Update 3Feb24

CHANGES.md

@@ -1,25 +1,73 @@
 
 # **Linux Kernel CVE Changes**
 
-## Last Update - 15Jan24 09:35
+## Last Update - 02Feb24 19:06
 
 ### **New CVEs Added:**
 
-[CVE-2022-48619](cves/CVE-2022-48619)  
-[CVE-2023-1476](cves/CVE-2023-1476)  
+[CVE-2021-33630](cves/CVE-2021-33630)  
+[CVE-2021-33631](cves/CVE-2021-33631)  
+[CVE-2023-46343](cves/CVE-2023-46343)  
+[CVE-2023-46838](cves/CVE-2023-46838)  
+[CVE-2023-51042](cves/CVE-2023-51042)  
+[CVE-2023-51043](cves/CVE-2023-51043)  
+[CVE-2023-52340](cves/CVE-2023-52340)  
+[CVE-2023-6200](cves/CVE-2023-6200)  
+[CVE-2023-6915](cves/CVE-2023-6915)  
+[CVE-2024-0562](cves/CVE-2024-0562)  
+[CVE-2024-0564](cves/CVE-2024-0564)  
+[CVE-2024-0565](cves/CVE-2024-0565)  
+[CVE-2024-0582](cves/CVE-2024-0582)  
+[CVE-2024-0584](cves/CVE-2024-0584)  
+[CVE-2024-0607](cves/CVE-2024-0607)  
+[CVE-2024-0639](cves/CVE-2024-0639)  
+[CVE-2024-0641](cves/CVE-2024-0641)  
+[CVE-2024-0646](cves/CVE-2024-0646)  
+[CVE-2024-0775](cves/CVE-2024-0775)  
+[CVE-2024-0841](cves/CVE-2024-0841)  
+[CVE-2024-1085](cves/CVE-2024-1085)  
+[CVE-2024-1086](cves/CVE-2024-1086)  
+[CVE-2024-21803](cves/CVE-2024-21803)  
+[CVE-2024-22099](cves/CVE-2024-22099)  
+[CVE-2024-22705](cves/CVE-2024-22705)  
+[CVE-2024-23307](cves/CVE-2024-23307)  
+[CVE-2024-23848](cves/CVE-2024-23848)  
+[CVE-2024-23849](cves/CVE-2024-23849)  
+[CVE-2024-23850](cves/CVE-2024-23850)  
+[CVE-2024-23851](cves/CVE-2024-23851)  
 
 
 ### **New Versions Checked:**
 
-[5.10.207](streams/5.10)  
+[4.19.306](streams/4.19)  
+[5.10.209](streams/5.10)  
+[5.15.148](streams/5.15)  
+[5.4.268](streams/5.4)  
+[6.1.76](streams/6.1)  
+[6.6.15](streams/6.6)  
+[6.7.3](streams/6.7)  
 
 
 ### **Updated CVEs:**
 
-[CVE-2022-1508](cves/CVE-2022-1508)  
-[CVE-2023-2430](cves/CVE-2023-2430)  
-[CVE-2023-4610](cves/CVE-2023-4610)  
-[CVE-2023-4732](cves/CVE-2023-4732)  
+[CVE-2017-5753](cves/CVE-2017-5753)  
+[CVE-2022-36402](cves/CVE-2022-36402)  
+[CVE-2023-2177](cves/CVE-2023-2177)  
+[CVE-2023-35827](cves/CVE-2023-35827)  
+[CVE-2023-39198](cves/CVE-2023-39198)  
+[CVE-2023-4010](cves/CVE-2023-4010)  
+[CVE-2023-50431](cves/CVE-2023-50431)  
+[CVE-2023-6040](cves/CVE-2023-6040)  
+[CVE-2023-6610](cves/CVE-2023-6610)  
+[CVE-2023-6622](cves/CVE-2023-6622)  
+[CVE-2023-6817](cves/CVE-2023-6817)  
+[CVE-2022-2585](cves/CVE-2022-2585)  
+[CVE-2022-48619](cves/CVE-2022-48619)  
+[CVE-2023-39197](cves/CVE-2023-39197)  
+[CVE-2023-5178](cves/CVE-2023-5178)  
+[CVE-2023-51780](cves/CVE-2023-51780)  
+[CVE-2023-51781](cves/CVE-2023-51781)  
 [CVE-2023-51782](cves/CVE-2023-51782)  
-[CVE-2023-6931](cves/CVE-2023-6931)  
-[CVE-2024-0193](cves/CVE-2024-0193)  
+[CVE-2023-6531](cves/CVE-2023-6531)  
+[CVE-2024-0340](cves/CVE-2024-0340)  
+[CVE-2024-0443](cves/CVE-2024-0443)  

data/3.12/3.12_CVEs.txt

@@ -1015,6 +1015,8 @@ CVE-2021-32399: Fix not seen in stream
 CVE-2021-33034: Fix not seen in stream
 CVE-2021-33061: Fix not seen in stream
 CVE-2021-33098: Fix not seen in stream
+CVE-2021-33630: Fix not seen in stream
+CVE-2021-33631: Fix not seen in stream
 CVE-2021-33655: Fix not seen in stream
 CVE-2021-33656: Fix not seen in stream
 CVE-2021-34556: Fix not seen in stream
@@ -1197,7 +1199,6 @@ CVE-2022-36280: Fix not seen in stream
 CVE-2022-3629: Fix not seen in stream
 CVE-2022-3635: Fix not seen in stream
 CVE-2022-3636: Fix not seen in stream
-CVE-2022-36402: Fix unknown
 CVE-2022-3642: Fix unknown
 CVE-2022-3646: Fix not seen in stream
 CVE-2022-3649: Fix not seen in stream
@@ -1300,7 +1301,6 @@ CVE-2023-34255: Fix not seen in stream
 CVE-2023-34256: Fix not seen in stream
 CVE-2023-3567: Fix not seen in stream
 CVE-2023-35824: Fix not seen in stream
-CVE-2023-35827: Fix not seen in stream
 CVE-2023-3611: Fix not seen in stream
 CVE-2023-3640: Fix unknown
 CVE-2023-37454: Fix unknown
@@ -1323,13 +1323,17 @@ CVE-2023-45862: Fix not seen in stream
 CVE-2023-45863: Fix not seen in stream
 CVE-2023-45871: Fix not seen in stream
 CVE-2023-4623: Fix not seen in stream
+CVE-2023-46343: Fix not seen in stream
+CVE-2023-46838: Fix not seen in stream
 CVE-2023-47233: Fix unknown
 CVE-2023-4921: Fix not seen in stream
+CVE-2023-51043: Fix not seen in stream
 CVE-2023-51779: Fix not seen in stream
 CVE-2023-5178: Fix not seen in stream
 CVE-2023-51780: Fix not seen in stream
 CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
+CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
@@ -1338,9 +1342,18 @@ CVE-2023-6536: Fix unknown
 CVE-2023-6546: Fix not seen in stream
 CVE-2023-6606: Fix not seen in stream
 CVE-2023-6610: Fix not seen in stream
-CVE-2023-6622: Fix not seen in stream
-CVE-2023-6817: Fix not seen in stream
+CVE-2023-6915: Fix not seen in stream
 CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
+CVE-2024-0564: Fix unknown
+CVE-2024-0584: Fix not seen in stream
+CVE-2024-0775: Fix not seen in stream
+CVE-2024-0841: Fix unknown
+CVE-2024-1086: Fix not seen in stream
+CVE-2024-21803: Fix unknown
+CVE-2024-22099: Fix unknown
+CVE-2024-22705: Fix not seen in stream
+CVE-2024-23848: Fix unknown
+CVE-2024-23851: Fix unknown

data/3.12/3.12_security.txt

@@ -1153,6 +1153,8 @@ Outstanding CVEs:
   CVE-2021-33034: (unk) Bluetooth: verify AMP hci_chan before amp_destroy 
   CVE-2021-33061: (unk) ixgbe: add improvement for MDD response functionality 
   CVE-2021-33098: (unk) ixgbe: fix large MTU request from VF 
+  CVE-2021-33630: (unk) net/sched: cbs: Fix not adding cbs instance to list 
+  CVE-2021-33631: (unk) ext4: fix kernel BUG in 'ext4_write_inline_data_end()' 
   CVE-2021-33655: (unk) fbcon: Disallow setting font bigger than screen size 
   CVE-2021-33656: (unk) vt: drop old FONT ioctls 
   CVE-2021-34556: (unk) bpf: Introduce BPF nospec instruction for mitigating Spectre v4 
@@ -1335,7 +1337,6 @@ Outstanding CVEs:
   CVE-2022-3629: (unk) vsock: Fix memory leak in vsock_connect() 
   CVE-2022-3635: (unk) atm: idt77252: fix use-after-free bugs caused by tst_timer 
   CVE-2022-3636: (unk) net: ethernet: mtk_eth_soc: use after free in __mtk_ppe_check_skb() 
-  CVE-2022-36402: (unk)  
   CVE-2022-3642: (unk)  
   CVE-2022-3646: (unk) nilfs2: fix leak of nilfs_root in case of writer thread creation failure 
   CVE-2022-3649: (unk) nilfs2: fix use-after-free bug of struct nilfs_root 
@@ -1438,7 +1439,6 @@ Outstanding CVEs:
   CVE-2023-34256: (unk) ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum 
   CVE-2023-3567: (unk) vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF 
   CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition 
-  CVE-2023-35827: (unk) ravb: Fix use-after-free issue in ravb_tx_timeout_work() 
   CVE-2023-3611: (unk) net/sched: sch_qfq: account for stab overhead in qfq_enqueue 
   CVE-2023-3640: (unk)  
   CVE-2023-37454: (unk)  
@@ -1461,13 +1461,17 @@ Outstanding CVEs:
   CVE-2023-45863: (unk) kobject: Fix slab-out-of-bounds in fill_kobj_path() 
   CVE-2023-45871: (unk) igb: set max size RX buffer when store bad packet is enabled 
   CVE-2023-4623: (unk) net/sched: sch_hfsc: Ensure inner classes have fsc curve 
+  CVE-2023-46343: (unk) nfc: nci: fix possible NULL pointer dereference in send_acknowledge() 
+  CVE-2023-46838: (unk) xen-netback: don't produce zero-size SKB frags 
   CVE-2023-47233: (unk)  
   CVE-2023-4921: (unk) net: sched: sch_qfq: Fix UAF in qfq_dequeue() 
+  CVE-2023-51043: (unk) drm/atomic: Fix potential use-after-free in nonblocking commits 
   CVE-2023-51779: (unk) Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg 
   CVE-2023-5178: (unk) nvmet-tcp: Fix a possible UAF in queue intialization setup 
   CVE-2023-51780: (unk) atm: Fix Use-After-Free in do_vcc_ioctl 
   CVE-2023-51781: (unk) appletalk: Fix Use-After-Free in atalk_ioctl 
   CVE-2023-51782: (unk) net/rose: Fix Use-After-Free in rose_ioctl 
+  CVE-2023-52340: (unk) ipv6: remove max_size check inline with ipv4 
   CVE-2023-6040: (unk) netfilter: nf_tables: Reject tables of unsupported family 
   CVE-2023-6270: (unk)  
   CVE-2023-6356: (unk)  
@@ -1476,9 +1480,18 @@ Outstanding CVEs:
   CVE-2023-6546: (unk) tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux 
   CVE-2023-6606: (unk) smb: client: fix OOB in smbCalcSize() 
   CVE-2023-6610: (unk) smb: client: fix potential OOB in smb2_dump_detail() 
-  CVE-2023-6622: (unk) netfilter: nf_tables: bail out on mismatching dynset and set expressions 
-  CVE-2023-6817: (unk) netfilter: nft_set_pipapo: skip inactive elements during set walk 
+  CVE-2023-6915: (unk) ida: Fix crash in ida_free when the bitmap is empty 
   CVE-2023-6932: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
   CVE-2023-7042: (unk)  
   CVE-2023-7192: (unk) netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() 
   CVE-2024-0340: (unk) vhost: use kzalloc() instead of kmalloc() followed by memset() 
+  CVE-2024-0564: (unk)  
+  CVE-2024-0584: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
+  CVE-2024-0775: (unk) ext4: improve error recovery code paths in __ext4_remount() 
+  CVE-2024-0841: (unk)  
+  CVE-2024-1086: (unk) netfilter: nf_tables: reject QUEUE/DROP verdict parameters 
+  CVE-2024-21803: (unk)  
+  CVE-2024-22099: (unk)  
+  CVE-2024-22705: (unk) ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() 
+  CVE-2024-23848: (unk)  
+  CVE-2024-23851: (unk)  

data/3.14/3.14_CVEs.txt

@@ -981,6 +981,8 @@ CVE-2021-32399: Fix not seen in stream
 CVE-2021-33034: Fix not seen in stream
 CVE-2021-33061: Fix not seen in stream
 CVE-2021-33098: Fix not seen in stream
+CVE-2021-33630: Fix not seen in stream
+CVE-2021-33631: Fix not seen in stream
 CVE-2021-33655: Fix not seen in stream
 CVE-2021-33656: Fix not seen in stream
 CVE-2021-34556: Fix not seen in stream
@@ -1166,7 +1168,6 @@ CVE-2022-36280: Fix not seen in stream
 CVE-2022-3629: Fix not seen in stream
 CVE-2022-3635: Fix not seen in stream
 CVE-2022-3636: Fix not seen in stream
-CVE-2022-36402: Fix unknown
 CVE-2022-3642: Fix unknown
 CVE-2022-3646: Fix not seen in stream
 CVE-2022-3649: Fix not seen in stream
@@ -1270,7 +1271,6 @@ CVE-2023-34256: Fix not seen in stream
 CVE-2023-35001: Fix not seen in stream
 CVE-2023-3567: Fix not seen in stream
 CVE-2023-35824: Fix not seen in stream
-CVE-2023-35827: Fix not seen in stream
 CVE-2023-3611: Fix not seen in stream
 CVE-2023-3640: Fix unknown
 CVE-2023-37454: Fix unknown
@@ -1293,13 +1293,17 @@ CVE-2023-45862: Fix not seen in stream
 CVE-2023-45863: Fix not seen in stream
 CVE-2023-45871: Fix not seen in stream
 CVE-2023-4623: Fix not seen in stream
+CVE-2023-46343: Fix not seen in stream
+CVE-2023-46838: Fix not seen in stream
 CVE-2023-47233: Fix unknown
 CVE-2023-4921: Fix not seen in stream
+CVE-2023-51043: Fix not seen in stream
 CVE-2023-51779: Fix not seen in stream
 CVE-2023-5178: Fix not seen in stream
 CVE-2023-51780: Fix not seen in stream
 CVE-2023-51781: Fix not seen in stream
 CVE-2023-51782: Fix not seen in stream
+CVE-2023-52340: Fix not seen in stream
 CVE-2023-6040: Fix not seen in stream
 CVE-2023-6270: Fix unknown
 CVE-2023-6356: Fix unknown
@@ -1308,9 +1312,18 @@ CVE-2023-6536: Fix unknown
 CVE-2023-6546: Fix not seen in stream
 CVE-2023-6606: Fix not seen in stream
 CVE-2023-6610: Fix not seen in stream
-CVE-2023-6622: Fix not seen in stream
-CVE-2023-6817: Fix not seen in stream
+CVE-2023-6915: Fix not seen in stream
 CVE-2023-6932: Fix not seen in stream
 CVE-2023-7042: Fix unknown
 CVE-2023-7192: Fix not seen in stream
 CVE-2024-0340: Fix not seen in stream
+CVE-2024-0564: Fix unknown
+CVE-2024-0584: Fix not seen in stream
+CVE-2024-0775: Fix not seen in stream
+CVE-2024-0841: Fix unknown
+CVE-2024-1086: Fix not seen in stream
+CVE-2024-21803: Fix unknown
+CVE-2024-22099: Fix unknown
+CVE-2024-22705: Fix not seen in stream
+CVE-2024-23848: Fix unknown
+CVE-2024-23851: Fix unknown

data/3.14/3.14_security.txt

@@ -1115,6 +1115,8 @@ Outstanding CVEs:
   CVE-2021-33034: (unk) Bluetooth: verify AMP hci_chan before amp_destroy 
   CVE-2021-33061: (unk) ixgbe: add improvement for MDD response functionality 
   CVE-2021-33098: (unk) ixgbe: fix large MTU request from VF 
+  CVE-2021-33630: (unk) net/sched: cbs: Fix not adding cbs instance to list 
+  CVE-2021-33631: (unk) ext4: fix kernel BUG in 'ext4_write_inline_data_end()' 
   CVE-2021-33655: (unk) fbcon: Disallow setting font bigger than screen size 
   CVE-2021-33656: (unk) vt: drop old FONT ioctls 
   CVE-2021-34556: (unk) bpf: Introduce BPF nospec instruction for mitigating Spectre v4 
@@ -1300,7 +1302,6 @@ Outstanding CVEs:
   CVE-2022-3629: (unk) vsock: Fix memory leak in vsock_connect() 
   CVE-2022-3635: (unk) atm: idt77252: fix use-after-free bugs caused by tst_timer 
   CVE-2022-3636: (unk) net: ethernet: mtk_eth_soc: use after free in __mtk_ppe_check_skb() 
-  CVE-2022-36402: (unk)  
   CVE-2022-3642: (unk)  
   CVE-2022-3646: (unk) nilfs2: fix leak of nilfs_root in case of writer thread creation failure 
   CVE-2022-3649: (unk) nilfs2: fix use-after-free bug of struct nilfs_root 
@@ -1404,7 +1405,6 @@ Outstanding CVEs:
   CVE-2023-35001: (unk) netfilter: nf_tables: prevent OOB access in nft_byteorder_eval 
   CVE-2023-3567: (unk) vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF 
   CVE-2023-35824: (unk) media: dm1105: Fix use after free bug in dm1105_remove due to race condition 
-  CVE-2023-35827: (unk) ravb: Fix use-after-free issue in ravb_tx_timeout_work() 
   CVE-2023-3611: (unk) net/sched: sch_qfq: account for stab overhead in qfq_enqueue 
   CVE-2023-3640: (unk)  
   CVE-2023-37454: (unk)  
@@ -1427,13 +1427,17 @@ Outstanding CVEs:
   CVE-2023-45863: (unk) kobject: Fix slab-out-of-bounds in fill_kobj_path() 
   CVE-2023-45871: (unk) igb: set max size RX buffer when store bad packet is enabled 
   CVE-2023-4623: (unk) net/sched: sch_hfsc: Ensure inner classes have fsc curve 
+  CVE-2023-46343: (unk) nfc: nci: fix possible NULL pointer dereference in send_acknowledge() 
+  CVE-2023-46838: (unk) xen-netback: don't produce zero-size SKB frags 
   CVE-2023-47233: (unk)  
   CVE-2023-4921: (unk) net: sched: sch_qfq: Fix UAF in qfq_dequeue() 
+  CVE-2023-51043: (unk) drm/atomic: Fix potential use-after-free in nonblocking commits 
   CVE-2023-51779: (unk) Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg 
   CVE-2023-5178: (unk) nvmet-tcp: Fix a possible UAF in queue intialization setup 
   CVE-2023-51780: (unk) atm: Fix Use-After-Free in do_vcc_ioctl 
   CVE-2023-51781: (unk) appletalk: Fix Use-After-Free in atalk_ioctl 
   CVE-2023-51782: (unk) net/rose: Fix Use-After-Free in rose_ioctl 
+  CVE-2023-52340: (unk) ipv6: remove max_size check inline with ipv4 
   CVE-2023-6040: (unk) netfilter: nf_tables: Reject tables of unsupported family 
   CVE-2023-6270: (unk)  
   CVE-2023-6356: (unk)  
@@ -1442,9 +1446,18 @@ Outstanding CVEs:
   CVE-2023-6546: (unk) tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux 
   CVE-2023-6606: (unk) smb: client: fix OOB in smbCalcSize() 
   CVE-2023-6610: (unk) smb: client: fix potential OOB in smb2_dump_detail() 
-  CVE-2023-6622: (unk) netfilter: nf_tables: bail out on mismatching dynset and set expressions 
-  CVE-2023-6817: (unk) netfilter: nft_set_pipapo: skip inactive elements during set walk 
+  CVE-2023-6915: (unk) ida: Fix crash in ida_free when the bitmap is empty 
   CVE-2023-6932: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
   CVE-2023-7042: (unk)  
   CVE-2023-7192: (unk) netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack() 
   CVE-2024-0340: (unk) vhost: use kzalloc() instead of kmalloc() followed by memset() 
+  CVE-2024-0564: (unk)  
+  CVE-2024-0584: (unk) ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet 
+  CVE-2024-0775: (unk) ext4: improve error recovery code paths in __ext4_remount() 
+  CVE-2024-0841: (unk)  
+  CVE-2024-1086: (unk) netfilter: nf_tables: reject QUEUE/DROP verdict parameters 
+  CVE-2024-21803: (unk)  
+  CVE-2024-22099: (unk)  
+  CVE-2024-22705: (unk) ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() 
+  CVE-2024-23848: (unk)  
+  CVE-2024-23851: (unk)