Merge pull request #314 from ginglis13/kernel-advisories-4.1.0

ginglis13 · web-flow · commit 43c69d595f79 · 2024-12-12T09:34:13.000-08:00
advisories: add kernel-6.1 CVEs for 4.1.0 release
diff --git a/advisories/4.1.0/BRSA-cbg7nhxhibmz.toml b/advisories/4.1.0/BRSA-cbg7nhxhibmz.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-cbg7nhxhibmz"
+title = "kernel CVE-2024-49996"
+cve = "CVE-2024-49996"
+severity = "moderate"
+description = "In the Linux kernel, the following vulnerability has been resolved: cifs: Fix buffer overflow when parsing NFS reparse points"
+
+[[advisory.products]]
+package-name = "kernel-6.1"
+patched-version = "6.1.119"
+patched-epoch = "0"
+
+[updateinfo]
+author = "giinglis"
+issue-date = 2024-12-11T18:17:05Z
+arches = ["x86_64", "aarch64"]
+version = "4.1.0"
diff --git a/advisories/4.1.0/BRSA-fes8wtslzjru.toml b/advisories/4.1.0/BRSA-fes8wtslzjru.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-fes8wtslzjru"
+title = "kernel CVE-2024-41080"
+cve = "CVE-2024-41080"
+severity = "moderate"
+description = "In the Linux kernel, the following vulnerability has been resolved: io_uring: fix possible deadlock in io_register_iowq_max_workers()"
+
+[[advisory.products]]
+package-name = "kernel-6.1"
+patched-version = "6.1.119"
+patched-epoch = "0"
+
+[updateinfo]
+author = "giinglis"
+issue-date = 2024-12-11T18:17:05Z
+arches = ["x86_64", "aarch64"]
+version = "4.1.0"
