linux_kernel_cves
linux_kernel_cves copied to clipboard
nluedtke
Tracking CVEs for the linux Kernel
**Change Type Requested** Update **CVE id number** CVE-2022-26878 **References** NVD lists https://github.com/torvalds/linux/commit/1d0688421449718c6c5f46e458a378c9b530ba18 as the fix, which is plausible **Additional context** Fixes that I found: * https://github.com/torvalds/linux/commit/1d0688421449718c6c5f46e458a378c9b530ba18 before 5.17 * https://github.com/gregkh/linux/commit/ad7cb5f6fa5f7ea37208c98a9457dd98025a89ca...
**Change Type Requested** Remove **CVE id number** CVE-2018-1121 **References** https://nvd.nist.gov/vuln/detail/CVE-2018-1121 **Additional context** This CVE is in userspace package `props-ng`, not in the linux kernel. Suggest it be removed from the...
**Is your feature request related to a problem? Please describe.** We need more options to determine when things have changed, for the git illiterate. **Describe the solution you'd like** An...
**Change Type Requested** Update **CVE id number** CVE-2020-25220 **References** https://www.spinics.net/lists/stable/msg405099.html **Additional context** Version information is missing. Based on the NVD description the oldest version affected is 4.9.231, as that is...
**Change Type Requested** Update **CVE id number** CVE-2021-3612 **References** https://access.redhat.com/security/cve/cve-2021-3612 **Additional context** CVE-2021-3612 is not 182d679b2298d62bf42bb14b12a8067b8e17b617 CVE-2021-3612 is assigned based on this report https://lore.kernel.org/linux-input/[email protected]/
**Change Type Requested** Update **CVE id number** CVE-2019-12456 **Additional context** Wrong fixes sha 86e5aca7fa2927060839f3e3b40c8bd65a7e8d1e (https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=86e5aca7fa2927060839f3e3b40c8bd65a7e8d1e) Should be f9e3ebeea4521652318af903cddeaf033527e93e https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f9e3ebeea4521652318af903cddeaf033527e93e
**Change Type Requested** Update **CVE id number** CVE-2021-0512 **References** The function was introduced in: https://github.com/torvalds/linux/commit/2dc702c991e3774af9d7ce410eef410ca9e2357e and then refactored and renamed in: https://github.com/torvalds/linux/commit/d43c17ead879ba7c076dc2f5fd80cd76047c9ff4 This makes the first affected version 5.0-rc1
**Change Type Requested** Update **CVE id number** CVE-2020-7053 **References** For 4.14.166: https://github.com/gregkh/linux/commit/573e1fe003c1e2016bc40cc4f2b231e3b8c990f8 For 4.19.97: https://github.com/gregkh/linux/commit/afb89cd5f2ba2d5d04b85b2692a9a3d86b6fabd7
**Change Type Requested** Update **CVE id number** CVE-2021-0399 **References** The text says ```In qtaguid\_untag of xt\_qtaguid.c …```. Neither the file nor the function name appear anywhere in the kernel source...
**Change Type Requested** Update **CVE id number** CVE-2019-5489 **References** Current fixes: https://github.com/torvalds/linux/commit/574823bfab82d9d8fa47f422778043fbb4b4f50e [5.0-rc1] Reverted: https://github.com/torvalds/linux/commit/30bac164aca750892b93eef350439a0562a68647 [5.0-rc4] New approach: https://github.com/torvalds/linux/commit/134fca9063ad4851de767d1768180e5dede9a881 [5.2-rc1] **Additional context** The new approach was backported to 5.1.4, 5.0.18,...