linux_kernel_cves
linux_kernel_cves copied to clipboard
nluedtke
Tracking CVEs for the linux Kernel
Quick research yielded no known fix for this issue. It is unclear if this CVE was fixed via patch or if it was left to be handled by other mitigations.
**Describe the solution you'd like** Visualization of the life of a vulnerabilities. Important dates/points for a vulnerability can be mapped given the data we have. It would be nice to...
We could in theory deliver vulnerability information on request via an API. I see this is as long term option as an API service would raise our costs (not an...
**Change Type Requested** Add/Remove/Update **CVE id number** CVE-XXXX-XXXXXX **References** Links providing information on the CVE. **Additional context** Add any other context or information you can provide.
**Change Type Requested** Update **CVE id number** CVE-2021-28951 **References** https://github.com/torvalds/linux/commit/7e84e1c7566a1df470a9e1f49d3db2ce311261a4 **Additional context** The fixes commit (https://github.com/torvalds/linux/commit/3ebba796fa251d042be42b929a2d916ee5c34a49) talks about the deadlock happening because of ```IORING_SETUP_R_DISABLED```, which was only introduced for 5.10....
**Change Type Requested** Update **CVE id number** CVE-2022-45884 **References** https://github.com/torvalds/linux/commit/627bb528b086b4136315c25d6a447a98ea9448d3 https://github.com/gregkh/linux/commit/4a8ecfb2207c498b1d25915919631e2195f9e524 https://github.com/gregkh/linux/commit/2d1c19597d1eb7f18c9d906aa7e144733eccdcc8 https://nvd.nist.gov/vuln/detail/CVE-2022-45884 **Additional context** NVD links to an older version of the given kernel patch which given on the...
**Change Type Requested** Update **CVE id number** CVE-2023-2640 CVE-2023-32629 **References** https://lists.ubuntu.com/archives/kernel-team/2023-July/140920.html **Additional context** This is the relevant patch linked in the NVD entries. It reverts an Ubuntu specific patch that...
**Change Type Requested** Update **CVE id number** CVE-2024-26598 **References** https://github.com/torvalds/linux/commit/59c5ab40989afa5aba9c4a0918a5ed910a917422 **Additional context** vgic-its has been introduced in 4.8-rc1.
**Change Type Requested** Update **CVE id number** CVE-2024-26591 **References** https://github.com/torvalds/linux/commit/99c55f7d47c0dc6fc64729f37bf435abf43f4c60 https://github.com/torvalds/linux/commit/fec56f5890d93fc2ed74166c397dc186b1c25951 **Additional context** The BPF syscall was introduced in 3.18-rc1. The mentioned function was introduced in 5.5-rc1. That commit also...
**Change Type Requested** Update **CVE id number** CVE-2024-26587 **References** https://github.com/torvalds/linux/commit/83c9e13aa39aed5cf9a2f8dd69770b7c35ba1281 **Additional context** netdevsim was added in 4.16-rc1.