Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4e52bd47 by Salvatore Bonaccorso at 2022-02-25T07:27:01+01:00
Sync CVEs with kernel-sec
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1945,8 +1945,10 @@ CVE-2022-25267
CVE-2022-25266
RESERVED
CVE-2022-25265 (In the Linux kernel through 5.16.10, certain binary files may
have the ...)
- - linux <unfixed>
+ - linux <unfixed> (unimportant)
NOTE: https://github.com/x0reaxeax/exec-prot-bypass
+ NOTE: Not considered a security flaw. If desired because no need for
backward compatibility
+ NOTE: can be mitigated through a LSM.
CVE-2022-25264
RESERVED
CVE-2022-25263
@@ -2024,7 +2026,7 @@ CVE-2022-0648
CVE-2022-0647
RESERVED
CVE-2022-0646 (A flaw use after free in the Linux kernel Management Component
Transpo ...)
- - linux <unfixed>
+ - linux <not-affected> (Vulnerable code introduced later)
NOTE:
https://lore.kernel.org/all/20220211011552.1861886-1...@codeconstruct.com.au/T/
CVE-2022-0645
RESERVED
@@ -2911,6 +2913,7 @@ CVE-2022-24960
RESERVED
CVE-2022-24959 (An issue was discovered in the Linux kernel before 5.16.5.
There is a ...)
- linux 5.16.7-1
+ [stretch] - linux <not-affected> (Vulnerable code introduced later)
NOTE:
https://git.kernel.org/linus/29eb31542787e1019208a2e1047bb7c76c069536 (5.17-rc2)
CVE-2022-24958 (drivers/usb/gadget/legacy/inode.c in the Linux kernel through
5.16.8 m ...)
- linux <unfixed>
@@ -4527,6 +4530,9 @@ CVE-2022-24309
CVE-2022-0480
RESERVED
- linux 5.15.3-1
+ [bullseye] - linux <ignored> (Minor issue)
+ [buster] - linux <ignored> (Minor issue)
+ [stretch] - linux <ignored> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2049700
NOTE:
https://git.kernel.org/linus/0f12156dff2862ac54235fc72703f18770769042 (5.15-rc1)
CVE-2022-0479
@@ -4815,9 +4821,10 @@ CVE-2021-46661 (MariaDB through 10.5.9 allows an
application crash in find_field
NOTE: Fixed in MariaDB: 10.7.3, 10.6.7, 10.5.15, 10.4.24, 10.3.34,
10.2.43
CVE-2021-4218
RESERVED
- - linux 5.8.7-1
+ - linux <not-affected> (Vulnerable code not present; specific to
CentOS/RHEL)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2048359
- NOTE: Fixed by:
https://git.kernel.org/linus/32927393dc1ccd60fb2bdc05b9e8e88753761469 (5.8-rc1)
+ NOTE: Issue is specific to CentOS/RHEL. In mainline, xprtrdma always
used copy_to_user()
+ NOTE: until the general conversion of sysctls to use a kernel buffer.
CVE-2022-24282
RESERVED
CVE-2022-24281
@@ -5876,6 +5883,9 @@ CVE-2022-0383
RESERVED
CVE-2022-0382 (An information leak flaw was found due to uninitialized memory
in the ...)
- linux 5.15.15-1
+ [bullseye] - linux <not-affected> (Vulnerable code not present)
+ [buster] - linux <not-affected> (Vulnerable code not present)
+ [stretch] - linux <not-affected> (Vulnerable code not present)
NOTE: Fixed by:
https://git.kernel.org/linus/d6d86830705f173fca6087a3e67ceaf68db80523
CVE-2022-0381 (The Embed Swagger WordPress plugin is vulnerable to Reflected
Cross-Si ...)
NOT-FOR-US: WordPress plugin
@@ -13658,6 +13668,7 @@ CVE-2021-4161 (The affected products contain vulnerable
firmware, which could al
CVE-2021-45469 (In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel
through 5.15 ...)
{DSA-5050-1}
- linux 5.15.15-1
+ [stretch] - linux <ignored> (Minor issue; f2fs is not supportable)
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=215235
CVE-2021-45468 (Imperva Web Application Firewall (WAF) before 2021-12-23
allows remote ...)
NOT-FOR-US: Imperva Web Application Firewall
@@ -14162,7 +14173,7 @@ CVE-2021-45452 (Storage.save in Django 2.2 before
2.2.26, 3.2 before 3.2.11, and
NOTE:
https://github.com/django/django/commit/4cb35b384ceef52123fc66411a73c36a706825e1
(2.2.26)
CVE-2021-4150 [Block subsystem mishandles reference counts]
RESERVED
- - linux 5.15.3-1
+ - linux <not-affected> (Vulnerability introduced and fixed in
experimental)
NOTE:
https://git.kernel.org/linus/9fbfabfda25d8774c5a08634fdd2da000a924890 (5.15-rc7)
CVE-2021-4149 [Improper lock operation in btrfs]
RESERVED
@@ -14170,7 +14181,10 @@ CVE-2021-4149 [Improper lock operation in btrfs]
NOTE:
https://git.kernel.org/linus/19ea40dddf1833db868533958ca066f368862211 (5.15-rc6)
CVE-2021-4148 [Improper implementation of block_invalidatepage() allows users
to crash the kernel]
RESERVED
- - linux <unfixed>
+ - linux 5.14.16-1
+ [bullseye] - linux 5.10.84-1
+ [buster] - linux <not-affected> (Vulnerable code not present)
+ [stretch] - linux <not-affected> (Vulnerable code not present)
NOTE: https://lkml.org/lkml/2021/9/17/1037
NOTE: https://lkml.org/lkml/2021/9/12/323
CVE-2021-4147 [deadlock and crash in libxl driver]
@@ -16147,6 +16161,7 @@ CVE-2021-44880 (D-Link devices DIR_878
DIR_878_FW1.30B08_Hotfix_02 and DIR_882 D
NOT-FOR-US: D-Link
CVE-2021-44879 (In gc_data_segment in fs/f2fs/gc.c in the Linux kernel before
5.16.3, ...)
- linux 5.16.7-1
+ [stretch] - linux <ignored> (Minor issue; f2fs is not supportable)
NOTE: https://www.openwall.com/lists/oss-security/2022/02/12/1
NOTE: Fixed by:
https://git.kernel.org/linus/9056d6489f5a41cfbb67f719d2c0ce61ead72d9f (5.17-rc1)
CVE-2021-44878 (Pac4j v5.1 and earlier allows (by default) clients to accept
and succe ...)
@@ -16498,6 +16513,9 @@ CVE-2021-44790 (A carefully crafted request body can
cause a buffer overflow in
CVE-2021-4095
RESERVED
- linux <unfixed>
+ [bullseye] - linux <not-affected> (Vulnerable code introduced later)
+ [buster] - linux <not-affected> (Vulnerable code introduced later)
+ [stretch] - linux <not-affected> (Vulnerable code introduced later)
NOTE:
https://lore.kernel.org/kvm/cafco6xomos7eacn_n6v4txk7xl7iqra2gabg3f7e3naf5ug...@mail.gmail.com/
NOTE:
https://patchwork.kernel.org/project/kvm/patch/20211121125451.9489-12-dw...@infradead.org/
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2031194
@@ -131096,7 +131114,7 @@ CVE-2020-12366 (Insufficient input validation in some
Intel(R) Graphics Drivers
CVE-2020-12365 (Untrusted pointer dereference in some Intel(R) Graphics
Drivers before ...)
NOT-FOR-US: Intel graphics drivers for Windows
CVE-2020-12364 (Null pointer reference in some Intel(R) Graphics Drivers for
Windows* ...)
- - linux <unfixed>
+ - linux 5.14.6-1
[bullseye] - linux <ignored> (Too intrusive to backport)
[buster] - linux <ignored> (Too intrusive to backport)
- firmware-nonfree 20210208-1
@@ -131110,7 +131128,7 @@ CVE-2020-12364 (Null pointer reference in some
Intel(R) Graphics Drivers for Win
NOTE: The vulnerability is fixed in firmware, but needs an updated
Linux kernel to load
NOTE: the updated firmware, thus also marking linux as affected
CVE-2020-12363 (Improper input validation in some Intel(R) Graphics Drivers
for Window ...)
- - linux <unfixed>
+ - linux 5.14.6-1
[bullseye] - linux <ignored> (Too intrusive to backport)
[buster] - linux <ignored> (Too intrusive to backport)
- firmware-nonfree 20210208-1
@@ -131124,7 +131142,7 @@ CVE-2020-12363 (Improper input validation in some
Intel(R) Graphics Drivers for
NOTE: The vulnerability is fixed in firmware, but needs an updated
Linux kernel to load
NOTE: the updated firmware, thus also marking linux as affected
CVE-2020-12362 (Integer overflow in the firmware for some Intel(R) Graphics
Drivers fo ...)
- - linux <unfixed>
+ - linux 5.14.6-1
[bullseye] - linux <ignored> (Too intrusive to backport)
[buster] - linux <ignored> (Too intrusive to backport)
- firmware-nonfree 20210208-1
@@ -155757,6 +155775,7 @@ CVE-2019-19814 (In the Linux kernel 5.0.21, mounting
a crafted f2fs filesystem i
- linux <unfixed>
[bullseye] - linux <no-dsa> (Minor issue)
[buster] - linux <no-dsa> (Minor issue)
+ [stretch] - linux <ignored> (Minor issue; f2fs is not supportable)
CVE-2019-19813 (In the Linux kernel 5.0.21, mounting a crafted btrfs
filesystem image, ...)
{DLA-2586-1 DLA-2385-1}
- linux 5.2.6-1
@@ -160776,6 +160795,7 @@ CVE-2019-19449 (In the Linux kernel 5.0.21, mounting
a crafted f2fs filesystem i
- linux <unfixed>
[bullseye] - linux <postponed> (Minor issue, revisit once fixed
upstream)
[buster] - linux <postponed> (Minor issue, revisit once fixed upstream)
+ [stretch] - linux <ignored> (f2fs is not supportable)
NOTE: https://github.com/bobfuzzer/CVE/tree/master/CVE-2019-19449
CVE-2019-19448 (In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted
btrfs filesy ...)
{DLA-2420-1 DLA-2385-1}
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e52bd471ef7263e4c756a11ce0a60046da28a2b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4e52bd471ef7263e4c756a11ce0a60046da28a2b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
