Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9578d46d by Salvatore Bonaccorso at 2025-02-10T17:51:47+01:00 Merge Linux CVEs from kernel-sec - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,40 @@ +CVE-2025-21693 [mm: zswap: properly synchronize freeing resources during CPU hotunplug] + - linux 6.12.12-1 + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/12dcb0ef540629a281533f9dedc1b6b8e14cfb65 (6.13) +CVE-2025-21692 [net: sched: fix ets qdisc OOB Indexing] + - linux 6.12.12-1 + [bookworm] - linux 6.1.128-1 + NOTE: https://git.kernel.org/linus/d62b04fca4340a0d468d7853bd66e511935a18cb (6.14-rc1) +CVE-2025-21691 [cachestat: fix page cache statistics permission checking] + - linux 6.12.12-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/5f537664e705b0bf8b7e329861f20128534f6a83 (6.14-rc1) +CVE-2025-21690 [scsi: storvsc: Ratelimit warning logs to prevent VM denial of service] + - linux 6.12.12-1 + [bookworm] - linux 6.1.128-1 + NOTE: https://git.kernel.org/linus/d2138eab8cde61e0e6f62d0713e45202e8457d6d (6.14-rc1) +CVE-2025-21689 [USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb()] + - linux 6.12.12-1 + [bookworm] - linux 6.1.128-1 + NOTE: https://git.kernel.org/linus/575a5adf48b06a2980c9eeffedf699ed5534fade (6.14-rc1) +CVE-2025-21688 [drm/v3d: Assign job pointer to NULL before signaling the fence] + - linux 6.12.12-1 + [bookworm] - linux 6.1.128-1 + NOTE: https://git.kernel.org/linus/6e64d6b3a3c39655de56682ec83e894978d23412 (6.14-rc1) +CVE-2025-21687 [vfio/platform: check the bounds of read/write syscalls] + - linux 6.12.12-1 + [bookworm] - linux 6.1.128-1 + NOTE: https://git.kernel.org/linus/ce9ff21ea89d191e477a02ad7eabf4f996b80a69 (6.14-rc1) +CVE-2025-21686 [io_uring/rsrc: require cloned buffers to share accounting contexts] + - linux 6.12.12-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/19d340a2988d4f3e673cded9dde405d727d7e248 (6.14-rc1) +CVE-2024-57950 [drm/amd/display: Initialize denominator defaults to 1] + - linux 6.12.12-1 + NOTE: https://git.kernel.org/linus/36b23e3baf9129d5b6c3a3a85b6b7ffb75ae287c (6.13) CVE-2025-21685 (In the Linux kernel, the following vulnerability has been resolved: p ...) - linux 6.12.11-1 [bookworm] - linux <not-affected> (Vulnerable code not present) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9578d46d79f7df624e22e91596fd308fdec26c25 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9578d46d79f7df624e22e91596fd308fdec26c25 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
