summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2024-03-05 12:52:24 +0100
committerSalvatore Bonaccorso <carnil@debian.org>2024-03-05 12:53:36 +0100
commit068dfbd83a8d18200b5aed990650d042c29da446 (patch)
tree3eeb94190f266a6811a4c44759d06eb1388a6121
parent724fe47fa06cbd607739799372e98e3f65c6407e (diff)
Add two new assigned CVEs
The detection for sid worked not well in both cases and for CVE-2022-48630 needed adjustment to one lower version 5.17.11-1 (from 5.18.2-1) and for CVE-2022-48629 to 5.16.18-1 (from 5.17.3-1).
Diffstat
-rw-r--r--active/CVE-2022-4862916
-rw-r--r--active/CVE-2022-4863017
2 files changed, 33 insertions, 0 deletions
diff --git a/active/CVE-2022-48629 b/active/CVE-2022-48629
new file mode 100644
index 00000000..d4d13174
--- /dev/null
+++ b/active/CVE-2022-48629
@@ -0,0 +1,16 @@
+Description: crypto: qcom-rng - ensure buffer for generate is completely filled
+References:
+Notes:
+ carnil> Introduced in ceec5f5b5988 ("crypto: qcom-rng - Add Qcom prng driver").
+ carnil> Vulnerable versions: 4.19-rc1.
+Bugs:
+upstream: released (5.17) [a680b1832ced3b5fa7c93484248fd221ea0d614b]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: N/A "Fixed before branching point"
+5.10-upstream-stable: released (5.10.108) [0f9b7b8df17525e464294c916acc8194ce38446b]
+4.19-upstream-stable: released (4.19.236) [a8e32bbb96c25b7ab29b1894dcd45e0b3b08fd9d]
+sid: released (5.16.18-1)
+6.1-bookworm-security: N/A "Fixed before branching point"
+5.10-bullseye-security: released (5.10.113-1)
+4.19-buster-security: released (4.19.249-1)
diff --git a/active/CVE-2022-48630 b/active/CVE-2022-48630
new file mode 100644
index 00000000..2f5b8f29
--- /dev/null
+++ b/active/CVE-2022-48630
@@ -0,0 +1,17 @@
+Description: crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ
+References:
+Notes:
+ carnil> Introduced in a680b1832ced ("crypto: qcom-rng - ensure buffer for generate is
+ carnil> completely filled"). Vulnerable versions: 4.19.236 5.4.187 5.10.108 5.15.31
+ carnil> 5.16.17 5.17.
+Bugs:
+upstream: released (5.18) [16287397ec5c08aa58db6acf7dbc55470d78087d]
+6.7-upstream-stable: N/A "Fixed before branching point"
+6.6-upstream-stable: N/A "Fixed before branching point"
+6.1-upstream-stable: N/A "Fixed before branching point"
+5.10-upstream-stable: released (5.10.118) [233a3cc60e7a8fe0be8cf9934ae7b67ba25a866c]
+4.19-upstream-stable: released (4.19.245) [71a89789552b7faf3ef27969b9bc783fa0df3550]
+sid: released (5.17.11-1)
+6.1-bookworm-security: N/A "Fixed before branching point"
+5.10-bullseye-security: released (5.10.120-1)
+4.19-buster-security: released (4.19.249-1)

© 2014-2024 Faster IT GmbH | imprint | privacy policy