more CVEs already fixed (freshmaker issues)

Signed-off-by: Nick Boldt <[email protected]>

Author: nickboldt

modules/release-notes/list-fixed-security-issues-in-rpm-1.3.2.txt

@@ -7,6 +7,7 @@ CVE-2024-3596, freeradius: forgery attack, https://bugzilla.redhat.com/show_bug.
 CVE-2024-30203, emacs: Gnus treats inline MIME contents as trusted, https://bugzilla.redhat.com/show_bug.cgi?id=2280296
 CVE-2024-30204, emacs: LaTeX preview is enabled by default for e-mail attachments, https://bugzilla.redhat.com/show_bug.cgi?id=2280297
 CVE-2024-30205, emacs: Org mode considers contents of remote files to be trusted, https://bugzilla.redhat.com/show_bug.cgi?id=2280298
+# https://errata.engineering.redhat.com/advisory/142796 -> https://access.redhat.com/errata/RHSA-2024:9541
 CVE-2024-50602, libexpat: expat: DoS via XML_ResumeParser, https://bugzilla.redhat.com/show_bug.cgi?id=2321987
 CVE-2024-2236, libgcrypt: vulnerable to Marvin Attack, https://bugzilla.redhat.com/show_bug.cgi?id=2245218
 CVE-2024-0450, python: The zipfile module is vulnerable to zip-bombs leading to denial of service, https://bugzilla.redhat.com/show_bug.cgi?id=2276525
@@ -20,3 +21,7 @@ CVE-2024-24791, net/http: Denial of service due to improper 100-continue handlin
 
 # https://errata.engineering.redhat.com/advisory/128795 includes 478 bugs fixed in RHEL 9.5 with kernel-5.14.0-503.11.1.el9_5 - only listing one of them here
 CVE-2024-45005, kernel: KVM: s390: fix validity interception issue when gisa is switched off, https://bugzilla.redhat.com/show_bug.cgi?id=2309868
+# https://errata.engineering.redhat.com/advisory/142823 -> https://access.redhat.com/errata/RHSA-2024:9605
+CVE-2024-42283, kernel
+CVE-2024-46824, kernel
+CVE-2024-46858, kernel

modules/release-notes/snip-fixed-security-issues-in-rpm-1.3.2.adoc

@@ -33,9 +33,21 @@ A flaw was found in Emacs. When Emacs is used as an email client, a preview of a
 link:https://access.redhat.com/security/cve/CVE-2024-30205[CVE-2024-30205]::
 A flaw was found in Emacs. Org mode considers the content of remote files, such as files opened with TRAMP on remote systems, to be trusted, resulting in arbitrary code execution.
 
+link:https://access.redhat.com/security/cve/CVE-2024-42283[CVE-2024-42283]::
+In the Linux kernel, the following vulnerability has been resolved:
+net: nexthop: Initialize all fields in dumped nexthops
+
 link:https://access.redhat.com/security/cve/CVE-2024-45005[CVE-2024-45005]::
 In the Linux kernel, the following vulnerability has been resolved:
 KVM: s390: fix validity interception issue when gisa is switched off
 
+link:https://access.redhat.com/security/cve/CVE-2024-46824[CVE-2024-46824]::
+In the Linux kernel, the following vulnerability has been resolved:
+iommufd: Require drivers to supply the cache_invalidate_user ops
+
+link:https://access.redhat.com/security/cve/CVE-2024-46858[CVE-2024-46858]::
+In the Linux kernel, the following vulnerability has been resolved:
+mptcp: pm: Fix uaf in __timer_delete_sync
+
 link:https://access.redhat.com/security/cve/CVE-2024-50602[CVE-2024-50602]::
 A security issue was found in Expat (libexpat). A crash can be triggered in the XML_ResumeParser function due to XML_StopParser's ability to stop or suspend an unstarted parser, which can lead to a denial of service.