aux data"
},
@@ -113699,7 +114513,7 @@
"cmt_msg": "drm/i915: Lower RM timeout to avoid DSI hard hangs"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-2961": {
"cmt_msg": ""
@@ -113762,7 +114576,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-17666": {
"cmt_msg": "rtlwifi: Fix potential overflow on P2P code"
@@ -114052,6 +114866,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -114133,6 +114950,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2019-19227": {
"cmt_msg": "appletalk: Fix potential NULL pointer dereference in unregister_snap_client"
},
@@ -114475,6 +115295,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -114934,6 +115757,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -114988,6 +115814,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2020-12771": {
"cmt_msg": "bcache: fix potential deadlock problem in btree_gc_coalesce"
},
@@ -117645,6 +118474,10 @@
"CVE-2021-33656": {
"cmt_msg": "vt: drop old FONT ioctls",
"cmt_id": "c87e851b23e5cb2ba90a3049ef38340ed7d5746f"
+ },
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check",
+ "cmt_id": "c7bdaad9cbfe17c83e4f56c7bb7a2d87d944f0fb"
}
},
"5.4.204": {
@@ -118080,33 +118913,53 @@
"cmt_msg": "HID: asus: use spinlock to safely schedule workers",
"cmt_id": "dd08e68d04d08d2f42b09162c939a0b0841216cc"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier",
+ "cmt_id": "7a6fb69bbcb21e9ce13bdf18c008c268874f0480"
+ },
"CVE-2023-1118": {
"cmt_msg": "media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()",
"cmt_id": "d120334278b370b6a1623a75ebe53b0c76cb247c"
}
},
"5.4.238": {
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4",
+ "cmt_id": "65e4c9a6d0c9a8c81ce75576869d46fff5d7964f"
+ },
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition",
"cmt_id": "26c176ce902861a45f8d699e057245ed7e0bcdf2"
+ },
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition",
+ "cmt_id": "b0c202a8dc63008205a5d546559736507a9aae66"
}
},
"5.4.240": {
- "CVE-2023-0590": {
- "cmt_msg": "net: sched: fix race condition in qdisc_graft()",
- "cmt_id": "0f5c0e0a4c0b081e5f959578a8e56c7921e63a2d"
- },
- "CVE-2023-1670": {
- "cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
- "cmt_id": "a07ec453e86abbd14e2d06d59367b4dd11437358"
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition",
+ "cmt_id": "6fe078c2864b9defaa632733a5bae969b398b673"
},
"CVE-2022-4744": {
"cmt_msg": "tun: avoid double free in tun_free_netdev",
"cmt_id": "0c0e566f0387490d16f166808c72e9c772027681"
},
+ "CVE-2023-0590": {
+ "cmt_msg": "net: sched: fix race condition in qdisc_graft()",
+ "cmt_id": "0f5c0e0a4c0b081e5f959578a8e56c7921e63a2d"
+ },
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work",
+ "cmt_id": "a18fb433ceb56e0787546a9d77056dd0f215e762"
+ },
"CVE-2023-28466": {
"cmt_msg": "net: tls: fix possible race condition between do_tls_getsockopt_conf() and do_tls_setsockopt_conf()",
"cmt_id": "754838aa02050ff3d8675bef79d172097218ea71"
+ },
+ "CVE-2023-1670": {
+ "cmt_msg": "xirc2ps_cs: Fix use after free bug in xirc2ps_detach",
+ "cmt_id": "a07ec453e86abbd14e2d06d59367b4dd11437358"
}
},
"outstanding": {
@@ -118173,6 +119026,9 @@
"CVE-2023-23000": {
"cmt_msg": "phy: tegra: xusb: Fix return value of tegra_xusb_find_port_node function"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2020-24503": {
"cmt_msg": ""
},
@@ -118510,7 +119366,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2022-27672": {
"cmt_msg": "x86/speculation: Identify processors vulnerable to SMT RSB predictions"
@@ -118531,7 +119387,7 @@
"cmt_msg": ""
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-26242": {
"cmt_msg": ""
@@ -118700,6 +119556,12 @@
"cmt_id": "bba36a27c38650eefc79d18c33a0acd0dcbeabb8"
}
},
+ "5.18.8": {
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check",
+ "cmt_id": "44bb0618ae37c8a05b93acfcd044b9beb42201dd"
+ }
+ },
"5.18.10": {
"CVE-2022-2318": {
"cmt_msg": "net: rose: fix UAF bugs caused by timer handler",
@@ -118888,6 +119750,9 @@
"CVE-2022-38457": {
"cmt_msg": "drm/vmwgfx: Remove rcu locks from user resources"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2023-23454": {
"cmt_msg": "net: sched: cbq: dont intepret cls results when asked to drop"
},
@@ -118960,6 +119825,9 @@
"CVE-2022-23825": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2023-0179": {
"cmt_msg": "netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits"
},
@@ -119164,6 +120032,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -119429,7 +120300,7 @@
"cmt_msg": "net/sched: tcindex: update imperfect hash filters respecting rcu"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-23559": {
"cmt_msg": "wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid"
@@ -119455,8 +120326,11 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-1195": {
"cmt_msg": "cifs: fix use-after-free caused by invalid pointer `hostname`"
@@ -119491,6 +120365,9 @@
"CVE-2023-1513": {
"cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-3847": {
"cmt_msg": ""
},
@@ -119661,6 +120538,12 @@
"cmt_id": "38d854c4a11c3bbf6a96ea46f14b282670c784ac"
}
},
+ "5.19.15": {
+ "CVE-2022-2978": {
+ "cmt_msg": "fs: fix UAF/GPF bug in nilfs_mdt_destroy",
+ "cmt_id": "81de80330fa6907aec32eb54c5619059e6e36452"
+ }
+ },
"5.19.16": {
"CVE-2022-40768": {
"cmt_msg": "scsi: stex: Properly zero out the passthrough command structure",
@@ -119742,6 +120625,9 @@
"CVE-2022-38457": {
"cmt_msg": "drm/vmwgfx: Remove rcu locks from user resources"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-3619": {
"cmt_msg": "Bluetooth: L2CAP: Fix memory leak in vhci_write"
},
@@ -119787,6 +120673,9 @@
"CVE-2022-23825": {
"cmt_msg": ""
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2023-0179": {
"cmt_msg": "netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits"
},
@@ -119820,9 +120709,6 @@
"CVE-2022-38096": {
"cmt_msg": ""
},
- "CVE-2022-2978": {
- "cmt_msg": "fs: fix UAF/GPF bug in nilfs_mdt_destroy"
- },
"CVE-2022-3595": {
"cmt_msg": "cifs: fix double-fault crash during ntlmssp"
},
@@ -119940,14 +120826,14 @@
"CVE-2022-48425": {
"cmt_msg": ""
},
- "CVE-2022-3624": {
- "cmt_msg": "bonding: fix reference count leak in balance-alb mode"
+ "CVE-2022-3435": {
+ "cmt_msg": "ipv4: Handle attempt to delete multipath route when fib_info contains an nh reference"
},
"CVE-2023-0597": {
"cmt_msg": "x86/mm: Randomize per-cpu entry area"
},
- "CVE-2022-3435": {
- "cmt_msg": "ipv4: Handle attempt to delete multipath route when fib_info contains an nh reference"
+ "CVE-2022-3624": {
+ "cmt_msg": "bonding: fix reference count leak in balance-alb mode"
},
"CVE-2022-4842": {
"cmt_msg": "fs/ntfs3: Fix attr_punch_hole() null pointer derenference"
@@ -119976,6 +120862,9 @@
"CVE-2021-0399": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2017-13694": {
"cmt_msg": ""
},
@@ -120198,6 +121087,9 @@
"CVE-2022-36280": {
"cmt_msg": "drm/vmwgfx: Validate the box size for the snooped cursor"
},
+ "CVE-2023-1998": {
+ "cmt_msg": "x86/speculation: Allow enabling STIBP with legacy IBRS"
+ },
"CVE-2022-45885": {
"cmt_msg": ""
},
@@ -120223,7 +121115,7 @@
"cmt_msg": "net: avoid double iput when sock_alloc_file fails"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-23559": {
"cmt_msg": "wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid"
@@ -120249,8 +121141,11 @@
"CVE-2015-2877": {
"cmt_msg": ""
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2023-1195": {
"cmt_msg": "cifs: fix use-after-free caused by invalid pointer `hostname`"
@@ -120285,6 +121180,9 @@
"CVE-2023-1513": {
"cmt_msg": "kvm: initialize all of the kvm_debugregs structure before sending it to userspace"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-3847": {
"cmt_msg": ""
},
@@ -120828,6 +121726,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -120870,6 +121771,9 @@
"CVE-2020-29660": {
"cmt_msg": "tty: Fix ->session locking"
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2022-1734": {
"cmt_msg": "nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs"
},
@@ -121096,7 +122000,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2019-19037": {
"cmt_msg": "ext4: fix ext4_empty_dir() for directories with holes"
@@ -121344,6 +122248,9 @@
"CVE-2019-19462": {
"cmt_msg": "kernel/relay.c: handle alloc_percpu returning NULL in relay_open"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -121425,6 +122332,9 @@
"CVE-2023-23455": {
"cmt_msg": "net: sched: atm: dont intepret cls results when asked to drop"
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-1390": {
"cmt_msg": "tipc: fix NULL deref in tipc_link_xmit()"
},
@@ -121701,6 +122611,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -122097,6 +123010,9 @@
"CVE-2020-12659": {
"cmt_msg": "xsk: Add missing check on user supplied headroom size"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12652": {
"cmt_msg": "scsi: mptfusion: Fix double fetch bug in ioctl"
},
@@ -122148,6 +123064,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -122617,7 +123536,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
@@ -123007,6 +123926,9 @@
"CVE-2022-2602": {
"cmt_msg": "io_uring/af_unix: defer registered files gc to io_uring release"
},
+ "CVE-2023-2008": {
+ "cmt_msg": "udmabuf: add back sanity check"
+ },
"CVE-2022-1247": {
"cmt_msg": ""
},
@@ -123224,7 +124146,7 @@
"cmt_msg": "ax25: Fix refcount leaks caused by ax25_cb_del()"
},
"CVE-2023-1611": {
- "cmt_msg": ""
+ "cmt_msg": "btrfs: fix race between quota disable and quota assign ioctls"
},
"CVE-2021-34693": {
"cmt_msg": "can: bcm: fix infoleak in struct bcm_msg_head"
@@ -123439,6 +124361,9 @@
"CVE-2020-36312": {
"cmt_msg": "KVM: fix memory leak in kvm_io_bus_unregister_dev()"
},
+ "CVE-2023-30772": {
+ "cmt_msg": "power: supply: da9150: Fix use after free bug in da9150_charger_remove due to race condition"
+ },
"CVE-2022-24958": {
"cmt_msg": "usb: gadget: don't release an existing dev->buf"
},
@@ -123514,6 +124439,9 @@
"CVE-2022-4543": {
"cmt_msg": ""
},
+ "CVE-2023-1829": {
+ "cmt_msg": "net/sched: Retire tcindex classifier"
+ },
"CVE-2023-1390": {
"cmt_msg": "tipc: fix NULL deref in tipc_link_xmit()"
},
@@ -123640,6 +124568,9 @@
"CVE-2018-12931": {
"cmt_msg": ""
},
+ "CVE-2023-1990": {
+ "cmt_msg": "nfc: st-nci: Fix use after free bug in ndlc_remove due to race condition"
+ },
"CVE-2021-33098": {
"cmt_msg": "ixgbe: fix large MTU request from VF"
},
@@ -123727,6 +124658,9 @@
"CVE-2020-27820": {
"cmt_msg": "drm/nouveau: use drm_dev_unplug() during device removal"
},
+ "CVE-2023-1872": {
+ "cmt_msg": "io_uring: propagate issue_flags state down to file assignment"
+ },
"CVE-2023-1078": {
"cmt_msg": "rds: rds_rm_zerocopy_callback() use list_first_entry()"
},
@@ -124072,6 +125006,9 @@
"CVE-2021-3428": {
"cmt_msg": "ext4: handle error of ext4_setup_system_zone() on remount"
},
+ "CVE-2023-30456": {
+ "cmt_msg": "KVM: nVMX: add missing consistency checks for CR0 and CR4"
+ },
"CVE-2020-12656": {
"cmt_msg": "sunrpc: check that domain table is empty at module unload."
},
@@ -124114,6 +125051,9 @@
"CVE-2021-42739": {
"cmt_msg": "media: firewire: firedtv-avc: fix a buffer overflow in avc_ca_pmt()"
},
+ "CVE-2023-1989": {
+ "cmt_msg": "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to unfinished work"
+ },
"CVE-2021-37159": {
"cmt_msg": "usb: hso: fix error handling code of hso_create_net_device"
},
@@ -124550,7 +125490,7 @@
"cmt_msg": "f2fs: fix to do sanity check on inode type during garbage collection"
},
"CVE-2023-1859": {
- "cmt_msg": ""
+ "cmt_msg": "9p/xen : Fix use after free bug in xen_9pfs_front_remove due to race condition"
},
"CVE-2023-1855": {
"cmt_msg": "hwmon: (xgene) Fix use after free bug in xgene_hwmon_remove due to race condition"
diff --git a/data/stream_fixes.json b/data/stream_fixes.json
index c96a541..60cc788 100644
--- a/data/stream_fixes.json
+++ b/data/stream_fixes.json
@@ -33548,6 +33548,10 @@
"cmt_id": "64b79e632869ad3ef6c098a4731d559381da1115",
"fixed_version": "5.15.73"
},
+ "5.19": {
+ "cmt_id": "81de80330fa6907aec32eb54c5619059e6e36452",
+ "fixed_version": "5.19.15"
+ },
"5.4": {
"cmt_id": "70e4f70d54e0225f91814e8610477d65f33cefe4",
"fixed_version": "5.4.218"
@@ -36665,6 +36669,24 @@
"fixed_version": "6.2.9"
}
},
+ "CVE-2023-1611": {
+ "5.10": {
+ "cmt_id": "5f6347034341bf45056ca1ec3fa72040152ecf83",
+ "fixed_version": "5.10.177"
+ },
+ "5.15": {
+ "cmt_id": "c976f9233ef926e090db5614a837824a0bcab3fb",
+ "fixed_version": "5.15.106"
+ },
+ "6.1": {
+ "cmt_id": "a38ff2024805a30d9b96f52557c6ea0bbc31252a",
+ "fixed_version": "6.1.23"
+ },
+ "6.2": {
+ "cmt_id": "4caab245b0469ce9258ba099a41e909f5d307b33",
+ "fixed_version": "6.2.10"
+ }
+ },
"CVE-2023-1637": {
"4.14": {
"cmt_id": "7b5f17024f115b6aa42d2a079326dd0ca8e3449b",
@@ -36739,6 +36761,36 @@
"fixed_version": "6.2.9"
}
},
+ "CVE-2023-1829": {
+ "4.14": {
+ "cmt_id": "53af9c793f644d5841d84d8e0ad83bd7ab47f3e0",
+ "fixed_version": "4.14.308"
+ },
+ "4.19": {
+ "cmt_id": "01d0d2b8b4e3cf2110baba9371c0c3d04ad5c77b",
+ "fixed_version": "4.19.276"
+ },
+ "5.10": {
+ "cmt_id": "18c3fa7a7fdbb4d21dafc8a7710ae2c1680930f6",
+ "fixed_version": "5.10.173"
+ },
+ "5.15": {
+ "cmt_id": "7c183dc0af472dec33d2c0786a5e356baa8cad19",
+ "fixed_version": "5.15.100"
+ },
+ "5.4": {
+ "cmt_id": "7a6fb69bbcb21e9ce13bdf18c008c268874f0480",
+ "fixed_version": "5.4.235"
+ },
+ "6.1": {
+ "cmt_id": "3abebc503a5148072052c229c6b04b329a420ecd",
+ "fixed_version": "6.1.18"
+ },
+ "6.2": {
+ "cmt_id": "372ae77cf11d11fb118cbe2d37def9dd5f826abd",
+ "fixed_version": "6.2.5"
+ }
+ },
"CVE-2023-1838": {
"4.19": {
"cmt_id": "6ca70982c646cc32e458150ee7f2530a24369b8c",
@@ -36795,6 +36847,100 @@
"fixed_version": "6.2.8"
}
},
+ "CVE-2023-1872": {
+ "5.17": {
+ "cmt_id": "d657effd9029e9901243a6cec0467d425ab1fde5",
+ "fixed_version": "5.17.3"
+ }
+ },
+ "CVE-2023-1989": {
+ "4.14": {
+ "cmt_id": "95eacef5692545f199fae4e52abfbfa273acb351",
+ "fixed_version": "4.14.312"
+ },
+ "4.19": {
+ "cmt_id": "af4d48754d5517d33bac5e504ff1f1de0808e29e",
+ "fixed_version": "4.19.280"
+ },
+ "5.10": {
+ "cmt_id": "da3d3fdfb4d523c5da30e35a8dd90e04f0fd8962",
+ "fixed_version": "5.10.177"
+ },
+ "5.15": {
+ "cmt_id": "8efae2112d910d8e5166dd0a836791b08721eef1",
+ "fixed_version": "5.15.105"
+ },
+ "5.4": {
+ "cmt_id": "a18fb433ceb56e0787546a9d77056dd0f215e762",
+ "fixed_version": "5.4.240"
+ },
+ "6.1": {
+ "cmt_id": "cbf8deacb7053ce3e3fed64b277c6c6989e65bba",
+ "fixed_version": "6.1.22"
+ },
+ "6.2": {
+ "cmt_id": "c59c65a14e8f7d738429648833f3bb3f9df0513f",
+ "fixed_version": "6.2.9"
+ }
+ },
+ "CVE-2023-1990": {
+ "4.14": {
+ "cmt_id": "2156490c4b7cacda9a18ec99929940b8376dc0e3",
+ "fixed_version": "4.14.311"
+ },
+ "4.19": {
+ "cmt_id": "3405eb641dafcc8b28d174784b203c1622c121bf",
+ "fixed_version": "4.19.279"
+ },
+ "5.10": {
+ "cmt_id": "43aa468df246175207a7d5d7d6d31b231f15b49c",
+ "fixed_version": "5.10.176"
+ },
+ "5.15": {
+ "cmt_id": "84dd9cc34014e3a3dcce0eb6d54b8a067e97676b",
+ "fixed_version": "5.15.104"
+ },
+ "5.4": {
+ "cmt_id": "b0c202a8dc63008205a5d546559736507a9aae66",
+ "fixed_version": "5.4.238"
+ },
+ "6.1": {
+ "cmt_id": "5e331022b448fbc5e76f24349cd0246844dcad25",
+ "fixed_version": "6.1.21"
+ },
+ "6.2": {
+ "cmt_id": "f589e5b56c562d99ea74e05b1c3f0eab78aa17a3",
+ "fixed_version": "6.2.8"
+ }
+ },
+ "CVE-2023-1998": {
+ "6.1": {
+ "cmt_id": "08d87c87d6461d16827c9b88d84c48c26b6c994a",
+ "fixed_version": "6.1.16"
+ },
+ "6.2": {
+ "cmt_id": "ead3c8e54d28fa1d5454b1f8a21b96b4a969b1cb",
+ "fixed_version": "6.2.3"
+ }
+ },
+ "CVE-2023-2008": {
+ "5.10": {
+ "cmt_id": "20119c1e0fff89542ff3272ace87e04cf6ee6bea",
+ "fixed_version": "5.10.127"
+ },
+ "5.15": {
+ "cmt_id": "5b45535865d62633e3816ee30eb8d3213038dc17",
+ "fixed_version": "5.15.51"
+ },
+ "5.18": {
+ "cmt_id": "44bb0618ae37c8a05b93acfcd044b9beb42201dd",
+ "fixed_version": "5.18.8"
+ },
+ "5.4": {
+ "cmt_id": "c7bdaad9cbfe17c83e4f56c7bb7a2d87d944f0fb",
+ "fixed_version": "5.4.202"
+ }
+ },
"CVE-2023-20928": {
"5.15": {
"cmt_id": "622ef885a89ad04cfb76ee478fb44f051125d1f1",
@@ -37228,5 +37374,57 @@
"cmt_id": "8497222b22b591c6b2d106e0e3c1672ffe4e10e0",
"fixed_version": "6.2.9"
}
+ },
+ "CVE-2023-30456": {
+ "5.10": {
+ "cmt_id": "c54974ccaff73525462e278602dfe4069877cfaa",
+ "fixed_version": "5.10.176"
+ },
+ "5.15": {
+ "cmt_id": "9c2f09add608a505f0e5fb694805f4766801583f",
+ "fixed_version": "5.15.104"
+ },
+ "5.4": {
+ "cmt_id": "65e4c9a6d0c9a8c81ce75576869d46fff5d7964f",
+ "fixed_version": "5.4.238"
+ },
+ "6.1": {
+ "cmt_id": "4bba9c8adec804f03d12dc762e50d083ee88b6b0",
+ "fixed_version": "6.1.21"
+ },
+ "6.2": {
+ "cmt_id": "71d05b9fa0bfc131a6e2250dea045a818ff25550",
+ "fixed_version": "6.2.8"
+ }
+ },
+ "CVE-2023-30772": {
+ "4.14": {
+ "cmt_id": "bbf45f079f41efcf1e51bb65a0a45d2b31061bd5",
+ "fixed_version": "4.14.312"
+ },
+ "4.19": {
+ "cmt_id": "533d915899b4a5a7b5b5a99eec24b2920ccd1f11",
+ "fixed_version": "4.19.280"
+ },
+ "5.10": {
+ "cmt_id": "75e2144291e847009fbc0350e10ec588ff96e05a",
+ "fixed_version": "5.10.177"
+ },
+ "5.15": {
+ "cmt_id": "0fdb1cc4fe5255d0198c332b961bc4c1f8787982",
+ "fixed_version": "5.15.105"
+ },
+ "5.4": {
+ "cmt_id": "6fe078c2864b9defaa632733a5bae969b398b673",
+ "fixed_version": "5.4.240"
+ },
+ "6.1": {
+ "cmt_id": "47b2e1a67e6da172bb4cf69ef9dafde4458bde5f",
+ "fixed_version": "6.1.22"
+ },
+ "6.2": {
+ "cmt_id": "a7d686b36aa8021ee96128290ac3b58c4c1f6297",
+ "fixed_version": "6.2.9"
+ }
}
}
\ No newline at end of file
