Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: d39e9c4b by Salvatore Bonaccorso at 2025-04-08T20:33:15+02:00 Merge Linux CVEs from kernel-sec - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,44 @@ +CVE-2025-22017 [devlink: fix xa_alloc_cyclic() error handling] + - linux 6.12.21-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/f3b97b7d4bf316c3991e5634c9f4847c2df35478 (6.14) +CVE-2025-22016 [dpll: fix xa_alloc_cyclic() error handling] + - linux 6.12.21-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/3614bf90130d60f191a5fe218d04f6251c678e13 (6.14) +CVE-2025-22015 [mm/migrate: fix shmem xarray update during migration] + - linux 6.12.21-1 + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/60cf233b585cdf1f3c5e52d1225606b86acd08b0 (6.14) +CVE-2025-22014 [soc: qcom: pdr: Fix the potential deadlock] + - linux 6.12.21-1 + NOTE: https://git.kernel.org/linus/2eeb03ad9f42dfece63051be2400af487ddb96d2 (6.14) +CVE-2025-22013 [KVM: arm64: Unconditionally save+flush host FPSIMD/SVE/SME state] + - linux 6.12.21-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/fbc7e61195e23f744814e78524b73b59faa54ab4 (6.14-rc3) +CVE-2025-22012 [Revert "arm64: dts: qcom: sdm845: Affirm IDR0.CCTW on apps_smmu"] + - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/f00db31d235946853fb430de8c6aa1295efc8353 (6.14) +CVE-2025-22011 [ARM: dts: bcm2711: Fix xHCI power-domain] + - linux 6.12.21-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/f44fa354a0715577ca32b085f6f60bcf32c748dd (6.14) +CVE-2025-22010 [RDMA/hns: Fix soft lockup during bt pages loop] + - linux 6.12.21-1 + NOTE: https://git.kernel.org/linus/25655580136de59ec89f09089dd28008ea440fc9 (6.14) +CVE-2025-22009 [regulator: dummy: force synchronous probing] + - linux 6.12.21-1 + [bookworm] - linux <not-affected> (Vulnerable code not present) + [bullseye] - linux <not-affected> (Vulnerable code not present) + NOTE: https://git.kernel.org/linus/8619909b38eeebd3e60910158d7d68441fc954e9 (6.14) +CVE-2025-22008 [regulator: check that dummy regulator has been probed before using it] + - linux 6.12.21-1 + NOTE: https://git.kernel.org/linus/2c7a50bec4958f1d1c84d19cde518d0e96a676fd (6.14) CVE-2025-31498 [use-after-free] - c-ares 1.34.5-1 [bookworm] - c-ares <not-affected> (Vulnerable code not present) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d39e9c4b04a21ca8bb1f53083a1e7284ef9dcb74 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d39e9c4b04a21ca8bb1f53083a1e7284ef9dcb74 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
