Advisory Database Sync

Author: advisory-database[bot]

advisories/unreviewed/2024/06/GHSA-354c-38ff-3cw6/GHSA-354c-38ff-3cw6.json

@@ -27,7 +27,8 @@
   "database_specific": {
     "cwe_ids": [
       "CWE-457",
-      "CWE-863"
+      "CWE-863",
+      "CWE-908"
     ],
     "severity": "HIGH",
     "github_reviewed": false,

advisories/unreviewed/2025/01/GHSA-7h23-57pg-3hwc/GHSA-7h23-57pg-3hwc.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-7h23-57pg-3hwc",
-  "modified": "2025-11-11T15:31:20Z",
+  "modified": "2025-11-13T21:31:14Z",
   "published": "2025-01-28T00:32:13Z",
   "aliases": [
     "CVE-2025-24085"
@@ -19,6 +19,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24085"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cisagov/vulnrichment/issues/194"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201"

advisories/unreviewed/2025/03/GHSA-2j99-5q75-3f57/GHSA-2j99-5q75-3f57.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2j99-5q75-3f57",
-  "modified": "2025-11-11T15:31:20Z",
+  "modified": "2025-11-13T21:31:15Z",
   "published": "2025-03-11T18:32:19Z",
   "aliases": [
     "CVE-2025-24201"
@@ -19,6 +19,10 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-24201"
     },
+    {
+      "type": "WEB",
+      "url": "https://github.com/cisagov/vulnrichment/issues/194"
+    },
     {
       "type": "WEB",
       "url": "https://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201"

advisories/unreviewed/2025/06/GHSA-299c-rwx7-xh4q/GHSA-299c-rwx7-xh4q.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-299c-rwx7-xh4q",
-  "modified": "2025-06-18T12:30:38Z",
+  "modified": "2025-11-13T21:31:17Z",
   "published": "2025-06-18T12:30:38Z",
   "aliases": [
     "CVE-2022-49971"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/pm: Fix a potential gpu_metrics_table memory leak\n\nMemory is allocated for gpu_metrics_table in\nsmu_v13_0_4_init_smc_tables(), but not freed in\nsmu_v13_0_4_fini_smc_tables(). This may cause memory leaks, fix it.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -24,8 +29,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-401"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:24Z"

advisories/unreviewed/2025/06/GHSA-29wv-m5qw-5h7j/GHSA-29wv-m5qw-5h7j.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-29wv-m5qw-5h7j",
-  "modified": "2025-06-18T12:30:39Z",
+  "modified": "2025-11-13T21:31:17Z",
   "published": "2025-06-18T12:30:38Z",
   "aliases": [
     "CVE-2022-49975"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Don't redirect packets with invalid pkt_len\n\nSyzbot found an issue [1]: fq_codel_drop() try to drop a flow whitout any\nskbs, that is, the flow->head is null.\nThe root cause, as the [2] says, is because that bpf_prog_test_run_skb()\nrun a bpf prog which redirects empty skbs.\nSo we should determine whether the length of the packet modified by bpf\nprog or others like bpf_prog_test is valid before forwarding it directly.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -37,7 +42,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:24Z"

advisories/unreviewed/2025/06/GHSA-2cr7-6fpw-9hfx/GHSA-2cr7-6fpw-9hfx.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2cr7-6fpw-9hfx",
-  "modified": "2025-06-18T12:30:39Z",
+  "modified": "2025-11-13T21:31:17Z",
   "published": "2025-06-18T12:30:39Z",
   "aliases": [
     "CVE-2022-49976"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: x86-android-tablets: Fix broken touchscreen on Chuwi Hi8 with Windows BIOS\n\nThe x86-android-tablets handling for the Chuwi Hi8 is only necessary with\nthe Android BIOS and it is causing problems with the Windows BIOS version.\n\nSpecifically when trying to register the already present touchscreen\nx86_acpi_irq_helper_get() calls acpi_unregister_gsi(), this breaks\nthe working of the touchscreen and also leads to an oops:\n\n[   14.248946] ------------[ cut here ]------------\n[   14.248954] remove_proc_entry: removing non-empty directory 'irq/75', leaking at least 'MSSL0001:00'\n[   14.248983] WARNING: CPU: 3 PID: 440 at fs/proc/generic.c:718 remove_proc_entry\n...\n[   14.249293]  unregister_irq_proc+0xe0/0x100\n[   14.249305]  free_desc+0x29/0x70\n[   14.249312]  irq_free_descs+0x4b/0x80\n[   14.249320]  mp_unmap_irq+0x5c/0x60\n[   14.249329]  acpi_unregister_gsi_ioapic+0x2a/0x40\n[   14.249338]  x86_acpi_irq_helper_get+0x4b/0x190 [x86_android_tablets]\n[   14.249355]  x86_android_tablet_init+0x178/0xe34 [x86_android_tablets]\n\nAdd an init callback for the Chuwi Hi8, which detects when the Windows BIOS\nis in use and exits with -ENODEV in that case, fixing this.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -25,7 +30,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:25Z"

advisories/unreviewed/2025/06/GHSA-2r5w-5g45-wg8x/GHSA-2r5w-5g45-wg8x.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-2r5w-5g45-wg8x",
-  "modified": "2025-06-18T12:30:45Z",
+  "modified": "2025-11-13T21:31:18Z",
   "published": "2025-06-18T12:30:45Z",
   "aliases": [
     "CVE-2022-50050"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: Intel: hda: Fix potential buffer overflow by snprintf()\n\nsnprintf() returns the would-be-filled size when the string overflows\nthe given buffer size, hence using this value may result in the buffer\noverflow (although it's unrealistic).\n\nThis patch replaces with a safer version, scnprintf() for papering\nover such a potential issue.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-787"
+    ],
+    "severity": "HIGH",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:33Z"

advisories/unreviewed/2025/06/GHSA-4265-mmrf-q5w3/GHSA-4265-mmrf-q5w3.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4265-mmrf-q5w3",
-  "modified": "2025-06-18T12:30:45Z",
+  "modified": "2025-11-13T21:31:18Z",
   "published": "2025-06-18T12:30:45Z",
   "aliases": [
     "CVE-2022-50048"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: possible module reference underflow in error path\n\ndst->ops is set on when nft_expr_clone() fails, but module refcount has\nnot been bumped yet, therefore nft_expr_destroy() leads to module\nreference underflow.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -29,7 +34,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:33Z"

advisories/unreviewed/2025/06/GHSA-4655-978p-cp8q/GHSA-4655-978p-cp8q.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4655-978p-cp8q",
-  "modified": "2025-06-18T12:30:44Z",
+  "modified": "2025-11-13T21:31:18Z",
   "published": "2025-06-18T12:30:44Z",
   "aliases": [
     "CVE-2022-50044"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: start MHI channel after endpoit creation\n\nMHI channel may generates event/interrupt right after enabling.\nIt may leads to 2 race conditions issues.\n\n1)\nSuch event may be dropped by qcom_mhi_qrtr_dl_callback() at check:\n\n\tif (!qdev || mhi_res->transaction_status)\n\t\treturn;\n\nBecause dev_set_drvdata(&mhi_dev->dev, qdev) may be not performed at\nthis moment. In this situation qrtr-ns will be unable to enumerate\nservices in device.\n---------------------------------------------------------------\n\n2)\nSuch event may come at the moment after dev_set_drvdata() and\nbefore qrtr_endpoint_register(). In this case kernel will panic with\naccessing wrong pointer at qcom_mhi_qrtr_dl_callback():\n\n\trc = qrtr_endpoint_post(&qdev->ep, mhi_res->buf_addr,\n\t\t\t\tmhi_res->bytes_xferd);\n\nBecause endpoint is not created yet.\n--------------------------------------------------------------\nSo move mhi_prepare_for_transfer_autoqueue after endpoint creation\nto fix it.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -28,8 +33,10 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
-    "severity": null,
+    "cwe_ids": [
+      "CWE-362"
+    ],
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:32Z"

advisories/unreviewed/2025/06/GHSA-4x6m-cqxf-jch7/GHSA-4x6m-cqxf-jch7.json

@@ -1,13 +1,18 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-4x6m-cqxf-jch7",
-  "modified": "2025-06-18T12:30:42Z",
+  "modified": "2025-11-13T21:31:17Z",
   "published": "2025-06-18T12:30:42Z",
   "aliases": [
     "CVE-2022-50017"
   ],
   "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nmips: cavium-octeon: Fix missing of_node_put() in octeon2_usb_clocks_start\n\nWe should call of_node_put() for the reference 'uctl_node' returned by\nof_get_parent() which will increase the refcount. Otherwise, there will\nbe a refcount leak bug.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
+    }
+  ],
   "affected": [],
   "references": [
     {
@@ -49,7 +54,7 @@
   ],
   "database_specific": {
     "cwe_ids": [],
-    "severity": null,
+    "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,
     "nvd_published_at": "2025-06-18T11:15:29Z"