Track fixes in 5.16.4, 5.15.18, 5.10.95, 4.19.227 and 4.9.299

5 files changed, 14 insertions, 12 deletions

diff --git a/active/CVE-2021-38198 b/active/CVE-2021-38198
index 0f1ae11a7..f03fc8a18 100644
--- a/active/CVE-2021-38198
+++ b/active/CVE-2021-38198
@@ -7,7 +7,7 @@ Bugs:
 upstream: released (5.13-rc6) [b1bd5cba3306691c771d558e94baa73e8b0b96b7]
 5.10-upstream-stable: released (5.10.44) [6b6ff4d1f349cb35a7c7d2057819af1b14f80437]
 4.19-upstream-stable: released (4.19.204) [4c07e70141eebd3db64297515a427deea4822957]
-4.9-upstream-stable: needed
+4.9-upstream-stable: released (4.9.299) [e262acbda232b6a2a9adb53f5d2b2065f7626625]
 sid: released (5.10.46-1)
 5.10-bullseye-security: N/A "Fixed before branching point"
 4.19-buster-security: released (4.19.208-1)
diff --git a/active/CVE-2021-38199 b/active/CVE-2021-38199
index 7cc006f63..14d0c23ad 100644
--- a/active/CVE-2021-38199
+++ b/active/CVE-2021-38199
@@ -5,7 +5,7 @@ Bugs:
 upstream: released (5.14-rc1) [dd99e9f98fbf423ff6d365b37a98e8879170f17c]
 5.10-upstream-stable: released (5.10.52) [ff4023d0194263a0827c954f623c314978cf7ddd]
 4.19-upstream-stable: released (4.19.198) [743f6b973c8ba8a0a5ed15ab11e1d07fa00d5368]
-4.9-upstream-stable: needed
+4.9-upstream-stable: released (4.9.299) [993892ed82350d0b4eb7d321d2bb225219bd1cfc]
 sid: released (5.14.6-1)
 5.10-bullseye-security: released (5.10.46-5) [bugfix/all/NFSv4-Initialise-connection-to-the-server-in-nfs4_al.patch]
 4.19-buster-security: released (4.19.208-1)
diff --git a/active/CVE-2021-42739 b/active/CVE-2021-42739
index e66044c63..cddf385bb 100644
--- a/active/CVE-2021-42739
+++ b/active/CVE-2021-42739
@@ -9,7 +9,7 @@ Bugs:
 upstream: released (5.16-rc1) [35d2969ea3c7d32aee78066b1f3cf61a0d935a4e]
 5.10-upstream-stable: released (5.10.78) [d7fc85f6104259541ec136199d3bf7c8a736613d]
 4.19-upstream-stable: released (4.19.216) [53ec9dab4eb0a8140fc85760fb50effb526fe219]
-4.9-upstream-stable: needed
+4.9-upstream-stable: released (4.9.299) [1795af6435fa5f17ced2d34854fd4871e0780092]
 sid: released (5.14.16-1) [bugfix/all/media-firewire-firedtv-avc-fix-a-buffer-overflow-in-.patch]
 5.10-bullseye-security: released (5.10.84-1)
 4.19-buster-security: needed
diff --git a/active/CVE-2022-0330 b/active/CVE-2022-0330
index 1e8fe228a..f157f2acb 100644
--- a/active/CVE-2022-0330
+++ b/active/CVE-2022-0330
@@ -2,12 +2,13 @@ Description: drm/i915: Flush TLBs before releasing backing store
 References:
  https://www.openwall.com/lists/oss-security/2022/01/25/12
 Notes:
+ carnil> Fixed in 5.16.4 for 5.16.y and 5.15.18 for 5.15.y.
 Bugs:
 upstream: pending [7938d61591d33394a21bdd7797a245b65428f44c]
-5.10-upstream-stable:
-4.19-upstream-stable:
-4.9-upstream-stable:
-sid:
-5.10-bullseye-security:
-4.19-buster-security:
-4.9-stretch-security:
+5.10-upstream-stable: released (5.10.95) [6a6acf927895c38bdd9f3cd76b8dbfc25ac03e88]
+4.19-upstream-stable: released (4.19.227) [b188780649081782e341e52223db47c49f172712]
+4.9-upstream-stable: released (4.9.299) [84f4ab5b47d955ad2bb30115d7841d3e8f0994f4]
+sid: needed
+5.10-bullseye-security: needed
+4.19-buster-security: needed
+4.9-stretch-security: needed
diff --git a/active/CVE-2022-22942 b/active/CVE-2022-22942
index 096a06d42..91fe51f87 100644
--- a/active/CVE-2022-22942
+++ b/active/CVE-2022-22942
@@ -4,10 +4,11 @@ References:
 Notes:
  carnil> Commit fixes c906965dee22 ("drm/vmwgfx: Add export fence to
  carnil> file descriptor support") in 4.14-rc1.
+ carnil> Fixed in 5.16.4 for 5.16.y and 5.15.18 for 5.15.y.
 Bugs:
 upstream: pending [a0f90c8815706981c483a652a6aefca51a5e191c]
-5.10-upstream-stable: needed
-4.19-upstream-stable: needed
+5.10-upstream-stable: released (5.10.95) [ae2b20f27732fe92055d9e7b350abc5cdf3e2414]
+4.19-upstream-stable: released (4.19.227) [0008a0c78fc33a84e2212a7c04e6b21a36ca6f4d]
 4.9-upstream-stable: N/A "Vulnerable code not present"
 sid: needed
 5.10-bullseye-security: needed