Hi! Please ignore my 2nd email from masami.ichikawa@cybertrust.co.jp. It's my mistake. Cheers, On Thu, Jun 17, 2021 at 7:55 PM 市川正美 wrote: > > Hi! > > 2021年6月11日(金) 2:05 Pavel Machek : > > > > Hi! > > > > These are the new issues this week: > > > > Best regards, > > Pavel > > > > * 2021-06-04 > > > > CVE-2021-33200 -- BPF fix turned out to be buggy. > > > > * 2021-06-09 > > > > CVE-2021-0606 -- EoP in GPU DRM Driver / reported by android, probably upstream commit e7cdf5c82f1773c3386b93bbcf13b9bfff29fa31 ... may be interesting? > > > > CVE-2021-3587 -- redhat Bugzilla 1968057: CVE-2021-3587 kernel: nfc: Null pointer dereference in llcp_sock_getname > > > > CVE-2020-36385 -- An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf. > > > > According to the CVE-2020-36385.yml it describes 'RDMA/ucma: Rework > ucma_migrate_id() to avoid races with destroy'. However According to > the CVE-2020-36385.yml it describes 'RDMA/ucma: Rework > ucma_migrate_id() to avoid races with destroy'. However, the > description of 'An issue was discovered in the Linux kernel before > 5.8.1 ...' seems like CVE-2020-36386. > > > CVE-2020-36387 -- An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35. > > > > > > > > > > > > > > > > > > -- > > DENX Software Engineering GmbH, Managing Director: Wolfgang Denk > > HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany > > > > > > > > > -- /** * Masami Ichikawa * personal: masami256@gmail.com * fedora project: masami@fedoraproject.org */