Update 9Feb24

nluedtke · Feb 9, 2024 · 01f208c · 01f208c
1 parent ffbb141
commit 01f208c
Show file tree

Hide file tree

Showing 110 changed files with 3,355 additions and 737 deletions.
diff --git a/CHANGES.md b/CHANGES.md
@@ -1,73 +1,44 @@
 
 # **Linux Kernel CVE Changes**
 
-## Last Update - 02Feb24 19:06
+## Last Update - 09Feb24 13:51
 
 ### **New CVEs Added:**
 
-[CVE-2021-33630](cves/CVE-2021-33630)  
-[CVE-2021-33631](cves/CVE-2021-33631)  
-[CVE-2023-46343](cves/CVE-2023-46343)  
-[CVE-2023-46838](cves/CVE-2023-46838)  
-[CVE-2023-51042](cves/CVE-2023-51042)  
-[CVE-2023-51043](cves/CVE-2023-51043)  
-[CVE-2023-52340](cves/CVE-2023-52340)  
-[CVE-2023-6200](cves/CVE-2023-6200)  
-[CVE-2023-6915](cves/CVE-2023-6915)  
-[CVE-2024-0562](cves/CVE-2024-0562)  
-[CVE-2024-0564](cves/CVE-2024-0564)  
-[CVE-2024-0565](cves/CVE-2024-0565)  
-[CVE-2024-0582](cves/CVE-2024-0582)  
-[CVE-2024-0584](cves/CVE-2024-0584)  
-[CVE-2024-0607](cves/CVE-2024-0607)  
-[CVE-2024-0639](cves/CVE-2024-0639)  
-[CVE-2024-0641](cves/CVE-2024-0641)  
-[CVE-2024-0646](cves/CVE-2024-0646)  
-[CVE-2024-0775](cves/CVE-2024-0775)  
-[CVE-2024-0841](cves/CVE-2024-0841)  
-[CVE-2024-1085](cves/CVE-2024-1085)  
-[CVE-2024-1086](cves/CVE-2024-1086)  
-[CVE-2024-21803](cves/CVE-2024-21803)  
-[CVE-2024-22099](cves/CVE-2024-22099)  
-[CVE-2024-22705](cves/CVE-2024-22705)  
-[CVE-2024-23307](cves/CVE-2024-23307)  
-[CVE-2024-23848](cves/CVE-2024-23848)  
-[CVE-2024-23849](cves/CVE-2024-23849)  
-[CVE-2024-23850](cves/CVE-2024-23850)  
-[CVE-2024-23851](cves/CVE-2024-23851)  
+[CVE-2023-6240](cves/CVE-2023-6240)  
+[CVE-2024-1312](cves/CVE-2024-1312)  
+[CVE-2024-22386](cves/CVE-2024-22386)  
+[CVE-2024-23196](cves/CVE-2024-23196)  
+[CVE-2024-24855](cves/CVE-2024-24855)  
+[CVE-2024-24857](cves/CVE-2024-24857)  
+[CVE-2024-24858](cves/CVE-2024-24858)  
+[CVE-2024-24859](cves/CVE-2024-24859)  
+[CVE-2024-24860](cves/CVE-2024-24860)  
+[CVE-2024-24861](cves/CVE-2024-24861)  
+[CVE-2024-24864](cves/CVE-2024-24864)  
 
 
 ### **New Versions Checked:**
 
-[4.19.306](streams/4.19)  
-[5.10.209](streams/5.10)  
-[5.15.148](streams/5.15)  
-[5.4.268](streams/5.4)  
-[6.1.76](streams/6.1)  
-[6.6.15](streams/6.6)  
-[6.7.3](streams/6.7)  
+[6.1.77](streams/6.1)  
+[6.6.16](streams/6.6)  
+[6.7.4](streams/6.7)  
 
 
 ### **Updated CVEs:**
 
-[CVE-2017-5753](cves/CVE-2017-5753)  
-[CVE-2022-36402](cves/CVE-2022-36402)  
-[CVE-2023-2177](cves/CVE-2023-2177)  
-[CVE-2023-35827](cves/CVE-2023-35827)  
-[CVE-2023-39198](cves/CVE-2023-39198)  
-[CVE-2023-4010](cves/CVE-2023-4010)  
-[CVE-2023-50431](cves/CVE-2023-50431)  
-[CVE-2023-6040](cves/CVE-2023-6040)  
-[CVE-2023-6610](cves/CVE-2023-6610)  
-[CVE-2023-6622](cves/CVE-2023-6622)  
-[CVE-2023-6817](cves/CVE-2023-6817)  
-[CVE-2022-2585](cves/CVE-2022-2585)  
-[CVE-2022-48619](cves/CVE-2022-48619)  
-[CVE-2023-39197](cves/CVE-2023-39197)  
+[CVE-2020-36766](cves/CVE-2020-36766)  
+[CVE-2023-47233](cves/CVE-2023-47233)  
+[CVE-2024-0564](cves/CVE-2024-0564)  
+[CVE-2024-0841](cves/CVE-2024-0841)  
+[CVE-2024-22705](cves/CVE-2024-22705)  
+[CVE-2024-23849](cves/CVE-2024-23849)  
+[CVE-2024-23850](cves/CVE-2024-23850)  
 [CVE-2023-5178](cves/CVE-2023-5178)  
-[CVE-2023-51780](cves/CVE-2023-51780)  
-[CVE-2023-51781](cves/CVE-2023-51781)  
-[CVE-2023-51782](cves/CVE-2023-51782)  
-[CVE-2023-6531](cves/CVE-2023-6531)  
-[CVE-2024-0340](cves/CVE-2024-0340)  
-[CVE-2024-0443](cves/CVE-2024-0443)  
+[CVE-2023-6238](cves/CVE-2023-6238)  
+[CVE-2023-6356](cves/CVE-2023-6356)  
+[CVE-2023-6535](cves/CVE-2023-6535)  
+[CVE-2023-6536](cves/CVE-2023-6536)  
+[CVE-2024-1085](cves/CVE-2024-1085)  
+[CVE-2024-1086](cves/CVE-2024-1086)  
+[CVE-2024-21803](cves/CVE-2024-21803)  
diff --git a/data/3.12/3.12_CVEs.txt b/data/3.12/3.12_CVEs.txt
@@ -962,7 +962,6 @@ CVE-2020-36386: Fix not seen in stream
 CVE-2020-36557: Fix not seen in stream
 CVE-2020-36558: Fix not seen in stream
 CVE-2020-36691: Fix not seen in stream
-CVE-2020-36766: Fix not seen in stream
 CVE-2020-3702: Fix not seen in stream
 CVE-2020-4788: Fix not seen in stream
 CVE-2020-8647: Fix not seen in stream
@@ -1335,6 +1334,7 @@ CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
 CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
+CVE-2023-6240: Fix unknown
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
 CVE-2023-6535: Fix unknown
@@ -1347,13 +1347,20 @@ CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
-CVE-2024-0564: Fix unknown
 CVE-2024-0584: Fix not seen in stream
 CVE-2024-0775: Fix not seen in stream
-CVE-2024-0841: Fix unknown
 CVE-2024-1086: Fix not seen in stream
+CVE-2024-1312: Fix not seen in stream
 CVE-2024-21803: Fix unknown
 CVE-2024-22099: Fix unknown
-CVE-2024-22705: Fix not seen in stream
+CVE-2024-22386: Fix unknown
+CVE-2024-23196: Fix unknown
 CVE-2024-23848: Fix unknown
 CVE-2024-23851: Fix unknown
+CVE-2024-24855: Fix unknown
+CVE-2024-24857: Fix unknown
+CVE-2024-24858: Fix unknown
+CVE-2024-24859: Fix unknown
+CVE-2024-24860: Fix unknown
+CVE-2024-24861: Fix unknown
+CVE-2024-24864: Fix unknown
diff --git a/data/3.12/3.12_security.txt b/data/3.12/3.12_security.txt
@@ -1101,7 +1101,6 @@ Outstanding CVEs:
   CVE-2020-36557: (unk) vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console 
   CVE-2020-36558: (unk) vt: vt_ioctl: fix race in VT_RESIZEX 
   CVE-2020-36691: (unk) netlink: limit recursion depth in policy validation 
-  CVE-2020-36766: (unk) cec-api: prevent leaking memory through hole in structure 
   CVE-2020-3702: (unk) ath: Use safer key clearing with key cache entries 
   CVE-2020-4788: (unk) powerpc/64s: flush L1D on kernel entry 
   CVE-2020-8647: (unk) vgacon: Fix a UAF in vgacon_invert_region 
@@ -1473,6 +1472,7 @@ Outstanding CVEs:
   CVE-2023-51782: (unk) net/rose: Fix Use-After-Free in rose_ioctl 
   CVE-2023-52340: (unk) ipv6: remove max_size check inline with ipv4 
   CVE-2023-6040: (unk) netfilter: nf_tables: Reject tables of unsupported family 
+  CVE-2023-6240: (unk)  
   CVE-2023-6270: (unk)  
   CVE-2023-6356: (unk)  
   CVE-2023-6535: (unk)  
@@ -1485,13 +1485,20 @@ Outstanding CVEs:
   CVE-2023-7042: (unk)  
   CVE-2023-7192: (unk) netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() 
   CVE-2024-0340: (unk) vhost: use kzalloc() instead of kmalloc() followed by memset() 
-  CVE-2024-0564: (unk)  
   CVE-2024-0584: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
   CVE-2024-0775: (unk) ext4: improve error recovery code paths in __ext4_remount() 
-  CVE-2024-0841: (unk)  
   CVE-2024-1086: (unk) netfilter: nf_tables: reject QUEUE/DROP verdict parameters 
+  CVE-2024-1312: (unk) mm: lock_vma_under_rcu() must check vma->anon_vma under vma lock 
   CVE-2024-21803: (unk)  
   CVE-2024-22099: (unk)  
-  CVE-2024-22705: (unk) ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() 
+  CVE-2024-22386: (unk)  
+  CVE-2024-23196: (unk)  
   CVE-2024-23848: (unk)  
   CVE-2024-23851: (unk)  
+  CVE-2024-24855: (unk)  
+  CVE-2024-24857: (unk)  
+  CVE-2024-24858: (unk)  
+  CVE-2024-24859: (unk)  
+  CVE-2024-24860: (unk)  
+  CVE-2024-24861: (unk)  
+  CVE-2024-24864: (unk)  
diff --git a/data/3.14/3.14_CVEs.txt b/data/3.14/3.14_CVEs.txt
@@ -927,7 +927,6 @@ CVE-2020-36386: Fix not seen in stream
 CVE-2020-36557: Fix not seen in stream
 CVE-2020-36558: Fix not seen in stream
 CVE-2020-36691: Fix not seen in stream
-CVE-2020-36766: Fix not seen in stream
 CVE-2020-3702: Fix not seen in stream
 CVE-2020-4788: Fix not seen in stream
 CVE-2020-8647: Fix not seen in stream
@@ -1305,6 +1304,7 @@ CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
 CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
+CVE-2023-6240: Fix unknown
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
 CVE-2023-6535: Fix unknown
@@ -1317,13 +1317,20 @@ CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
-CVE-2024-0564: Fix unknown
 CVE-2024-0584: Fix not seen in stream
 CVE-2024-0775: Fix not seen in stream
-CVE-2024-0841: Fix unknown
 CVE-2024-1086: Fix not seen in stream
+CVE-2024-1312: Fix not seen in stream
 CVE-2024-21803: Fix unknown
 CVE-2024-22099: Fix unknown
-CVE-2024-22705: Fix not seen in stream
+CVE-2024-22386: Fix unknown
+CVE-2024-23196: Fix unknown
 CVE-2024-23848: Fix unknown
 CVE-2024-23851: Fix unknown
+CVE-2024-24855: Fix unknown
+CVE-2024-24857: Fix unknown
+CVE-2024-24858: Fix unknown
+CVE-2024-24859: Fix unknown
+CVE-2024-24860: Fix unknown
+CVE-2024-24861: Fix unknown
+CVE-2024-24864: Fix unknown
diff --git a/data/3.14/3.14_security.txt b/data/3.14/3.14_security.txt
@@ -1061,7 +1061,6 @@ Outstanding CVEs:
   CVE-2020-36557: (unk) vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console 
   CVE-2020-36558: (unk) vt: vt_ioctl: fix race in VT_RESIZEX 
   CVE-2020-36691: (unk) netlink: limit recursion depth in policy validation 
-  CVE-2020-36766: (unk) cec-api: prevent leaking memory through hole in structure 
   CVE-2020-3702: (unk) ath: Use safer key clearing with key cache entries 
   CVE-2020-4788: (unk) powerpc/64s: flush L1D on kernel entry 
   CVE-2020-8647: (unk) vgacon: Fix a UAF in vgacon_invert_region 
@@ -1439,6 +1438,7 @@ Outstanding CVEs:
   CVE-2023-51782: (unk) net/rose: Fix Use-After-Free in rose_ioctl 
   CVE-2023-52340: (unk) ipv6: remove max_size check inline with ipv4 
   CVE-2023-6040: (unk) netfilter: nf_tables: Reject tables of unsupported family 
+  CVE-2023-6240: (unk)  
   CVE-2023-6270: (unk)  
   CVE-2023-6356: (unk)  
   CVE-2023-6535: (unk)  
@@ -1451,13 +1451,20 @@ Outstanding CVEs:
   CVE-2023-7042: (unk)  
   CVE-2023-7192: (unk) netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() 
   CVE-2024-0340: (unk) vhost: use kzalloc() instead of kmalloc() followed by memset() 
-  CVE-2024-0564: (unk)  
   CVE-2024-0584: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
   CVE-2024-0775: (unk) ext4: improve error recovery code paths in __ext4_remount() 
-  CVE-2024-0841: (unk)  
   CVE-2024-1086: (unk) netfilter: nf_tables: reject QUEUE/DROP verdict parameters 
+  CVE-2024-1312: (unk) mm: lock_vma_under_rcu() must check vma->anon_vma under vma lock 
   CVE-2024-21803: (unk)  
   CVE-2024-22099: (unk)  
-  CVE-2024-22705: (unk) ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() 
+  CVE-2024-22386: (unk)  
+  CVE-2024-23196: (unk)  
   CVE-2024-23848: (unk)  
   CVE-2024-23851: (unk)  
+  CVE-2024-24855: (unk)  
+  CVE-2024-24857: (unk)  
+  CVE-2024-24858: (unk)  
+  CVE-2024-24859: (unk)  
+  CVE-2024-24860: (unk)  
+  CVE-2024-24861: (unk)  
+  CVE-2024-24864: (unk)  
diff --git a/data/3.16/3.16_CVEs.txt b/data/3.16/3.16_CVEs.txt
@@ -903,7 +903,6 @@ CVE-2020-36516: Fix not seen in stream
 CVE-2020-36557: Fix not seen in stream
 CVE-2020-36558: Fix not seen in stream
 CVE-2020-36691: Fix not seen in stream
-CVE-2020-36766: Fix not seen in stream
 CVE-2020-3702: Fix not seen in stream
 CVE-2020-4788: Fix not seen in stream
 CVE-2020-8647: Fixed with 3.16.83
@@ -1297,6 +1296,7 @@ CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
 CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
+CVE-2023-6240: Fix unknown
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
 CVE-2023-6535: Fix unknown
@@ -1309,13 +1309,20 @@ CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
-CVE-2024-0564: Fix unknown
 CVE-2024-0584: Fix not seen in stream
 CVE-2024-0775: Fix not seen in stream
-CVE-2024-0841: Fix unknown
 CVE-2024-1086: Fix not seen in stream
+CVE-2024-1312: Fix not seen in stream
 CVE-2024-21803: Fix unknown
 CVE-2024-22099: Fix unknown
-CVE-2024-22705: Fix not seen in stream
+CVE-2024-22386: Fix unknown
+CVE-2024-23196: Fix unknown
 CVE-2024-23848: Fix unknown
 CVE-2024-23851: Fix unknown
+CVE-2024-24855: Fix unknown
+CVE-2024-24857: Fix unknown
+CVE-2024-24858: Fix unknown
+CVE-2024-24859: Fix unknown
+CVE-2024-24860: Fix unknown
+CVE-2024-24861: Fix unknown
+CVE-2024-24864: Fix unknown
diff --git a/data/3.16/3.16_security.txt b/data/3.16/3.16_security.txt
@@ -1016,7 +1016,6 @@ Outstanding CVEs:
   CVE-2020-36557: (unk) vt: vt_ioctl: fix VT_DISALLOCATE freeing in-use virtual console 
   CVE-2020-36558: (unk) vt: vt_ioctl: fix race in VT_RESIZEX 
   CVE-2020-36691: (unk) netlink: limit recursion depth in policy validation 
-  CVE-2020-36766: (unk) cec-api: prevent leaking memory through hole in structure 
   CVE-2020-3702: (unk) ath: Use safer key clearing with key cache entries 
   CVE-2020-4788: (unk) powerpc/64s: flush L1D on kernel entry 
   CVE-2020-8694: (unk) powercap: restrict energy meter to root access 
@@ -1403,6 +1402,7 @@ Outstanding CVEs:
   CVE-2023-51782: (unk) net/rose: Fix Use-After-Free in rose_ioctl 
   CVE-2023-52340: (unk) ipv6: remove max_size check inline with ipv4 
   CVE-2023-6040: (unk) netfilter: nf_tables: Reject tables of unsupported family 
+  CVE-2023-6240: (unk)  
   CVE-2023-6270: (unk)  
   CVE-2023-6356: (unk)  
   CVE-2023-6535: (unk)  
@@ -1415,13 +1415,20 @@ Outstanding CVEs:
   CVE-2023-7042: (unk)  
   CVE-2023-7192: (unk) netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() 
   CVE-2024-0340: (unk) vhost: use kzalloc() instead of kmalloc() followed by memset() 
-  CVE-2024-0564: (unk)  
   CVE-2024-0584: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
   CVE-2024-0775: (unk) ext4: improve error recovery code paths in __ext4_remount() 
-  CVE-2024-0841: (unk)  
   CVE-2024-1086: (unk) netfilter: nf_tables: reject QUEUE/DROP verdict parameters 
+  CVE-2024-1312: (unk) mm: lock_vma_under_rcu() must check vma->anon_vma under vma lock 
   CVE-2024-21803: (unk)  
   CVE-2024-22099: (unk)  
-  CVE-2024-22705: (unk) ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() 
+  CVE-2024-22386: (unk)  
+  CVE-2024-23196: (unk)  
   CVE-2024-23848: (unk)  
   CVE-2024-23851: (unk)  
+  CVE-2024-24855: (unk)  
+  CVE-2024-24857: (unk)  
+  CVE-2024-24858: (unk)  
+  CVE-2024-24859: (unk)  
+  CVE-2024-24860: (unk)  
+  CVE-2024-24861: (unk)  
+  CVE-2024-24864: (unk)  
diff --git a/data/3.18/3.18_CVEs.txt b/data/3.18/3.18_CVEs.txt
@@ -884,7 +884,6 @@ CVE-2020-36516: Fix not seen in stream
 CVE-2020-36557: Fix not seen in stream
 CVE-2020-36558: Fix not seen in stream
 CVE-2020-36691: Fix not seen in stream
-CVE-2020-36766: Fix not seen in stream
 CVE-2020-3702: Fix not seen in stream
 CVE-2020-4788: Fix not seen in stream
 CVE-2020-8647: Fix not seen in stream
@@ -1288,6 +1287,7 @@ CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
 CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
+CVE-2023-6240: Fix unknown
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
 CVE-2023-6535: Fix unknown
@@ -1300,13 +1300,20 @@ CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
-CVE-2024-0564: Fix unknown
 CVE-2024-0584: Fix not seen in stream
 CVE-2024-0775: Fix not seen in stream
-CVE-2024-0841: Fix unknown
 CVE-2024-1086: Fix not seen in stream
+CVE-2024-1312: Fix not seen in stream
 CVE-2024-21803: Fix unknown
 CVE-2024-22099: Fix unknown
-CVE-2024-22705: Fix not seen in stream
+CVE-2024-22386: Fix unknown
+CVE-2024-23196: Fix unknown
 CVE-2024-23848: Fix unknown
 CVE-2024-23851: Fix unknown
+CVE-2024-24855: Fix unknown
+CVE-2024-24857: Fix unknown
+CVE-2024-24858: Fix unknown
+CVE-2024-24859: Fix unknown
+CVE-2024-24860: Fix unknown
+CVE-2024-24861: Fix unknown
+CVE-2024-24864: Fix unknown