GSD-2022-1006908

See a problem?
Please try reporting it to the source first.

Source

https://data.gsd.id/GSD-2022-1006908

Import Source

https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1006xxx/GSD-2022-1006908.json

JSON Data

https://api.osv.dev/v1/vulns/GSD-2022-1006908

Published

2022-11-14T18:49:01.814691Z

Modified

2023-02-22T05:16:17.220783Z

Summary

dm: verity-loadpin: Only trust verity targets with enforcement

Details

dm: verity-loadpin: Only trust verity targets with enforcement

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit cb1f5b76e39d86c98722696bdf632987aa777b83, it was introduced in version v6.0 by commit b6c1c5745ccc68ac5d57c7ffb51ea25a86d0e97b. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events: Introduced

b6c1c5745ccc68ac5d57c7ffb51ea25a86d0e97b

Limit

cb1f5b76e39d86c98722696bdf632987aa777b83

Affected versions

v5.*

v5.19

v5.19-rc4

v5.19-rc5

v5.19-rc6

v5.19-rc7

v5.19-rc8

v6.*

v6.0

v6.0-rc1

v6.0-rc2

v6.0-rc3

v6.0-rc4

v6.0-rc5

v6.0-rc6

v6.0-rc7

v6.0.1

v6.0.2

Database specific

source

"https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1006xxx/GSD-2022-1006908.json"