advisories: add BRSAs for v4.0.1

dhwaniserai · dhwaniserai · commit c48582fce778 · 2025-08-11T21:30:06.000Z
Signed-off-by: Dhwani Serai &lt;dhwanise@amazon.com&gt;
diff --git a/advisories/4.0.1/BRSA-0uijefxa1rwu.toml b/advisories/4.0.1/BRSA-0uijefxa1rwu.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-0uijefxa1rwu"
+title = "kernel CVE-2025-22115"
+cve = "CVE-2025-22115"
+severity = "moderate"
+description = "In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfs_create_pending_block_groups()"
+
+[[advisory.products]]
+package-name = "kernel-6.12"
+patched-version = "6.12.40"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["aarch64", "x86_64"]
+version = "4.0.1"
diff --git a/advisories/4.0.1/BRSA-3wrogcenno0g.toml b/advisories/4.0.1/BRSA-3wrogcenno0g.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-3wrogcenno0g"
+title = "kernel CVE-2025-37906"
+cve = "CVE-2025-37906"
+severity = "high"
+description = "In the Linux kernel, the following vulnerability has been resolved: ublk: fix race between io_uring_cmd_complete_in_task and ublk_cancel_cmd"
+
+[[advisory.products]]
+package-name = "kernel-6.12"
+patched-version = "6.12.40"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["aarch64", "x86_64"]
+version = "4.0.1"
diff --git a/advisories/4.0.1/BRSA-ron03rjofr5m.toml b/advisories/4.0.1/BRSA-ron03rjofr5m.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-ron03rjofr5m"
+title = "kernel CVE-2025-38064"
+cve = "CVE-2025-38064"
+severity = "high"
+description = "In the Linux kernel, the following vulnerability has been resolved: virtio: break and reset virtio devices on device_shutdown()"
+
+[[advisory.products]]
+package-name = "kernel-6.1"
+patched-version = "6.1.147"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["aarch64", "x86_64"]
+version = "4.0.1"
diff --git a/advisories/4.0.1/BRSA-sco419tdddkt.toml b/advisories/4.0.1/BRSA-sco419tdddkt.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-sco419tdddkt"
+title = "kernel CVE-2025-37984"
+cve = "CVE-2025-37984"
+severity = "high"
+description = "In the Linux kernel, the following vulnerability has been resolved: crypto: ecdsa - Harden against integer overflows in DIV_ROUND_UP()"
+
+[[advisory.products]]
+package-name = "kernel-6.12"
+patched-version = "6.12.40"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["aarch64", "x86_64"]
+version = "4.0.1"
diff --git a/advisories/4.0.1/BRSA-umyarikuv0c8.toml b/advisories/4.0.1/BRSA-umyarikuv0c8.toml
@@ -0,0 +1,22 @@
+[advisory]
+id = "BRSA-umyarikuv0c8"
+title = "kernel CVE-2025-38067"
+cve = "CVE-2025-38067"
+severity = "moderate"
+description = "In the Linux kernel, the following vulnerability has been resolved: rseq: Fix segfault on registration when rseq_cs is non-zero"
+
+[[advisory.products]]
+package-name = "kernel-6.1"
+patched-version = "6.1.147"
+patched-epoch = "0"
+
+[[advisory.products]]
+package-name = "kernel-6.12"
+patched-version = "6.12.40"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["aarch64", "x86_64"]
+version = "4.0.1"
diff --git a/advisories/4.0.1/BRSA-xbbrcbl3r3xw.toml b/advisories/4.0.1/BRSA-xbbrcbl3r3xw.toml
@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-xbbrcbl3r3xw"
+title = "kernel CVE-2025-37920"
+cve = "CVE-2025-37920"
+severity = "high"
+description = "In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race condition in AF_XDP generic RX path"
+
+[[advisory.products]]
+package-name = "kernel-6.1"
+patched-version = "6.1.147"
+patched-epoch = "0"
+
+[updateinfo]
+author = "dhwanise"
+issue-date = 2025-08-11T20:57:23Z
+arches = ["x86_64", "aarch64"]
+version = "4.0.1"
