Add CVE-2023-39192/linux

3 files changed, 8 insertions, 0 deletions

diff --git a/data/CVE/list b/data/CVE/list
index ea4908d478..d4db3ffb46 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -86,6 +86,10 @@ CVE-2023-3038 (SQL injection vulnerability in HelpDezk Community affecting versi
 	TODO: check
 CVE-2023-3037 (Improper authorization vulnerability in HelpDezk Community affecting v ...)
 	TODO: check
+CVE-2023-39192 [netfilter: xt_u32: validate user space input]
+	- linux 6.5.3-1
+	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-23-1490/
+	NOTE: https://git.kernel.org/linus/69c5d284f67089b4750d28ff6ac6f52ec224b330 (6.6-rc1)
 CVE-2023-39191 (An improper input validation flaw was found in the eBPF subsystem in t ...)
 	- linux 6.3.7-1 (unimportant)
 	[bullseye] - linux <not-affected> (Vulnerable code not present)
diff --git a/data/next-oldstable-point-update.txt b/data/next-oldstable-point-update.txt
index bb0cb1fddb..d3eb1c18b8 100644
--- a/data/next-oldstable-point-update.txt
+++ b/data/next-oldstable-point-update.txt
@@ -228,6 +228,8 @@ CVE-2023-44469
 	[bullseye] - lemonldap-ng 2.0.11+ds-4+deb11u5
 CVE-2021-38185
 	[bullseye] - cpio 2.13+dfsg-7.1~deb11u1
+CVE-2023-39192
+	[bullseye] - linux 5.10.197-1
 CVE-2023-1989
 	[bullseye] - linux 5.10.197-1
 CVE-2023-20588
diff --git a/data/next-point-update.txt b/data/next-point-update.txt
index 5949e2b290..cbeafa77e5 100644
--- a/data/next-point-update.txt
+++ b/data/next-point-update.txt
@@ -63,6 +63,8 @@ CVE-2023-43115
 	[bookworm] - ghostscript 10.0.0~dfsg-11+deb12u2
 CVE-2023-44469
 	[bookworm] - lemonldap-ng 2.16.1+ds-deb12u2
+CVE-2023-39192
+	[bookworm] - linux 6.1.55-1
 CVE-2023-25775
 	[bookworm] - linux 6.1.55-1
 CVE-2023-4244