From 7503e37c5f8c5a2511168035a215d9eddffc5277 Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Thu, 17 Aug 2023 17:54:12 +0200
Subject: advisory update

---
 dsa-texts/5.10.191-1 | 32 +++++++++++++++++---------------
 1 file changed, 17 insertions(+), 15 deletions(-)

(limited to 'dsa-texts')

diff --git a/dsa-texts/5.10.191-1 b/dsa-texts/5.10.191-1
index e3b08fe5..f0106abd 100644
--- a/dsa-texts/5.10.191-1
+++ b/dsa-texts/5.10.191-1
@@ -3,14 +3,14 @@
 
 Package        : linux
 CVE ID         : CVE-2022-4269 CVE-2022-39189 CVE-2023-1206 CVE-2023-1380
-                 CVE-2023-2002 CVE-2023-2007 CVE-2023-2124 CVE-2023-2269
-                 CVE-2023-2898 CVE-2023-3090 CVE-2023-3111 CVE-2023-3141
-                 CVE-2023-3212 CVE-2023-3268 CVE-2023-3338 CVE-2023-3389
-                 CVE-2023-3609 CVE-2023-3611 CVE-2023-3776 CVE-2023-3863
-                 CVE-2023-4004 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147
-                 CVE-2023-4194 CVE-2023-4273 CVE-2023-20588 CVE-2023-21255
-                 CVE-2023-21400 CVE-2023-31084 CVE-2023-34319 CVE-2023-35788
-                 CVE-2023-40283
+		 CVE-2023-2002 CVE-2023-2007 CVE-2023-2124 CVE-2023-2269
+		 CVE-2023-2898 CVE-2023-3090 CVE-2023-3111
+		 CVE-2023-3212 CVE-2023-3268 CVE-2023-3338 CVE-2023-3389
+		 CVE-2023-3609 CVE-2023-3611 CVE-2023-3776 CVE-2023-3863
+		 CVE-2023-4004 CVE-2023-4128 CVE-2023-4132 CVE-2023-4147
+		 CVE-2023-4194 CVE-2023-4273 CVE-2023-20588 CVE-2023-21255
+		 CVE-2023-21400 CVE-2023-31084 CVE-2023-34319 CVE-2023-35788
+		 CVE-2023-40283
 
 Several vulnerabilities have been discovered in the Linux kernel that
 may lead to a privilege escalation, denial of service or information
@@ -50,19 +50,21 @@ CVE-2023-2269
 
 CVE-2023-2898
 
-    Description
+    It was discovered that missing sanitising in the f2fs file system
+    may result in denial of service if a malformed file system is
+    accessed.
 
 CVE-2023-3090
 
-    Description
+    It was discovered that missing initialization in ipvlan networking may
+    lead to an out-of-bounds write vulnerability, resulting in denial of
+    service or potentially the execution of arbitrary code.
 
 CVE-2023-3111
 
-    Description
-
-CVE-2023-3141
-
-    Description
+    The TOTE Robot tool found a flaw in the Btrfs filesystem driver that can
+    lead to a use-after-free. It's unclear whether an unprivileged user can
+    exploit this.
 
 CVE-2023-3212
 
-- 
cgit v1.2.3