github
diff --git a/‎advisories/unreviewed/2023/01/GHSA-94g7-4r7x-4rfv/GHSA-94g7-4r7x-4rfv.json‎
Lines changed: 5 additions & 1 deletion b/‎advisories/unreviewed/2023/01/GHSA-94g7-4r7x-4rfv/GHSA-94g7-4r7x-4rfv.json‎
Lines changed: 5 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2024/05/GHSA-2jv5-59rp-vmgj/GHSA-2jv5-59rp-vmgj.json‎
Lines changed: 3 additions & 1 deletion b/‎advisories/unreviewed/2024/05/GHSA-2jv5-59rp-vmgj/GHSA-2jv5-59rp-vmgj.json‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2024/05/GHSA-9pqc-cpp8-5mgq/GHSA-9pqc-cpp8-5mgq.json‎
Lines changed: 3 additions & 1 deletion b/‎advisories/unreviewed/2024/05/GHSA-9pqc-cpp8-5mgq/GHSA-9pqc-cpp8-5mgq.json‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2024/05/GHSA-vqc4-qhx7-82xg/GHSA-vqc4-qhx7-82xg.json‎
Lines changed: 3 additions & 1 deletion b/‎advisories/unreviewed/2024/05/GHSA-vqc4-qhx7-82xg/GHSA-vqc4-qhx7-82xg.json‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2024/06/GHSA-h9qx-m38j-p96f/GHSA-h9qx-m38j-p96f.json‎
Lines changed: 4 additions & 2 deletions b/‎advisories/unreviewed/2024/06/GHSA-h9qx-m38j-p96f/GHSA-h9qx-m38j-p96f.json‎
Lines changed: 4 additions & 2 deletions
diff --git a/‎advisories/unreviewed/2025/06/GHSA-jrgx-v33c-5f8g/GHSA-jrgx-v33c-5f8g.json‎
Lines changed: 8 additions & 3 deletions b/‎advisories/unreviewed/2025/06/GHSA-jrgx-v33c-5f8g/GHSA-jrgx-v33c-5f8g.json‎
Lines changed: 8 additions & 3 deletions
diff --git a/‎advisories/unreviewed/2025/09/GHSA-2cq2-6rr9-jjr9/GHSA-2cq2-6rr9-jjr9.json‎
Lines changed: 8 additions & 3 deletions b/‎advisories/unreviewed/2025/09/GHSA-2cq2-6rr9-jjr9/GHSA-2cq2-6rr9-jjr9.json‎
Lines changed: 8 additions & 3 deletions
diff --git a/‎advisories/unreviewed/2025/09/GHSA-2pv7-jfgv-x3fr/GHSA-2pv7-jfgv-x3fr.json‎
Lines changed: 11 additions & 4 deletions b/‎advisories/unreviewed/2025/09/GHSA-2pv7-jfgv-x3fr/GHSA-2pv7-jfgv-x3fr.json‎
Lines changed: 11 additions & 4 deletions
diff --git a/‎advisories/unreviewed/2025/09/GHSA-35wp-vg6r-qrm4/GHSA-35wp-vg6r-qrm4.json‎
Lines changed: 8 additions & 3 deletions b/‎advisories/unreviewed/2025/09/GHSA-35wp-vg6r-qrm4/GHSA-35wp-vg6r-qrm4.json‎
Lines changed: 8 additions & 3 deletions
diff --git a/‎advisories/unreviewed/2025/09/GHSA-3rvm-cw98-w4rx/GHSA-3rvm-cw98-w4rx.json‎
Lines changed: 11 additions & 4 deletions b/‎advisories/unreviewed/2025/09/GHSA-3rvm-cw98-w4rx/GHSA-3rvm-cw98-w4rx.json‎
Lines changed: 11 additions & 4 deletions
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-94g7-4r7x-4rfv",
-  "modified": "2023-01-23T15:30:33Z",
+  "modified": "2025-11-25T21:32:02Z",
   "published": "2023-01-12T21:30:30Z",
   "aliases": [
     "CVE-2022-4743"
@@ -39,6 +39,10 @@
       "type": "WEB",
       "url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html"
     },
+    {
+      "type": "WEB",
+      "url": "https://lists.debian.org/debian-lts-announce/2025/11/msg00024.html"
+    },
     {
       "type": "WEB",
       "url": "https://security.gentoo.org/glsa/202305-18"
 
@@ -33,7 +33,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-79"
+    ],
     "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
 
@@ -33,7 +33,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-862"
+    ],
     "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
 
@@ -33,7 +33,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-862"
+    ],
     "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-h9qx-m38j-p96f",
-  "modified": "2024-06-11T06:31:47Z",
+  "modified": "2025-11-25T21:32:03Z",
   "published": "2024-06-11T06:31:46Z",
   "aliases": [
     "CVE-2024-5530"
@@ -33,7 +33,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-79"
+    ],
     "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-jrgx-v33c-5f8g",
-  "modified": "2025-06-18T12:30:53Z",
+  "modified": "2025-11-25T21:32:03Z",
   "published": "2025-06-18T12:30:53Z",
   "aliases": [
     "CVE-2022-50176"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mcde: Fix refcount leak in mcde_dsi_bind\n\nEvery iteration of for_each_available_child_of_node() decrements\nthe reference counter of the previous node. There is no decrement\nwhen break out from the loop and results in refcount leak.\nAdd missing of_node_put() to fix this.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -41,7 +46,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:47Z"
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2cq2-6rr9-jjr9",
-  "modified": "2025-09-05T18:31:26Z",
+  "modified": "2025-11-25T21:32:03Z",
   "published": "2025-09-05T18:31:26Z",
   "aliases": [
     "CVE-2025-39696"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: tas2781: Fix wrong reference of tasdevice_priv\n\nDuring the conversion to unify the calibration data management, the\nreference to tasdevice_priv was wrongly set to h->hda_priv instead of\nh->priv.  This resulted in memory corruption and crashes eventually.\nUnfortunately it's a void pointer, hence the compiler couldn't know\nthat it's wrong.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -25,7 +30,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-09-05T18:15:46Z"
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2pv7-jfgv-x3fr",
-  "modified": "2025-09-11T18:35:52Z",
+  "modified": "2025-11-25T21:32:04Z",
   "published": "2025-09-11T18:35:52Z",
   "aliases": [
     "CVE-2025-39767"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Optimize module load time by optimizing PLT/GOT counting\n\nWhen enabling CONFIG_KASAN, CONFIG_PREEMPT_VOLUNTARY_BUILD and\nCONFIG_PREEMPT_VOLUNTARY at the same time, there will be soft deadlock,\nthe relevant logs are as follows:\n\nrcu: INFO: rcu_sched self-detected stall on CPU\n...\nCall Trace:\n[<900000000024f9e4>] show_stack+0x5c/0x180\n[<90000000002482f4>] dump_stack_lvl+0x94/0xbc\n[<9000000000224544>] rcu_dump_cpu_stacks+0x1fc/0x280\n[<900000000037ac80>] rcu_sched_clock_irq+0x720/0xf88\n[<9000000000396c34>] update_process_times+0xb4/0x150\n[<90000000003b2474>] tick_nohz_handler+0xf4/0x250\n[<9000000000397e28>] __hrtimer_run_queues+0x1d0/0x428\n[<9000000000399b2c>] hrtimer_interrupt+0x214/0x538\n[<9000000000253634>] constant_timer_interrupt+0x64/0x80\n[<9000000000349938>] __handle_irq_event_percpu+0x78/0x1a0\n[<9000000000349a78>] handle_irq_event_percpu+0x18/0x88\n[<9000000000354c00>] handle_percpu_irq+0x90/0xf0\n[<9000000000348c74>] handle_irq_desc+0x94/0xb8\n[<9000000001012b28>] handle_cpu_irq+0x68/0xa0\n[<9000000001def8c0>] handle_loongarch_irq+0x30/0x48\n[<9000000001def958>] do_vint+0x80/0xd0\n[<9000000000268a0c>] kasan_mem_to_shadow.part.0+0x2c/0x2a0\n[<90000000006344f4>] __asan_load8+0x4c/0x120\n[<900000000025c0d0>] module_frob_arch_sections+0x5c8/0x6b8\n[<90000000003895f0>] load_module+0x9e0/0x2958\n[<900000000038b770>] __do_sys_init_module+0x208/0x2d0\n[<9000000001df0c34>] do_syscall+0x94/0x190\n[<900000000024d6fc>] handle_syscall+0xbc/0x158\n\nAfter analysis, this is because the slow speed of loading the amdgpu\nmodule leads to the long time occupation of the cpu and then the soft\ndeadlock.\n\nWhen loading a module, module_frob_arch_sections() tries to figure out\nthe number of PLTs/GOTs that will be needed to handle all the RELAs. It\nwill call the count_max_entries() to find in an out-of-order date which\ncounting algorithm has O(n^2) complexity.\n\nTo make it faster, we sort the relocation list by info and addend. That\nway, to check for a duplicate relocation, it just needs to compare with\nthe previous entry. This reduces the complexity of the algorithm to O(n\n log n), as done in commit d4e0340919fb (\"arm64/module: Optimize module\nload time by optimizing PLT counting\"). This gives sinificant reduction\nin module load time for modules with large number of relocations.\n\nAfter applying this patch, the soft deadlock problem has been solved,\nand the kernel starts normally without \"Call Trace\".\n\nUsing the default configuration to test some modules, the results are as\nfollows:\n\nModule              Size\nip_tables           36K\nfat                 143K\nradeon              2.5MB\namdgpu              16MB\n\nWithout this patch:\nModule              Module load time (ms)\tCount(PLTs/GOTs)\nip_tables           18\t\t\t\t59/6\nfat                 0\t\t\t\t162/14\nradeon              54\t\t\t\t1221/84\namdgpu              1411\t\t\t4525/1098\n\nWith this patch:\nModule              Module load time (ms)\tCount(PLTs/GOTs)\nip_tables           18\t\t\t\t59/6\nfat                 0\t\t\t\t162/14\nradeon              22\t\t\t\t1221/84\namdgpu              45\t\t\t\t4525/1098",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -32,8 +37,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-667"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-09-11T17:15:42Z"
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-35wp-vg6r-qrm4",
-  "modified": "2025-09-11T18:35:52Z",
+  "modified": "2025-11-25T21:32:04Z",
   "published": "2025-09-11T18:35:52Z",
   "aliases": [
     "CVE-2025-39781"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nparisc: Drop WARN_ON_ONCE() from flush_cache_vmap\n\nI have observed warning to occassionally trigger.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -33,7 +38,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-09-11T17:15:44Z"
 
@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-3rvm-cw98-w4rx",
-  "modified": "2025-09-11T18:35:52Z",
+  "modified": "2025-11-25T21:32:04Z",
   "published": "2025-09-11T18:35:52Z",
   "aliases": [
     "CVE-2025-39765"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: timer: fix ida_free call while not allocated\n\nIn the snd_utimer_create() function, if the kasprintf() function return\nNULL, snd_utimer_put_id() will be called, finally use ida_free()\nto free the unallocated id 0.\n\nthe syzkaller reported the following information:\n  ------------[ cut here ]------------\n  ida_free called for id=0 which is not allocated.\n  WARNING: CPU: 1 PID: 1286 at lib/idr.c:592 ida_free+0x1fd/0x2f0 lib/idr.c:592\n  Modules linked in:\n  CPU: 1 UID: 0 PID: 1286 Comm: syz-executor164 Not tainted 6.15.8 #3 PREEMPT(lazy)\n  Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-4.fc42 04/01/2014\n  RIP: 0010:ida_free+0x1fd/0x2f0 lib/idr.c:592\n  Code: f8 fc 41 83 fc 3e 76 69 e8 70 b2 f8 (...)\n  RSP: 0018:ffffc900007f79c8 EFLAGS: 00010282\n  RAX: 0000000000000000 RBX: 1ffff920000fef3b RCX: ffffffff872176a5\n  RDX: ffff88800369d200 RSI: 0000000000000000 RDI: ffff88800369d200\n  RBP: 0000000000000000 R08: ffffffff87ba60a5 R09: 0000000000000000\n  R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000\n  R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000\n  FS:  00007f6f1abc1740(0000) GS:ffff8880d76a0000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 00007f6f1ad7a784 CR3: 000000007a6e2000 CR4: 00000000000006f0\n  Call Trace:\n   <TASK>\n   snd_utimer_put_id sound/core/timer.c:2043 [inline] [snd_timer]\n   snd_utimer_create+0x59b/0x6a0 sound/core/timer.c:2184 [snd_timer]\n   snd_utimer_ioctl_create sound/core/timer.c:2202 [inline] [snd_timer]\n   __snd_timer_user_ioctl.isra.0+0x724/0x1340 sound/core/timer.c:2287 [snd_timer]\n   snd_timer_user_ioctl+0x75/0xc0 sound/core/timer.c:2298 [snd_timer]\n   vfs_ioctl fs/ioctl.c:51 [inline]\n   __do_sys_ioctl fs/ioctl.c:907 [inline]\n   __se_sys_ioctl fs/ioctl.c:893 [inline]\n   __x64_sys_ioctl+0x198/0x200 fs/ioctl.c:893\n   do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0x7b/0x160 arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n  [...]\n\nThe utimer->id should be set properly before the kasprintf() function,\nensures the snd_utimer_put_id() function will free the allocated id.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-476"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-09-11T17:15:40Z"