Bug#1064229: firmware-nonfree: CVE-2023-35061 CVE-2023-34983 CVE-2023-33875 CVE-2023-32651 CVE-2023-32644 CVE-2023-32642 CVE-2023-28720 CVE-2023-28374 CVE-2023-26586 CVE-2023-25951

To: 1064229@bugs.debian.org, Salvatore Bonaccorso <carnil@debian.org>
Subject: Bug#1064229: firmware-nonfree: CVE-2023-35061 CVE-2023-34983 CVE-2023-33875 CVE-2023-32651 CVE-2023-32644 CVE-2023-32642 CVE-2023-28720 CVE-2023-28374 CVE-2023-26586 CVE-2023-25951
From: Ben Hutchings <ben@decadent.org.uk>
Date: Sun, 30 Jun 2024 20:42:32 +0200
Message-id: <[🔎] 7bd46ac4bd03a3429c8a6569301af78e831c8e43.camel@decadent.org.uk>
Reply-to: Ben Hutchings <ben@decadent.org.uk>, 1064229@bugs.debian.org
In-reply-to: <170828550726.1149661.5924724578764331819.reportbug@eldamar.lan>
References: <170828550726.1149661.5924724578764331819.reportbug@eldamar.lan> <170828550726.1149661.5924724578764331819.reportbug@eldamar.lan>

On Sun, 18 Feb 2024 20:45:07 +0100 Salvatore Bonaccorso
<carnil@debian.org> wrote:
> Source: firmware-nonfree
> Version: 20230625-2
> Severity: important
> Tags: security upstream
> X-Debbugs-Cc: carnil@debian.org, Debian Security Team
<team@security.debian.org>
> 
> Hi,
> 
> The following vulnerabilities were published for firmware-nonfree.
> 
> They are addressed in the linux-firmware/20231211 upstream version.
[...]

According to
<https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00947.html>
only CVE-2023-35061 affects Linux (presumably the other issues are in
the Windows driver, not the firmware).

Ben.

-- 
Ben Hutchings
Make three consecutive correct guesses and you will be considered
an expert.

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Bug#1064229: firmware-nonfree: CVE-2023-35061 CVE-2023-34983 CVE-2023-33875 CVE-2023-32651 CVE-2023-32644 CVE-2023-32642 CVE-2023-28720 CVE-2023-28374 CVE-2023-26586 CVE-2023-25951
  - From: Salvatore Bonaccorso <carnil@debian.org>