[ { "schema_version": "1.7.0", "id": "CVE-2020-27815", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2020-27815" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2020-27815)", "details": "HeartSuite classifies CVE-2020-27815 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27815" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2020-27815.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2021-20194", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2021-20194" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BPF_SYSCALL is not enabled (CVE-2021-20194)", "details": "HeartSuite classifies CVE-2021-20194 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BPF_SYSCALL = 'n' (page entry: BPF Syscall Interface)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BPF_SYSCALL", "state": "n", "page_entry": "BPF Syscall Interface" } ], "config_gate": "CONFIG_BPF_SYSCALL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20194" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2021-20194.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BPF_SYSCALL", "state": "n", "page_entry": "BPF Syscall Interface" } ], "config_gate": "CONFIG_BPF_SYSCALL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-2196", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-2196" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-2196)", "details": "HeartSuite classifies CVE-2022-2196 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2196" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-2196.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-2961", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-2961" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_AF_RXRPC, CONFIG_MCTP, CONFIG_RDS, CONFIG_ROSE, CONFIG_TLS are not enabled (CVE-2022-2961)", "details": "HeartSuite classifies CVE-2022-2961 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_RDS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_ROSE = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_MCTP = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_AF_RXRPC = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2961" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-2961.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-2978", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-2978" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2022-2978)", "details": "HeartSuite classifies CVE-2022-2978 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2978" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-2978.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-3424", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-3424" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-3424)", "details": "HeartSuite classifies CVE-2022-3424 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3424" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-3424.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-3564", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-3564" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BT is not enabled (CVE-2022-3564)", "details": "HeartSuite classifies CVE-2022-3564 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BT = 'n' (page entry: Bluetooth Stack)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3564" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-3564.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-3640", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-3640" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BT is not enabled (CVE-2022-3640)", "details": "HeartSuite classifies CVE-2022-3640 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BT = 'n' (page entry: Bluetooth Stack)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3640" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-3640.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-3977", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-3977" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_AF_RXRPC, CONFIG_MCTP, CONFIG_RDS, CONFIG_ROSE, CONFIG_TLS are not enabled (CVE-2022-3977)", "details": "HeartSuite classifies CVE-2022-3977 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_RDS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_ROSE = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_MCTP = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_AF_RXRPC = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3977" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-3977.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-42896", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-42896" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BT is not enabled (CVE-2022-42896)", "details": "HeartSuite classifies CVE-2022-42896 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BT = 'n' (page entry: Bluetooth Stack)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42896" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-42896.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-4379", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-4379" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NFSD is not enabled (CVE-2022-4379)", "details": "HeartSuite classifies CVE-2022-4379 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NFSD = 'n' (page entry: NFS Server)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-4379" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-4379.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-43945", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-43945" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NFSD is not enabled (CVE-2022-43945)", "details": "HeartSuite classifies CVE-2022-43945 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NFSD = 'n' (page entry: NFS Server)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-43945" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-43945.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-45884", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-45884" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-45884)", "details": "HeartSuite classifies CVE-2022-45884 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45884" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-45884.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-45885", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-45885" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-45885)", "details": "HeartSuite classifies CVE-2022-45885 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45885" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-45885.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-45886", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-45886" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-45886)", "details": "HeartSuite classifies CVE-2022-45886 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45886" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-45886.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-45919", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-45919" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2022-45919)", "details": "HeartSuite classifies CVE-2022-45919 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45919" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-45919.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-45934", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-45934" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BT is not enabled (CVE-2022-45934)", "details": "HeartSuite classifies CVE-2022-45934 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BT = 'n' (page entry: Bluetooth Stack)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-45934" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-45934.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48423", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48423" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2022-48423)", "details": "HeartSuite classifies CVE-2022-48423 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48423" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48423.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-48424", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48424" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2022-48424)", "details": "HeartSuite classifies CVE-2022-48424 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48424" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48424.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-48425", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48425" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2022-48425)", "details": "HeartSuite classifies CVE-2022-48425 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48425" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48425.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2022-48502", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48502" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NTFS3_FS is not enabled (CVE-2022-48502)", "details": "HeartSuite classifies CVE-2022-48502 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Ntfs3 Fs {#config-ntfs3-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Ntfs3 Fs {#config-ntfs3-fs}" } ], "config_gate": "CONFIG_NTFS3_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48502" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48502.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Ntfs3 Fs {#config-ntfs3-fs}" } ], "config_gate": "CONFIG_NTFS3_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48632", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48632" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MLXBF_I2C is not enabled (CVE-2022-48632)", "details": "HeartSuite classifies CVE-2022-48632 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MLXBF_I2C = 'n' (page entry: Mlxbf I2C {#config-mlxbf-i2c})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MLXBF_I2C", "state": "n", "page_entry": "Mlxbf I2C {#config-mlxbf-i2c}" } ], "config_gate": "CONFIG_MLXBF_I2C", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48632" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48632.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MLXBF_I2C", "state": "n", "page_entry": "Mlxbf I2C {#config-mlxbf-i2c}" } ], "config_gate": "CONFIG_MLXBF_I2C", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48637", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48637" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RDS is not enabled (CVE-2022-48637)", "details": "HeartSuite classifies CVE-2022-48637 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RDS = 'n' (page entry: Rds {#config-rds})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48637" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48637.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48657", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48657" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ARM64 is not enabled (CVE-2022-48657)", "details": "HeartSuite classifies CVE-2022-48657 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ARM64 = 'n' (page entry: ARM64 Architecture {#arm64-arch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ARM64", "state": "n", "page_entry": "ARM64 Architecture {#arm64-arch}" } ], "config_gate": "CONFIG_ARM64", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48657" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48657.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ARM64", "state": "n", "page_entry": "ARM64 Architecture {#arm64-arch}" } ], "config_gate": "CONFIG_ARM64", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48670", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48670" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PECI is not enabled (CVE-2022-48670)", "details": "HeartSuite classifies CVE-2022-48670 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PECI = 'n' (page entry: Peci {#config-peci})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PECI", "state": "n", "page_entry": "Peci {#config-peci}" } ], "config_gate": "CONFIG_PECI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48670" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48670.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PECI", "state": "n", "page_entry": "Peci {#config-peci}" } ], "config_gate": "CONFIG_PECI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48672", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48672" ], "summary": "HeartSuite HS kernel not affected: CONFIG_OF is not enabled (CVE-2022-48672)", "details": "HeartSuite classifies CVE-2022-48672 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_OF = 'n' (page entry: Of {#config-of})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_OF", "state": "n", "page_entry": "Of {#config-of}" } ], "config_gate": "CONFIG_OF", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48672" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48672.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_OF", "state": "n", "page_entry": "Of {#config-of}" } ], "config_gate": "CONFIG_OF", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48674", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48674" ], "summary": "HeartSuite HS kernel not affected: CONFIG_EROFS_FS is not enabled (CVE-2022-48674)", "details": "HeartSuite classifies CVE-2022-48674 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_EROFS_FS = 'n' (page entry: EROFS Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_EROFS_FS", "state": "n", "page_entry": "EROFS Filesystem" } ], "config_gate": "CONFIG_EROFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48674" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48674.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_EROFS_FS", "state": "n", "page_entry": "EROFS Filesystem" } ], "config_gate": "CONFIG_EROFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48960", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48960" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HI_GMAC is not enabled (CVE-2022-48960)", "details": "HeartSuite classifies CVE-2022-48960 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HI_GMAC = 'n' (page entry: Hi Gmac {#config-hi-gmac})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HI_GMAC", "state": "n", "page_entry": "Hi Gmac {#config-hi-gmac}" } ], "config_gate": "CONFIG_HI_GMAC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48960" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48960.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HI_GMAC", "state": "n", "page_entry": "Hi Gmac {#config-hi-gmac}" } ], "config_gate": "CONFIG_HI_GMAC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-48962", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-48962" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HI_GMAC is not enabled (CVE-2022-48962)", "details": "HeartSuite classifies CVE-2022-48962 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HI_GMAC = 'n' (page entry: Hi Gmac {#config-hi-gmac})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HI_GMAC", "state": "n", "page_entry": "Hi Gmac {#config-hi-gmac}" } ], "config_gate": "CONFIG_HI_GMAC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48962" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-48962.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HI_GMAC", "state": "n", "page_entry": "Hi Gmac {#config-hi-gmac}" } ], "config_gate": "CONFIG_HI_GMAC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-49015", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-49015" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HSR is not enabled (CVE-2022-49015)", "details": "HeartSuite classifies CVE-2022-49015 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HSR = 'n' (page entry: Hsr {#config-hsr})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HSR", "state": "n", "page_entry": "Hsr {#config-hsr}" } ], "config_gate": "CONFIG_HSR", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49015" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-49015.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HSR", "state": "n", "page_entry": "Hsr {#config-hsr}" } ], "config_gate": "CONFIG_HSR", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-49740", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-49740" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BRCMFMAC is not enabled (CVE-2022-49740)", "details": "HeartSuite classifies CVE-2022-49740 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BRCMFMAC = 'n' (page entry: Broadcom WiFi Driver {#brcmfmac-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BRCMFMAC", "state": "n", "page_entry": "Broadcom WiFi Driver {#brcmfmac-driver}" } ], "config_gate": "CONFIG_BRCMFMAC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49740" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-49740.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BRCMFMAC", "state": "n", "page_entry": "Broadcom WiFi Driver {#brcmfmac-driver}" } ], "config_gate": "CONFIG_BRCMFMAC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-49763", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-49763" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NTFS_FS is not enabled (CVE-2022-49763)", "details": "HeartSuite classifies CVE-2022-49763 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS_FS = 'n' (page entry: Ntfs Fs {#config-ntfs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Ntfs Fs {#config-ntfs-fs}" } ], "config_gate": "CONFIG_NTFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49763" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-49763.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Ntfs Fs {#config-ntfs-fs}" } ], "config_gate": "CONFIG_NTFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-49792", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-49792" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2022-49792)", "details": "HeartSuite classifies CVE-2022-49792 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49792" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-49792.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-49956", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-49956" ], "summary": "HeartSuite HS kernel not affected: CONFIG_STAGING is not enabled (CVE-2022-49956)", "details": "HeartSuite classifies CVE-2022-49956 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_STAGING = 'n' (page entry: Staging {#config-staging})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_STAGING", "state": "n", "page_entry": "Staging {#config-staging}" } ], "config_gate": "CONFIG_STAGING", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-49956" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-49956.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_STAGING", "state": "n", "page_entry": "Staging {#config-staging}" } ], "config_gate": "CONFIG_STAGING", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-50325", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-50325" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SND_SOC is not enabled (CVE-2022-50325)", "details": "HeartSuite classifies CVE-2022-50325 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SND_SOC = 'n' (page entry: Snd Soc {#config-snd-soc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SND_SOC", "state": "n", "page_entry": "Snd Soc {#config-snd-soc}" } ], "config_gate": "CONFIG_SND_SOC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50325" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-50325.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SND_SOC", "state": "n", "page_entry": "Snd Soc {#config-snd-soc}" } ], "config_gate": "CONFIG_SND_SOC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2022-50518", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2022-50518" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PARISC is not enabled (CVE-2022-50518)", "details": "HeartSuite classifies CVE-2022-50518 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PARISC = 'n' (page entry: Parisc {#config-parisc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PARISC", "state": "n", "page_entry": "Parisc {#config-parisc}" } ], "config_gate": "CONFIG_PARISC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-50518" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2022-50518.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PARISC", "state": "n", "page_entry": "Parisc {#config-parisc}" } ], "config_gate": "CONFIG_PARISC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-0210", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-0210" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_SMB_SERVER, CONFIG_USB_NET_RNDIS_WLAN are not enabled (CVE-2023-0210)", "details": "HeartSuite classifies CVE-2023-0210 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_NET_RNDIS_WLAN = 'n' (page entry: USB Network Adapter and SMB Server)\n - CONFIG_SMB_SERVER = 'n' (page entry: USB Network Adapter and SMB Server)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_NET_RNDIS_WLAN", "state": "n", "page_entry": "USB Network Adapter and SMB Server" }, { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "USB Network Adapter and SMB Server" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0210" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-0210.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_NET_RNDIS_WLAN", "state": "n", "page_entry": "USB Network Adapter and SMB Server" }, { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "USB Network Adapter and SMB Server" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-1078", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1078" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_AF_RXRPC, CONFIG_MCTP, CONFIG_RDS, CONFIG_ROSE, CONFIG_TLS are not enabled (CVE-2023-1078)", "details": "HeartSuite classifies CVE-2023-1078 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_RDS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_ROSE = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_MCTP = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_AF_RXRPC = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1078" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1078.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-1194", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1194" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CIFS is not enabled (CVE-2023-1194)", "details": "HeartSuite classifies CVE-2023-1194 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CIFS = 'n' (page entry: CIFS/SMB Client {#cifs-smb-client})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1194" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1194.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-1281", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1281" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_NET_CLS_TCINDEX, CONFIG_NET_SCH_QFQ are not enabled (CVE-2023-1281)", "details": "HeartSuite classifies CVE-2023-1281 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_QFQ = 'n' (page entry: Network Traffic Control Schedulers)\n - CONFIG_NET_CLS_TCINDEX = 'n' (page entry: Network Traffic Control Schedulers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1281" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1281.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-1652", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1652" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NFSD is not enabled (CVE-2023-1652)", "details": "HeartSuite classifies CVE-2023-1652 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NFSD = 'n' (page entry: NFS Server)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1652" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1652.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NFSD", "state": "n", "page_entry": "NFS Server" } ], "config_gate": "CONFIG_NFSD", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-1829", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1829" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_NET_CLS_TCINDEX, CONFIG_NET_SCH_QFQ are not enabled (CVE-2023-1829)", "details": "HeartSuite classifies CVE-2023-1829 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_QFQ = 'n' (page entry: Network Traffic Control Schedulers)\n - CONFIG_NET_CLS_TCINDEX = 'n' (page entry: Network Traffic Control Schedulers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1829" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1829.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-1989", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-1989" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BT is not enabled (CVE-2023-1989)", "details": "HeartSuite classifies CVE-2023-1989 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BT = 'n' (page entry: Bluetooth Stack)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-1989" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-1989.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BT", "state": "n", "page_entry": "Bluetooth Stack" } ], "config_gate": "CONFIG_BT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-2006", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-2006" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_AF_RXRPC, CONFIG_MCTP, CONFIG_RDS, CONFIG_ROSE, CONFIG_TLS are not enabled (CVE-2023-2006)", "details": "HeartSuite classifies CVE-2023-2006 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_RDS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_ROSE = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_MCTP = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_AF_RXRPC = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2006" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-2006.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-2124", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-2124" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2023-2124)", "details": "HeartSuite classifies CVE-2023-2124 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-2124" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-2124.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-23559", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-23559" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_SMB_SERVER, CONFIG_USB_NET_RNDIS_WLAN are not enabled (CVE-2023-23559)", "details": "HeartSuite classifies CVE-2023-23559 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_NET_RNDIS_WLAN = 'n' (page entry: USB Network Adapter and SMB Server)\n - CONFIG_SMB_SERVER = 'n' (page entry: USB Network Adapter and SMB Server)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_NET_RNDIS_WLAN", "state": "n", "page_entry": "USB Network Adapter and SMB Server" }, { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "USB Network Adapter and SMB Server" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23559" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-23559.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_NET_RNDIS_WLAN", "state": "n", "page_entry": "USB Network Adapter and SMB Server" }, { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "USB Network Adapter and SMB Server" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-26242", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-26242" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_DVB_CORE, CONFIG_FPGA, CONFIG_KVM_INTEL, CONFIG_SGI_GRU are not enabled (CVE-2023-26242)", "details": "HeartSuite classifies CVE-2023-26242 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_SGI_GRU = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_FPGA = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n - CONFIG_KVM_INTEL = 'n' (page entry: Hardware-Specific and Virtualization Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26242" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-26242.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_SGI_GRU", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_FPGA", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" }, { "config_gate": "CONFIG_KVM_INTEL", "state": "n", "page_entry": "Hardware-Specific and Virtualization Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-26506", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-26506" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2023-26506)", "details": "HeartSuite classifies CVE-2023-26506 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26506" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-26506.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-26507", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-26507" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2023-26507)", "details": "HeartSuite classifies CVE-2023-26507 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26507" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-26507.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-26544", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-26544" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_JFS_FS, CONFIG_NILFS2_FS, CONFIG_NTFS3_FS, CONFIG_NTFS_FS are not enabled (CVE-2023-26544)", "details": "HeartSuite classifies CVE-2023-26544 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NTFS3_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NTFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_JFS_FS = 'n' (page entry: Filesystem Drivers)\n - CONFIG_NILFS2_FS = 'n' (page entry: Filesystem Drivers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26544" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-26544.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NTFS3_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NTFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Filesystem Drivers" }, { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Filesystem Drivers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-28466", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-28466" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_AF_RXRPC, CONFIG_MCTP, CONFIG_RDS, CONFIG_ROSE, CONFIG_TLS are not enabled (CVE-2023-28466)", "details": "HeartSuite classifies CVE-2023-28466 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_RDS = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_ROSE = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_MCTP = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n - CONFIG_AF_RXRPC = 'n' (page entry: Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-28466" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-28466.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" }, { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Protocol Families: TLS, RDS, ROSE, MCTP, and AF_RXRPC" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-3090", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-3090" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-3090)", "details": "HeartSuite classifies CVE-2023-3090 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3090" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-3090.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-31436", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-31436" ], "summary": "HeartSuite HS kernel not affected: config gates CONFIG_NET_CLS_TCINDEX, CONFIG_NET_SCH_QFQ are not enabled (CVE-2023-31436)", "details": "HeartSuite classifies CVE-2023-31436 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_QFQ = 'n' (page entry: Network Traffic Control Schedulers)\n - CONFIG_NET_CLS_TCINDEX = 'n' (page entry: Network Traffic Control Schedulers)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31436" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-31436.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Network Traffic Control Schedulers" }, { "config_gate": "CONFIG_NET_CLS_TCINDEX", "state": "n", "page_entry": "Network Traffic Control Schedulers" } ] } }, { "schema_version": "1.7.0", "id": "CVE-2023-32247", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32247" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32247)", "details": "HeartSuite classifies CVE-2023-32247 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32247" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32247.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32248", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32248" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32248)", "details": "HeartSuite classifies CVE-2023-32248 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32248" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32248.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32250", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32250" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32250)", "details": "HeartSuite classifies CVE-2023-32250 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32250" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32250.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32252", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32252" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32252)", "details": "HeartSuite classifies CVE-2023-32252 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32252" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32252.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32254", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32254" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32254)", "details": "HeartSuite classifies CVE-2023-32254 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32254" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32254.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32257", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32257" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32257)", "details": "HeartSuite classifies CVE-2023-32257 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32257" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32257.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-32258", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-32258" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-32258)", "details": "HeartSuite classifies CVE-2023-32258 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32258" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-32258.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-3389", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-3389" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-3389)", "details": "HeartSuite classifies CVE-2023-3389 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3389" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-3389.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35788", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35788" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_CLS_FLOWER is not enabled (CVE-2023-35788)", "details": "HeartSuite classifies CVE-2023-35788 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_CLS_FLOWER = 'n' (page entry: Traffic Control: cls_flower {#tc-cls-flower})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_CLS_FLOWER", "state": "n", "page_entry": "Traffic Control: cls_flower {#tc-cls-flower}" } ], "config_gate": "CONFIG_NET_CLS_FLOWER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35788" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35788.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_CLS_FLOWER", "state": "n", "page_entry": "Traffic Control: cls_flower {#tc-cls-flower}" } ], "config_gate": "CONFIG_NET_CLS_FLOWER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35823", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35823" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_SAA7134 is not enabled (CVE-2023-35823)", "details": "HeartSuite classifies CVE-2023-35823 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_SAA7134 = 'n' (page entry: SAA7134 Media Driver {#saa7134-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_SAA7134", "state": "n", "page_entry": "SAA7134 Media Driver {#saa7134-driver}" } ], "config_gate": "CONFIG_VIDEO_SAA7134", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35823" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35823.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_SAA7134", "state": "n", "page_entry": "SAA7134 Media Driver {#saa7134-driver}" } ], "config_gate": "CONFIG_VIDEO_SAA7134", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35824", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35824" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_DM1105 is not enabled (CVE-2023-35824)", "details": "HeartSuite classifies CVE-2023-35824 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_DM1105 = 'n' (page entry: DM1105 DVB Driver {#dm1105-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_DM1105", "state": "n", "page_entry": "DM1105 DVB Driver {#dm1105-driver}" } ], "config_gate": "CONFIG_VIDEO_DM1105", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35824" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35824.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_DM1105", "state": "n", "page_entry": "DM1105 DVB Driver {#dm1105-driver}" } ], "config_gate": "CONFIG_VIDEO_DM1105", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35826", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35826" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_SUNXI_CEDRUS is not enabled (CVE-2023-35826)", "details": "HeartSuite classifies CVE-2023-35826 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_SUNXI_CEDRUS = 'n' (page entry: Allwinner Cedrus Video Codec {#cedrus-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_SUNXI_CEDRUS", "state": "n", "page_entry": "Allwinner Cedrus Video Codec {#cedrus-driver}" } ], "config_gate": "CONFIG_VIDEO_SUNXI_CEDRUS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35826" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35826.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_SUNXI_CEDRUS", "state": "n", "page_entry": "Allwinner Cedrus Video Codec {#cedrus-driver}" } ], "config_gate": "CONFIG_VIDEO_SUNXI_CEDRUS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35828", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35828" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_RENESAS_USBHS3 is not enabled (CVE-2023-35828)", "details": "HeartSuite classifies CVE-2023-35828 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_RENESAS_USBHS3 = 'n' (page entry: Renesas USB3 Driver {#renesas-usb3})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_RENESAS_USBHS3", "state": "n", "page_entry": "Renesas USB3 Driver {#renesas-usb3}" } ], "config_gate": "CONFIG_USB_RENESAS_USBHS3", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35828" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35828.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_RENESAS_USBHS3", "state": "n", "page_entry": "Renesas USB3 Driver {#renesas-usb3}" } ], "config_gate": "CONFIG_USB_RENESAS_USBHS3", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-35829", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-35829" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_RKVDEC is not enabled (CVE-2023-35829)", "details": "HeartSuite classifies CVE-2023-35829 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_RKVDEC = 'n' (page entry: Rockchip Video Decoder {#rkvdec-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_RKVDEC", "state": "n", "page_entry": "Rockchip Video Decoder {#rkvdec-driver}" } ], "config_gate": "CONFIG_VIDEO_RKVDEC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35829" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-35829.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_RKVDEC", "state": "n", "page_entry": "Rockchip Video Decoder {#rkvdec-driver}" } ], "config_gate": "CONFIG_VIDEO_RKVDEC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-3609", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-3609" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-3609)", "details": "HeartSuite classifies CVE-2023-3609 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3609" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-3609.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-3611", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-3611" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-3611)", "details": "HeartSuite classifies CVE-2023-3611 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3611" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-3611.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-3776", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-3776" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-3776)", "details": "HeartSuite classifies CVE-2023-3776 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3776" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-3776.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-39197", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-39197" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IP_DCCP is not enabled (CVE-2023-39197)", "details": "HeartSuite classifies CVE-2023-39197 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IP_DCCP = 'n' (page entry: DCCP Protocol)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IP_DCCP", "state": "n", "page_entry": "DCCP Protocol" } ], "config_gate": "CONFIG_IP_DCCP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39197" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-39197.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IP_DCCP", "state": "n", "page_entry": "DCCP Protocol" } ], "config_gate": "CONFIG_IP_DCCP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4206", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4206" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-4206)", "details": "HeartSuite classifies CVE-2023-4206 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4206" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4206.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4207", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4207" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-4207)", "details": "HeartSuite classifies CVE-2023-4207 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4207" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4207.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4208", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4208" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-4208)", "details": "HeartSuite classifies CVE-2023-4208 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4208" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4208.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-44466", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-44466" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CEPH_FS is not enabled (CVE-2023-44466)", "details": "HeartSuite classifies CVE-2023-44466 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CEPH_FS = 'n' (page entry: Ceph Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CEPH_FS", "state": "n", "page_entry": "Ceph Filesystem" } ], "config_gate": "CONFIG_CEPH_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44466" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-44466.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CEPH_FS", "state": "n", "page_entry": "Ceph Filesystem" } ], "config_gate": "CONFIG_CEPH_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-45871", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-45871" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IGB is not enabled (CVE-2023-45871)", "details": "HeartSuite classifies CVE-2023-45871 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IGB = 'n' (page entry: Intel IGB Ethernet Driver {#igb-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IGB", "state": "n", "page_entry": "Intel IGB Ethernet Driver {#igb-driver}" } ], "config_gate": "CONFIG_IGB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45871" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-45871.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IGB", "state": "n", "page_entry": "Intel IGB Ethernet Driver {#igb-driver}" } ], "config_gate": "CONFIG_IGB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4622", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4622" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-4622)", "details": "HeartSuite classifies CVE-2023-4622 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4622" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4622.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4623", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4623" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HFS_FS is not enabled (CVE-2023-4623)", "details": "HeartSuite classifies CVE-2023-4623 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HFS_FS = 'n' (page entry: HFS Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HFS_FS", "state": "n", "page_entry": "HFS Filesystem" } ], "config_gate": "CONFIG_HFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4623" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4623.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HFS_FS", "state": "n", "page_entry": "HFS Filesystem" } ], "config_gate": "CONFIG_HFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-46813", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-46813" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-46813)", "details": "HeartSuite classifies CVE-2023-46813 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-46813" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-46813.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-4921", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-4921" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-4921)", "details": "HeartSuite classifies CVE-2023-4921 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4921" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-4921.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-51042", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-51042" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_AMDGPU is not enabled (CVE-2023-51042)", "details": "HeartSuite classifies CVE-2023-51042 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_AMDGPU = 'n' (page entry: AMD GPU (amdgpu) {#amdgpu-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_AMDGPU", "state": "n", "page_entry": "AMD GPU (amdgpu) {#amdgpu-driver}" } ], "config_gate": "CONFIG_DRM_AMDGPU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51042" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-51042.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_AMDGPU", "state": "n", "page_entry": "AMD GPU (amdgpu) {#amdgpu-driver}" } ], "config_gate": "CONFIG_DRM_AMDGPU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-5178", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-5178" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NVME_CORE is not enabled (CVE-2023-5178)", "details": "HeartSuite classifies CVE-2023-5178 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NVME_CORE = 'n' (page entry: NVMe Driver)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5178" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-5178.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-51780", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-51780" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ATM is not enabled (CVE-2023-51780)", "details": "HeartSuite classifies CVE-2023-51780 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ATM = 'n' (page entry: ATM Protocol)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ATM", "state": "n", "page_entry": "ATM Protocol" } ], "config_gate": "CONFIG_ATM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51780" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-51780.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ATM", "state": "n", "page_entry": "ATM Protocol" } ], "config_gate": "CONFIG_ATM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-51781", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-51781" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ATALK is not enabled (CVE-2023-51781)", "details": "HeartSuite classifies CVE-2023-51781 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ATALK = 'n' (page entry: AppleTalk Protocol {#appletalk})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ATALK", "state": "n", "page_entry": "AppleTalk Protocol {#appletalk}" } ], "config_gate": "CONFIG_ATALK", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51781" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-51781.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ATALK", "state": "n", "page_entry": "AppleTalk Protocol {#appletalk}" } ], "config_gate": "CONFIG_ATALK", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-51782", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-51782" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ROSE is not enabled (CVE-2023-51782)", "details": "HeartSuite classifies CVE-2023-51782 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ROSE = 'n' (page entry: Rose {#config-rose})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Rose {#config-rose}" } ], "config_gate": "CONFIG_ROSE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-51782" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-51782.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ROSE", "state": "n", "page_entry": "Rose {#config-rose}" } ], "config_gate": "CONFIG_ROSE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52434", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52434" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CIFS is not enabled (CVE-2023-52434)", "details": "HeartSuite classifies CVE-2023-52434 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CIFS = 'n' (page entry: CIFS/SMB Client {#cifs-smb-client})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52434" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52434.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52436", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52436" ], "summary": "HeartSuite HS kernel not affected: CONFIG_F2FS_FS is not enabled (CVE-2023-52436)", "details": "HeartSuite classifies CVE-2023-52436 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_F2FS_FS = 'n' (page entry: F2FS Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_F2FS_FS", "state": "n", "page_entry": "F2FS Filesystem" } ], "config_gate": "CONFIG_F2FS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52436" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52436.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_F2FS_FS", "state": "n", "page_entry": "F2FS Filesystem" } ], "config_gate": "CONFIG_F2FS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52438", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52438" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-52438)", "details": "HeartSuite classifies CVE-2023-52438 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52438" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52438.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52439", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52439" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-52439)", "details": "HeartSuite classifies CVE-2023-52439 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52439" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52439.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52440", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52440" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CIFS is not enabled (CVE-2023-52440)", "details": "HeartSuite classifies CVE-2023-52440 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CIFS = 'n' (page entry: CIFS/SMB Client {#cifs-smb-client})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52440" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52440.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CIFS", "state": "n", "page_entry": "CIFS/SMB Client {#cifs-smb-client}" } ], "config_gate": "CONFIG_CIFS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52441", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52441" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-52441)", "details": "HeartSuite classifies CVE-2023-52441 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52441" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52441.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52444", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52444" ], "summary": "HeartSuite HS kernel not affected: CONFIG_F2FS_FS is not enabled (CVE-2023-52444)", "details": "HeartSuite classifies CVE-2023-52444 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_F2FS_FS = 'n' (page entry: F2FS Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_F2FS_FS", "state": "n", "page_entry": "F2FS Filesystem" } ], "config_gate": "CONFIG_F2FS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52444" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52444.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_F2FS_FS", "state": "n", "page_entry": "F2FS Filesystem" } ], "config_gate": "CONFIG_F2FS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52445", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52445" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_PVRUSB2 is not enabled (CVE-2023-52445)", "details": "HeartSuite classifies CVE-2023-52445 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_PVRUSB2 = 'n' (page entry: Hauppauge pvrusb2 Driver {#pvrusb2-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_PVRUSB2", "state": "n", "page_entry": "Hauppauge pvrusb2 Driver {#pvrusb2-driver}" } ], "config_gate": "CONFIG_VIDEO_PVRUSB2", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52445" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52445.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_PVRUSB2", "state": "n", "page_entry": "Hauppauge pvrusb2 Driver {#pvrusb2-driver}" } ], "config_gate": "CONFIG_VIDEO_PVRUSB2", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52464", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52464" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ATH is not enabled (CVE-2023-52464)", "details": "HeartSuite classifies CVE-2023-52464 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ATH = 'n' (page entry: Atheros Wireless Driver {#ath-wireless-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ATH", "state": "n", "page_entry": "Atheros Wireless Driver {#ath-wireless-driver}" } ], "config_gate": "CONFIG_ATH", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52464" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52464.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ATH", "state": "n", "page_entry": "Atheros Wireless Driver {#ath-wireless-driver}" } ], "config_gate": "CONFIG_ATH", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52474", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52474" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-52474)", "details": "HeartSuite classifies CVE-2023-52474 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52474" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52474.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52475", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52475" ], "summary": "HeartSuite HS kernel not affected: CONFIG_INPUT_POWERMATE is not enabled (CVE-2023-52475)", "details": "HeartSuite classifies CVE-2023-52475 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_INPUT_POWERMATE = 'n' (page entry: Griffin PowerMate Driver {#powermate-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_INPUT_POWERMATE", "state": "n", "page_entry": "Griffin PowerMate Driver {#powermate-driver}" } ], "config_gate": "CONFIG_INPUT_POWERMATE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52475" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52475.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_INPUT_POWERMATE", "state": "n", "page_entry": "Griffin PowerMate Driver {#powermate-driver}" } ], "config_gate": "CONFIG_INPUT_POWERMATE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52480", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52480" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2023-52480)", "details": "HeartSuite classifies CVE-2023-52480 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52480" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52480.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52483", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52483" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MCTP is not enabled (CVE-2023-52483)", "details": "HeartSuite classifies CVE-2023-52483 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MCTP = 'n' (page entry: Mctp {#config-mctp})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Mctp {#config-mctp}" } ], "config_gate": "CONFIG_MCTP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52483" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52483.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MCTP", "state": "n", "page_entry": "Mctp {#config-mctp}" } ], "config_gate": "CONFIG_MCTP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52494", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52494" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MHI_BUS is not enabled (CVE-2023-52494)", "details": "HeartSuite classifies CVE-2023-52494 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MHI_BUS = 'n' (page entry: Mhi Bus {#config-mhi-bus})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MHI_BUS", "state": "n", "page_entry": "Mhi Bus {#config-mhi-bus}" } ], "config_gate": "CONFIG_MHI_BUS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52494" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52494.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MHI_BUS", "state": "n", "page_entry": "Mhi Bus {#config-mhi-bus}" } ], "config_gate": "CONFIG_MHI_BUS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52501", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52501" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-52501)", "details": "HeartSuite classifies CVE-2023-52501 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52501" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52501.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52503", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52503" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TEE is not enabled (CVE-2023-52503)", "details": "HeartSuite classifies CVE-2023-52503 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TEE = 'n' (page entry: TEE Subsystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TEE", "state": "n", "page_entry": "TEE Subsystem" } ], "config_gate": "CONFIG_TEE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52503" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52503.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TEE", "state": "n", "page_entry": "TEE Subsystem" } ], "config_gate": "CONFIG_TEE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52504", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52504" ], "summary": "HeartSuite HS kernel not affected: CONFIG_FUSE_FS is not enabled (CVE-2023-52504)", "details": "HeartSuite classifies CVE-2023-52504 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_FUSE_FS = 'n' (page entry: FUSE Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_FUSE_FS", "state": "n", "page_entry": "FUSE Filesystem" } ], "config_gate": "CONFIG_FUSE_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52504" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52504.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_FUSE_FS", "state": "n", "page_entry": "FUSE Filesystem" } ], "config_gate": "CONFIG_FUSE_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52507", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52507" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NFC is not enabled (CVE-2023-52507)", "details": "HeartSuite classifies CVE-2023-52507 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NFC = 'n' (page entry: NFC)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NFC", "state": "n", "page_entry": "NFC" } ], "config_gate": "CONFIG_NFC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52507" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52507.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NFC", "state": "n", "page_entry": "NFC" } ], "config_gate": "CONFIG_NFC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52509", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52509" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RAVB is not enabled (CVE-2023-52509)", "details": "HeartSuite classifies CVE-2023-52509 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RAVB = 'n' (page entry: Renesas Ethernet AVB Driver {#ravb-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RAVB", "state": "n", "page_entry": "Renesas Ethernet AVB Driver {#ravb-driver}" } ], "config_gate": "CONFIG_RAVB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52509" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52509.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RAVB", "state": "n", "page_entry": "Renesas Ethernet AVB Driver {#ravb-driver}" } ], "config_gate": "CONFIG_RAVB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52510", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52510" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IEEE802154 is not enabled (CVE-2023-52510)", "details": "HeartSuite classifies CVE-2023-52510 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IEEE802154 = 'n' (page entry: IEEE 802.15.4 (WPAN) {#ieee802154-wpan})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IEEE802154", "state": "n", "page_entry": "IEEE 802.15.4 (WPAN) {#ieee802154-wpan}" } ], "config_gate": "CONFIG_IEEE802154", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52510" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52510.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IEEE802154", "state": "n", "page_entry": "IEEE 802.15.4 (WPAN) {#ieee802154-wpan}" } ], "config_gate": "CONFIG_IEEE802154", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52515", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52515" ], "summary": "HeartSuite HS kernel not affected: CONFIG_INFINIBAND is not enabled (CVE-2023-52515)", "details": "HeartSuite classifies CVE-2023-52515 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_INFINIBAND = 'n' (page entry: InfiniBand / RDMA {#infiniband-rdma})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_INFINIBAND", "state": "n", "page_entry": "InfiniBand / RDMA {#infiniband-rdma}" } ], "config_gate": "CONFIG_INFINIBAND", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52515" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52515.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_INFINIBAND", "state": "n", "page_entry": "InfiniBand / RDMA {#infiniband-rdma}" } ], "config_gate": "CONFIG_INFINIBAND", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52517", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52517" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SPI_SUN6I is not enabled (CVE-2023-52517)", "details": "HeartSuite classifies CVE-2023-52517 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SPI_SUN6I = 'n' (page entry: Spi Sun6I {#config-spi-sun6i})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SPI_SUN6I", "state": "n", "page_entry": "Spi Sun6I {#config-spi-sun6i}" } ], "config_gate": "CONFIG_SPI_SUN6I", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52517" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52517.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SPI_SUN6I", "state": "n", "page_entry": "Spi Sun6I {#config-spi-sun6i}" } ], "config_gate": "CONFIG_SPI_SUN6I", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52531", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52531" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IWLWIFI is not enabled (CVE-2023-52531)", "details": "HeartSuite classifies CVE-2023-52531 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IWLWIFI = 'n' (page entry: Intel WiFi (iwlwifi) {#iwlwifi-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IWLWIFI", "state": "n", "page_entry": "Intel WiFi (iwlwifi) {#iwlwifi-driver}" } ], "config_gate": "CONFIG_IWLWIFI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52531" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52531.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IWLWIFI", "state": "n", "page_entry": "Intel WiFi (iwlwifi) {#iwlwifi-driver}" } ], "config_gate": "CONFIG_IWLWIFI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52586", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52586" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_MSM is not enabled (CVE-2023-52586)", "details": "HeartSuite classifies CVE-2023-52586 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_MSM = 'n' (page entry: Drm Msm {#config-drm-msm})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_MSM", "state": "n", "page_entry": "Drm Msm {#config-drm-msm}" } ], "config_gate": "CONFIG_DRM_MSM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52586" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52586.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_MSM", "state": "n", "page_entry": "Drm Msm {#config-drm-msm}" } ], "config_gate": "CONFIG_DRM_MSM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52598", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52598" ], "summary": "HeartSuite HS kernel not affected: CONFIG_S390 is not enabled (CVE-2023-52598)", "details": "HeartSuite classifies CVE-2023-52598 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_S390 = 'n' (page entry: S390 {#config-s390})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_S390", "state": "n", "page_entry": "S390 {#config-s390}" } ], "config_gate": "CONFIG_S390", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52598" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52598.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_S390", "state": "n", "page_entry": "S390 {#config-s390}" } ], "config_gate": "CONFIG_S390", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52599", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52599" ], "summary": "HeartSuite HS kernel not affected: CONFIG_JFS_FS is not enabled (CVE-2023-52599)", "details": "HeartSuite classifies CVE-2023-52599 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_JFS_FS = 'n' (page entry: Jfs Fs {#config-jfs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52599" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52599.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52600", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52600" ], "summary": "HeartSuite HS kernel not affected: CONFIG_JFS_FS is not enabled (CVE-2023-52600)", "details": "HeartSuite classifies CVE-2023-52600 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_JFS_FS = 'n' (page entry: Jfs Fs {#config-jfs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52600" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52600.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52603", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52603" ], "summary": "HeartSuite HS kernel not affected: CONFIG_JFS_FS is not enabled (CVE-2023-52603)", "details": "HeartSuite classifies CVE-2023-52603 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_JFS_FS = 'n' (page entry: Jfs Fs {#config-jfs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52603" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52603.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52604", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52604" ], "summary": "HeartSuite HS kernel not affected: CONFIG_JFS_FS is not enabled (CVE-2023-52604)", "details": "HeartSuite classifies CVE-2023-52604 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_JFS_FS = 'n' (page entry: Jfs Fs {#config-jfs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52604" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52604.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_JFS_FS", "state": "n", "page_entry": "Jfs Fs {#config-jfs-fs}" } ], "config_gate": "CONFIG_JFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52664", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52664" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ATLANTIC is not enabled (CVE-2023-52664)", "details": "HeartSuite classifies CVE-2023-52664 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ATLANTIC = 'n' (page entry: Aquantia Atlantic Driver {#atlantic-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ATLANTIC", "state": "n", "page_entry": "Aquantia Atlantic Driver {#atlantic-driver}" } ], "config_gate": "CONFIG_ATLANTIC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52664" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52664.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ATLANTIC", "state": "n", "page_entry": "Aquantia Atlantic Driver {#atlantic-driver}" } ], "config_gate": "CONFIG_ATLANTIC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52667", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52667" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MLX5_CORE is not enabled (CVE-2023-52667)", "details": "HeartSuite classifies CVE-2023-52667 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MLX5_CORE = 'n' (page entry: Mellanox mlx5 Driver {#mlx5-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MLX5_CORE", "state": "n", "page_entry": "Mellanox mlx5 Driver {#mlx5-driver}" } ], "config_gate": "CONFIG_MLX5_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52667" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52667.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MLX5_CORE", "state": "n", "page_entry": "Mellanox mlx5 Driver {#mlx5-driver}" } ], "config_gate": "CONFIG_MLX5_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52731", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52731" ], "summary": "HeartSuite HS kernel not affected: CONFIG_FB is not enabled (CVE-2023-52731)", "details": "HeartSuite classifies CVE-2023-52731 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_FB = 'n' (page entry: Fb {#config-fb})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_FB", "state": "n", "page_entry": "Fb {#config-fb}" } ], "config_gate": "CONFIG_FB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52731" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52731.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_FB", "state": "n", "page_entry": "Fb {#config-fb}" } ], "config_gate": "CONFIG_FB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52760", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52760" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GFS2_FS is not enabled (CVE-2023-52760)", "details": "HeartSuite classifies CVE-2023-52760 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GFS2_FS = 'n' (page entry: GFS2 Shared Filesystem {#gfs2-filesystem})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GFS2_FS", "state": "n", "page_entry": "GFS2 Shared Filesystem {#gfs2-filesystem}" } ], "config_gate": "CONFIG_GFS2_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52760" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52760.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GFS2_FS", "state": "n", "page_entry": "GFS2 Shared Filesystem {#gfs2-filesystem}" } ], "config_gate": "CONFIG_GFS2_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52764", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52764" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_GSPCA_CORE is not enabled (CVE-2023-52764)", "details": "HeartSuite classifies CVE-2023-52764 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_GSPCA_CORE = 'n' (page entry: GSPCA USB Webcam Driver {#gspca-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_GSPCA_CORE", "state": "n", "page_entry": "GSPCA USB Webcam Driver {#gspca-driver}" } ], "config_gate": "CONFIG_USB_GSPCA_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52764" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52764.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_GSPCA_CORE", "state": "n", "page_entry": "GSPCA USB Webcam Driver {#gspca-driver}" } ], "config_gate": "CONFIG_USB_GSPCA_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52775", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52775" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMC is not enabled (CVE-2023-52775)", "details": "HeartSuite classifies CVE-2023-52775 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMC = 'n' (page entry: SMC (RDMA over Converged Ethernet) {#smc-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMC", "state": "n", "page_entry": "SMC (RDMA over Converged Ethernet) {#smc-driver}" } ], "config_gate": "CONFIG_SMC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52775" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52775.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMC", "state": "n", "page_entry": "SMC (RDMA over Converged Ethernet) {#smc-driver}" } ], "config_gate": "CONFIG_SMC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52796", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52796" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IPVLAN is not enabled (CVE-2023-52796)", "details": "HeartSuite classifies CVE-2023-52796 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IPVLAN = 'n' (page entry: IPVLAN Driver {#ipvlan})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IPVLAN", "state": "n", "page_entry": "IPVLAN Driver {#ipvlan}" } ], "config_gate": "CONFIG_IPVLAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52796" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52796.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IPVLAN", "state": "n", "page_entry": "IPVLAN Driver {#ipvlan}" } ], "config_gate": "CONFIG_IPVLAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52807", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52807" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HNS3 is not enabled (CVE-2023-52807)", "details": "HeartSuite classifies CVE-2023-52807 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HNS3 = 'n' (page entry: HiSilicon HNS3 Driver {#hns3-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HNS3", "state": "n", "page_entry": "HiSilicon HNS3 Driver {#hns3-driver}" } ], "config_gate": "CONFIG_HNS3", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52807" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52807.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HNS3", "state": "n", "page_entry": "HiSilicon HNS3 Driver {#hns3-driver}" } ], "config_gate": "CONFIG_HNS3", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52816", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52816" ], "summary": "HeartSuite HS kernel not affected: CONFIG_KVM_AMD is not enabled (CVE-2023-52816)", "details": "HeartSuite classifies CVE-2023-52816 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_KVM_AMD = 'n' (page entry: KVM AMD)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_KVM_AMD", "state": "n", "page_entry": "KVM AMD" } ], "config_gate": "CONFIG_KVM_AMD", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52816" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52816.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_KVM_AMD", "state": "n", "page_entry": "KVM AMD" } ], "config_gate": "CONFIG_KVM_AMD", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52836", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52836" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DEBUG_MUTEXES is not enabled (CVE-2023-52836)", "details": "HeartSuite classifies CVE-2023-52836 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DEBUG_MUTEXES = 'n' (page entry: Debug Mutexes {#config-debug-mutexes})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DEBUG_MUTEXES", "state": "n", "page_entry": "Debug Mutexes {#config-debug-mutexes}" } ], "config_gate": "CONFIG_DEBUG_MUTEXES", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52836" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52836.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DEBUG_MUTEXES", "state": "n", "page_entry": "Debug Mutexes {#config-debug-mutexes}" } ], "config_gate": "CONFIG_DEBUG_MUTEXES", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52837", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52837" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BLK_DEV_NBD is not enabled (CVE-2023-52837)", "details": "HeartSuite classifies CVE-2023-52837 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BLK_DEV_NBD = 'n' (page entry: Network Block Device (NBD) {#nbd-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BLK_DEV_NBD", "state": "n", "page_entry": "Network Block Device (NBD) {#nbd-driver}" } ], "config_gate": "CONFIG_BLK_DEV_NBD", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52837" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52837.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BLK_DEV_NBD", "state": "n", "page_entry": "Network Block Device (NBD) {#nbd-driver}" } ], "config_gate": "CONFIG_BLK_DEV_NBD", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52840", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52840" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RMI4_CORE is not enabled (CVE-2023-52840)", "details": "HeartSuite classifies CVE-2023-52840 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RMI4_CORE = 'n' (page entry: Synaptics RMI4 Driver {#rmi4-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RMI4_CORE", "state": "n", "page_entry": "Synaptics RMI4 Driver {#rmi4-driver}" } ], "config_gate": "CONFIG_RMI4_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52840" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52840.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RMI4_CORE", "state": "n", "page_entry": "Synaptics RMI4 Driver {#rmi4-driver}" } ], "config_gate": "CONFIG_RMI4_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52847", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52847" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_BT848 is not enabled (CVE-2023-52847)", "details": "HeartSuite classifies CVE-2023-52847 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_BT848 = 'n' (page entry: Bt848 Video Capture Driver {#bttv-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_BT848", "state": "n", "page_entry": "Bt848 Video Capture Driver {#bttv-driver}" } ], "config_gate": "CONFIG_VIDEO_BT848", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52847" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52847.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_BT848", "state": "n", "page_entry": "Bt848 Video Capture Driver {#bttv-driver}" } ], "config_gate": "CONFIG_VIDEO_BT848", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52859", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52859" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HW_PERF_EVENTS_HISI is not enabled (CVE-2023-52859)", "details": "HeartSuite classifies CVE-2023-52859 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HW_PERF_EVENTS_HISI = 'n' (page entry: Hw Perf Events Hisi {#config-hw-perf-events-hisi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HW_PERF_EVENTS_HISI", "state": "n", "page_entry": "Hw Perf Events Hisi {#config-hw-perf-events-hisi}" } ], "config_gate": "CONFIG_HW_PERF_EVENTS_HISI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52859" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52859.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HW_PERF_EVENTS_HISI", "state": "n", "page_entry": "Hw Perf Events Hisi {#config-hw-perf-events-hisi}" } ], "config_gate": "CONFIG_HW_PERF_EVENTS_HISI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52864", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52864" ], "summary": "HeartSuite HS kernel not affected: CONFIG_WMI is not enabled (CVE-2023-52864)", "details": "HeartSuite classifies CVE-2023-52864 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_WMI = 'n' (page entry: WMI Driver)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_WMI", "state": "n", "page_entry": "WMI Driver" } ], "config_gate": "CONFIG_WMI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52864" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52864.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_WMI", "state": "n", "page_entry": "WMI Driver" } ], "config_gate": "CONFIG_WMI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52867", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52867" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_RADEON is not enabled (CVE-2023-52867)", "details": "HeartSuite classifies CVE-2023-52867 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_RADEON = 'n' (page entry: AMD Radeon GPU {#radeon-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_RADEON", "state": "n", "page_entry": "AMD Radeon GPU {#radeon-driver}" } ], "config_gate": "CONFIG_DRM_RADEON", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52867" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52867.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_RADEON", "state": "n", "page_entry": "AMD Radeon GPU {#radeon-driver}" } ], "config_gate": "CONFIG_DRM_RADEON", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-52916", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-52916" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_ASPEED_GFX is not enabled (CVE-2023-52916)", "details": "HeartSuite classifies CVE-2023-52916 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_ASPEED_GFX = 'n' (page entry: Drm Aspeed Gfx {#config-drm-aspeed-gfx})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_ASPEED_GFX", "state": "n", "page_entry": "Drm Aspeed Gfx {#config-drm-aspeed-gfx}" } ], "config_gate": "CONFIG_DRM_ASPEED_GFX", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-52916" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-52916.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_ASPEED_GFX", "state": "n", "page_entry": "Drm Aspeed Gfx {#config-drm-aspeed-gfx}" } ], "config_gate": "CONFIG_DRM_ASPEED_GFX", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53082", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53082" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VDPA is not enabled (CVE-2023-53082)", "details": "HeartSuite classifies CVE-2023-53082 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VDPA = 'n' (page entry: Vdpa {#config-vdpa})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53082" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53082.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53217", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53217" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NUBUS is not enabled (CVE-2023-53217)", "details": "HeartSuite classifies CVE-2023-53217 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NUBUS = 'n' (page entry: Nubus {#config-nubus})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NUBUS", "state": "n", "page_entry": "Nubus {#config-nubus}" } ], "config_gate": "CONFIG_NUBUS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53217" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53217.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NUBUS", "state": "n", "page_entry": "Nubus {#config-nubus}" } ], "config_gate": "CONFIG_NUBUS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53218", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53218" ], "summary": "HeartSuite HS kernel not affected: CONFIG_AF_RXRPC is not enabled (CVE-2023-53218)", "details": "HeartSuite classifies CVE-2023-53218 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_AF_RXRPC = 'n' (page entry: Af Rxrpc {#config-af-rxrpc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Af Rxrpc {#config-af-rxrpc}" } ], "config_gate": "CONFIG_AF_RXRPC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53218" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53218.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_AF_RXRPC", "state": "n", "page_entry": "Af Rxrpc {#config-af-rxrpc}" } ], "config_gate": "CONFIG_AF_RXRPC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53357", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53357" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MD_RAID10 is not enabled (CVE-2023-53357)", "details": "HeartSuite classifies CVE-2023-53357 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MD_RAID10 = 'n' (page entry: Md Raid10 {#config-md-raid10})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MD_RAID10", "state": "n", "page_entry": "Md Raid10 {#config-md-raid10}" } ], "config_gate": "CONFIG_MD_RAID10", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53357" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53357.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MD_RAID10", "state": "n", "page_entry": "Md Raid10 {#config-md-raid10}" } ], "config_gate": "CONFIG_MD_RAID10", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53426", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53426" ], "summary": "HeartSuite HS kernel not affected: CONFIG_XDP_SOCKETS is not enabled (CVE-2023-53426)", "details": "HeartSuite classifies CVE-2023-53426 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_XDP_SOCKETS = 'n' (page entry: Xdp Sockets {#config-xdp-sockets})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_XDP_SOCKETS", "state": "n", "page_entry": "Xdp Sockets {#config-xdp-sockets}" } ], "config_gate": "CONFIG_XDP_SOCKETS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53426" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53426.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_XDP_SOCKETS", "state": "n", "page_entry": "Xdp Sockets {#config-xdp-sockets}" } ], "config_gate": "CONFIG_XDP_SOCKETS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53543", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53543" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VDPA is not enabled (CVE-2023-53543)", "details": "HeartSuite classifies CVE-2023-53543 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VDPA = 'n' (page entry: Vdpa {#config-vdpa})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53543" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53543.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53554", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53554" ], "summary": "HeartSuite HS kernel not affected: CONFIG_STAGING is not enabled (CVE-2023-53554)", "details": "HeartSuite classifies CVE-2023-53554 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_STAGING = 'n' (page entry: Staging {#config-staging})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_STAGING", "state": "n", "page_entry": "Staging {#config-staging}" } ], "config_gate": "CONFIG_STAGING", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53554" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53554.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_STAGING", "state": "n", "page_entry": "Staging {#config-staging}" } ], "config_gate": "CONFIG_STAGING", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53587", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53587" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TRACE_BUF is not enabled (CVE-2023-53587)", "details": "HeartSuite classifies CVE-2023-53587 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TRACE_BUF = 'n' (page entry: Trace Buf {#config-trace-buf})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TRACE_BUF", "state": "n", "page_entry": "Trace Buf {#config-trace-buf}" } ], "config_gate": "CONFIG_TRACE_BUF", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53587" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53587.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TRACE_BUF", "state": "n", "page_entry": "Trace Buf {#config-trace-buf}" } ], "config_gate": "CONFIG_TRACE_BUF", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-53629", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-53629" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DLM is not enabled (CVE-2023-53629)", "details": "HeartSuite classifies CVE-2023-53629 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DLM = 'n' (page entry: Dlm {#config-dlm})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DLM", "state": "n", "page_entry": "Dlm {#config-dlm}" } ], "config_gate": "CONFIG_DLM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53629" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-53629.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DLM", "state": "n", "page_entry": "Dlm {#config-dlm}" } ], "config_gate": "CONFIG_DLM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-5717", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-5717" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-5717)", "details": "HeartSuite classifies CVE-2023-5717 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-5717" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-5717.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6270", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6270" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-6270)", "details": "HeartSuite classifies CVE-2023-6270 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6270" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6270.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6356", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6356" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NVME_CORE is not enabled (CVE-2023-6356)", "details": "HeartSuite classifies CVE-2023-6356 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NVME_CORE = 'n' (page entry: NVMe Driver)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6356" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6356.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6536", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6536" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NVME_CORE is not enabled (CVE-2023-6536)", "details": "HeartSuite classifies CVE-2023-6536 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NVME_CORE = 'n' (page entry: NVMe Driver)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6536" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6536.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NVME_CORE", "state": "n", "page_entry": "NVMe Driver" } ], "config_gate": "CONFIG_NVME_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6546", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6546" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-6546)", "details": "HeartSuite classifies CVE-2023-6546 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6546" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6546.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6931", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6931" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-6931)", "details": "HeartSuite classifies CVE-2023-6931 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6931" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6931.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2023-6932", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2023-6932" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2023-6932)", "details": "HeartSuite classifies CVE-2023-6932 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6932" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2023-6932.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-0646", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-0646" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TLS is not enabled (CVE-2024-0646)", "details": "HeartSuite classifies CVE-2024-0646 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TLS = 'n' (page entry: Tls {#config-tls})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Tls {#config-tls}" } ], "config_gate": "CONFIG_TLS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0646" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-0646.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TLS", "state": "n", "page_entry": "Tls {#config-tls}" } ], "config_gate": "CONFIG_TLS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-22705", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-22705" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2024-22705)", "details": "HeartSuite classifies CVE-2024-22705 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22705" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-22705.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-25744", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-25744" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CAN is not enabled (CVE-2024-25744)", "details": "HeartSuite classifies CVE-2024-25744 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CAN = 'n' (page entry: CAN Bus)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25744" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-25744.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CAN", "state": "n", "page_entry": "CAN Bus" } ], "config_gate": "CONFIG_CAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26592", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26592" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2024-26592)", "details": "HeartSuite classifies CVE-2024-26592 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26592" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26592.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26594", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26594" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SMB_SERVER is not enabled (CVE-2024-26594)", "details": "HeartSuite classifies CVE-2024-26594 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SMB_SERVER = 'n' (page entry: Smb Server {#config-smb-server})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26594" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26594.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SMB_SERVER", "state": "n", "page_entry": "Smb Server {#config-smb-server}" } ], "config_gate": "CONFIG_SMB_SERVER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26599", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26599" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PWM is not enabled (CVE-2024-26599)", "details": "HeartSuite classifies CVE-2024-26599 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PWM = 'n' (page entry: PWM Subsystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PWM", "state": "n", "page_entry": "PWM Subsystem" } ], "config_gate": "CONFIG_PWM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26599" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26599.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PWM", "state": "n", "page_entry": "PWM Subsystem" } ], "config_gate": "CONFIG_PWM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26610", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26610" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IWLWIFI is not enabled (CVE-2024-26610)", "details": "HeartSuite classifies CVE-2024-26610 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IWLWIFI = 'n' (page entry: Intel WiFi (iwlwifi) {#iwlwifi-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IWLWIFI", "state": "n", "page_entry": "Intel WiFi (iwlwifi) {#iwlwifi-driver}" } ], "config_gate": "CONFIG_IWLWIFI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26610" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26610.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IWLWIFI", "state": "n", "page_entry": "Intel WiFi (iwlwifi) {#iwlwifi-driver}" } ], "config_gate": "CONFIG_IWLWIFI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26622", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26622" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SECURITY_TOMOYO is not enabled (CVE-2024-26622)", "details": "HeartSuite classifies CVE-2024-26622 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SECURITY_TOMOYO = 'n' (page entry: Security Tomoyo {#config-security-tomoyo})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SECURITY_TOMOYO", "state": "n", "page_entry": "Security Tomoyo {#config-security-tomoyo}" } ], "config_gate": "CONFIG_SECURITY_TOMOYO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26622" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26622.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SECURITY_TOMOYO", "state": "n", "page_entry": "Security Tomoyo {#config-security-tomoyo}" } ], "config_gate": "CONFIG_SECURITY_TOMOYO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26665", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26665" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IP_TUNNEL is not enabled (CVE-2024-26665)", "details": "HeartSuite classifies CVE-2024-26665 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IP_TUNNEL = 'n' (page entry: Ip Tunnel {#config-ip-tunnel})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IP_TUNNEL", "state": "n", "page_entry": "Ip Tunnel {#config-ip-tunnel}" } ], "config_gate": "CONFIG_IP_TUNNEL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26665" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26665.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IP_TUNNEL", "state": "n", "page_entry": "Ip Tunnel {#config-ip-tunnel}" } ], "config_gate": "CONFIG_IP_TUNNEL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26736", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26736" ], "summary": "HeartSuite HS kernel not affected: CONFIG_AFS_FS is not enabled (CVE-2024-26736)", "details": "HeartSuite classifies CVE-2024-26736 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_AFS_FS = 'n' (page entry: Afs Fs {#config-afs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_AFS_FS", "state": "n", "page_entry": "Afs Fs {#config-afs-fs}" } ], "config_gate": "CONFIG_AFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26736" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26736.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_AFS_FS", "state": "n", "page_entry": "Afs Fs {#config-afs-fs}" } ], "config_gate": "CONFIG_AFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26739", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26739" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_ACT_MIRRED is not enabled (CVE-2024-26739)", "details": "HeartSuite classifies CVE-2024-26739 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_ACT_MIRRED = 'n' (page entry: Traffic Control: act_mirred {#tc-act-mirred})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_ACT_MIRRED", "state": "n", "page_entry": "Traffic Control: act_mirred {#tc-act-mirred}" } ], "config_gate": "CONFIG_NET_ACT_MIRRED", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26739" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26739.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_ACT_MIRRED", "state": "n", "page_entry": "Traffic Control: act_mirred {#tc-act-mirred}" } ], "config_gate": "CONFIG_NET_ACT_MIRRED", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26748", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26748" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_CDNS3 is not enabled (CVE-2024-26748)", "details": "HeartSuite classifies CVE-2024-26748 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_CDNS3 = 'n' (page entry: Usb Cdns3 {#config-usb-cdns3})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_CDNS3", "state": "n", "page_entry": "Usb Cdns3 {#config-usb-cdns3}" } ], "config_gate": "CONFIG_USB_CDNS3", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26748" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26748.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_CDNS3", "state": "n", "page_entry": "Usb Cdns3 {#config-usb-cdns3}" } ], "config_gate": "CONFIG_USB_CDNS3", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26749", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26749" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_CDNS3 is not enabled (CVE-2024-26749)", "details": "HeartSuite classifies CVE-2024-26749 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_CDNS3 = 'n' (page entry: Usb Cdns3 {#config-usb-cdns3})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_CDNS3", "state": "n", "page_entry": "Usb Cdns3 {#config-usb-cdns3}" } ], "config_gate": "CONFIG_USB_CDNS3", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26749" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26749.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_CDNS3", "state": "n", "page_entry": "Usb Cdns3 {#config-usb-cdns3}" } ], "config_gate": "CONFIG_USB_CDNS3", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26753", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26753" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CRYPTO_DEV_VIRTIO is not enabled (CVE-2024-26753)", "details": "HeartSuite classifies CVE-2024-26753 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CRYPTO_DEV_VIRTIO = 'n' (page entry: Crypto Dev Virtio {#config-crypto-dev-virtio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_VIRTIO", "state": "n", "page_entry": "Crypto Dev Virtio {#config-crypto-dev-virtio}" } ], "config_gate": "CONFIG_CRYPTO_DEV_VIRTIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26753" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26753.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_VIRTIO", "state": "n", "page_entry": "Crypto Dev Virtio {#config-crypto-dev-virtio}" } ], "config_gate": "CONFIG_CRYPTO_DEV_VIRTIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26754", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26754" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GTP is not enabled (CVE-2024-26754)", "details": "HeartSuite classifies CVE-2024-26754 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GTP = 'n' (page entry: Gtp {#config-gtp})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GTP", "state": "n", "page_entry": "Gtp {#config-gtp}" } ], "config_gate": "CONFIG_GTP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26754" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26754.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GTP", "state": "n", "page_entry": "Gtp {#config-gtp}" } ], "config_gate": "CONFIG_GTP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26763", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26763" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DM_CRYPT is not enabled (CVE-2024-26763)", "details": "HeartSuite classifies CVE-2024-26763 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DM_CRYPT = 'n' (page entry: Dm Crypt {#config-dm-crypt})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DM_CRYPT", "state": "n", "page_entry": "Dm Crypt {#config-dm-crypt}" } ], "config_gate": "CONFIG_DM_CRYPT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26763" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26763.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DM_CRYPT", "state": "n", "page_entry": "Dm Crypt {#config-dm-crypt}" } ], "config_gate": "CONFIG_DM_CRYPT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26782", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26782" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MPTCP is not enabled (CVE-2024-26782)", "details": "HeartSuite classifies CVE-2024-26782 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MPTCP = 'n' (page entry: MPTCP)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MPTCP", "state": "n", "page_entry": "MPTCP" } ], "config_gate": "CONFIG_MPTCP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26782" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26782.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MPTCP", "state": "n", "page_entry": "MPTCP" } ], "config_gate": "CONFIG_MPTCP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26793", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26793" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GTP is not enabled (CVE-2024-26793)", "details": "HeartSuite classifies CVE-2024-26793 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GTP = 'n' (page entry: Gtp {#config-gtp})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GTP", "state": "n", "page_entry": "Gtp {#config-gtp}" } ], "config_gate": "CONFIG_GTP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26793" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26793.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GTP", "state": "n", "page_entry": "Gtp {#config-gtp}" } ], "config_gate": "CONFIG_GTP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26836", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26836" ], "summary": "HeartSuite HS kernel not affected: CONFIG_THINKPAD_LMI is not enabled (CVE-2024-26836)", "details": "HeartSuite classifies CVE-2024-26836 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_THINKPAD_LMI = 'n' (page entry: Thinkpad Lmi {#config-thinkpad-lmi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_THINKPAD_LMI", "state": "n", "page_entry": "Thinkpad Lmi {#config-thinkpad-lmi}" } ], "config_gate": "CONFIG_THINKPAD_LMI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26836" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26836.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_THINKPAD_LMI", "state": "n", "page_entry": "Thinkpad Lmi {#config-thinkpad-lmi}" } ], "config_gate": "CONFIG_THINKPAD_LMI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26856", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26856" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SPARX5_SWITCH is not enabled (CVE-2024-26856)", "details": "HeartSuite classifies CVE-2024-26856 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SPARX5_SWITCH = 'n' (page entry: Sparx5 Switch {#config-sparx5-switch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SPARX5_SWITCH", "state": "n", "page_entry": "Sparx5 Switch {#config-sparx5-switch}" } ], "config_gate": "CONFIG_SPARX5_SWITCH", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26856" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26856.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SPARX5_SWITCH", "state": "n", "page_entry": "Sparx5 Switch {#config-sparx5-switch}" } ], "config_gate": "CONFIG_SPARX5_SWITCH", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26865", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26865" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RDS is not enabled (CVE-2024-26865)", "details": "HeartSuite classifies CVE-2024-26865 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RDS = 'n' (page entry: Rds {#config-rds})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26865" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26865.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26872", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26872" ], "summary": "HeartSuite HS kernel not affected: CONFIG_INFINIBAND is not enabled (CVE-2024-26872)", "details": "HeartSuite classifies CVE-2024-26872 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_INFINIBAND = 'n' (page entry: InfiniBand / RDMA {#infiniband-rdma})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_INFINIBAND", "state": "n", "page_entry": "InfiniBand / RDMA {#infiniband-rdma}" } ], "config_gate": "CONFIG_INFINIBAND", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26872" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26872.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_INFINIBAND", "state": "n", "page_entry": "InfiniBand / RDMA {#infiniband-rdma}" } ], "config_gate": "CONFIG_INFINIBAND", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26882", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26882" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TUN is not enabled (CVE-2024-26882)", "details": "HeartSuite classifies CVE-2024-26882 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TUN = 'n' (page entry: TUN/TAP Driver {#tun-tap-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TUN", "state": "n", "page_entry": "TUN/TAP Driver {#tun-tap-driver}" } ], "config_gate": "CONFIG_TUN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26882" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26882.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TUN", "state": "n", "page_entry": "TUN/TAP Driver {#tun-tap-driver}" } ], "config_gate": "CONFIG_TUN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26955", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26955" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NILFS2_FS is not enabled (CVE-2024-26955)", "details": "HeartSuite classifies CVE-2024-26955 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NILFS2_FS = 'n' (page entry: Nilfs2 Fs {#config-nilfs2-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26955" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26955.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26956", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26956" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NILFS2_FS is not enabled (CVE-2024-26956)", "details": "HeartSuite classifies CVE-2024-26956 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NILFS2_FS = 'n' (page entry: Nilfs2 Fs {#config-nilfs2-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26956" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26956.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26957", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26957" ], "summary": "HeartSuite HS kernel not affected: CONFIG_S390 is not enabled (CVE-2024-26957)", "details": "HeartSuite classifies CVE-2024-26957 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_S390 = 'n' (page entry: S390 {#config-s390})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_S390", "state": "n", "page_entry": "S390 {#config-s390}" } ], "config_gate": "CONFIG_S390", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26957" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26957.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_S390", "state": "n", "page_entry": "S390 {#config-s390}" } ], "config_gate": "CONFIG_S390", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26965", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26965" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMMON_CLK_QCOM is not enabled (CVE-2024-26965)", "details": "HeartSuite classifies CVE-2024-26965 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMMON_CLK_QCOM = 'n' (page entry: Common Clk Qcom {#config-common-clk-qcom})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMMON_CLK_QCOM", "state": "n", "page_entry": "Common Clk Qcom {#config-common-clk-qcom}" } ], "config_gate": "CONFIG_COMMON_CLK_QCOM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26965" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26965.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMMON_CLK_QCOM", "state": "n", "page_entry": "Common Clk Qcom {#config-common-clk-qcom}" } ], "config_gate": "CONFIG_COMMON_CLK_QCOM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26981", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26981" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NILFS2_FS is not enabled (CVE-2024-26981)", "details": "HeartSuite classifies CVE-2024-26981 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NILFS2_FS = 'n' (page entry: Nilfs2 Fs {#config-nilfs2-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26981" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26981.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NILFS2_FS", "state": "n", "page_entry": "Nilfs2 Fs {#config-nilfs2-fs}" } ], "config_gate": "CONFIG_NILFS2_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26989", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26989" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ARM64 is not enabled (CVE-2024-26989)", "details": "HeartSuite classifies CVE-2024-26989 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ARM64 = 'n' (page entry: ARM64 Architecture {#arm64-arch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ARM64", "state": "n", "page_entry": "ARM64 Architecture {#arm64-arch}" } ], "config_gate": "CONFIG_ARM64", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26989" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26989.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ARM64", "state": "n", "page_entry": "ARM64 Architecture {#arm64-arch}" } ], "config_gate": "CONFIG_ARM64", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-26996", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-26996" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_GADGET is not enabled (CVE-2024-26996)", "details": "HeartSuite classifies CVE-2024-26996 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_GADGET = 'n' (page entry: USB Gadget)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_GADGET", "state": "n", "page_entry": "USB Gadget" } ], "config_gate": "CONFIG_USB_GADGET", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-26996" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-26996.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_GADGET", "state": "n", "page_entry": "USB Gadget" } ], "config_gate": "CONFIG_USB_GADGET", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-27008", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-27008" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_NOUVEAU is not enabled (CVE-2024-27008)", "details": "HeartSuite classifies CVE-2024-27008 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_NOUVEAU = 'n' (page entry: Nouveau (NVIDIA open-source) {#nouveau-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_NOUVEAU", "state": "n", "page_entry": "Nouveau (NVIDIA open-source) {#nouveau-driver}" } ], "config_gate": "CONFIG_DRM_NOUVEAU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27008" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-27008.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_NOUVEAU", "state": "n", "page_entry": "Nouveau (NVIDIA open-source) {#nouveau-driver}" } ], "config_gate": "CONFIG_DRM_NOUVEAU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-27024", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-27024" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RDS is not enabled (CVE-2024-27024)", "details": "HeartSuite classifies CVE-2024-27024 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RDS = 'n' (page entry: Rds {#config-rds})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27024" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-27024.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RDS", "state": "n", "page_entry": "Rds {#config-rds}" } ], "config_gate": "CONFIG_RDS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-27075", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-27075" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DVB_CORE is not enabled (CVE-2024-27075)", "details": "HeartSuite classifies CVE-2024-27075 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DVB_CORE = 'n' (page entry: Dvb Core {#config-dvb-core})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Dvb Core {#config-dvb-core}" } ], "config_gate": "CONFIG_DVB_CORE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27075" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-27075.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DVB_CORE", "state": "n", "page_entry": "Dvb Core {#config-dvb-core}" } ], "config_gate": "CONFIG_DVB_CORE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-27395", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-27395" ], "summary": "HeartSuite HS kernel not affected: CONFIG_OPENVSWITCH is not enabled (CVE-2024-27395)", "details": "HeartSuite classifies CVE-2024-27395 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_OPENVSWITCH = 'n' (page entry: Open vSwitch {#openvswitch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_OPENVSWITCH", "state": "n", "page_entry": "Open vSwitch {#openvswitch}" } ], "config_gate": "CONFIG_OPENVSWITCH", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27395" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-27395.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_OPENVSWITCH", "state": "n", "page_entry": "Open vSwitch {#openvswitch}" } ], "config_gate": "CONFIG_OPENVSWITCH", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-27401", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-27401" ], "summary": "HeartSuite HS kernel not affected: CONFIG_FIREWIRE is not enabled (CVE-2024-27401)", "details": "HeartSuite classifies CVE-2024-27401 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_FIREWIRE = 'n' (page entry: FireWire)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_FIREWIRE", "state": "n", "page_entry": "FireWire" } ], "config_gate": "CONFIG_FIREWIRE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27401" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-27401.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_FIREWIRE", "state": "n", "page_entry": "FireWire" } ], "config_gate": "CONFIG_FIREWIRE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-35791", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-35791" ], "summary": "HeartSuite HS kernel not affected: CONFIG_KVM is not enabled (CVE-2024-35791)", "details": "HeartSuite classifies CVE-2024-35791 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_KVM = 'n' (page entry: Kvm {#config-kvm})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_KVM", "state": "n", "page_entry": "Kvm {#config-kvm}" } ], "config_gate": "CONFIG_KVM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35791" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-35791.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_KVM", "state": "n", "page_entry": "Kvm {#config-kvm}" } ], "config_gate": "CONFIG_KVM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-35887", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-35887" ], "summary": "HeartSuite HS kernel not affected: CONFIG_AX25 is not enabled (CVE-2024-35887)", "details": "HeartSuite classifies CVE-2024-35887 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_AX25 = 'n' (page entry: AX.25 / Ham Radio {#ax25-hamradio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_AX25", "state": "n", "page_entry": "AX.25 / Ham Radio {#ax25-hamradio}" } ], "config_gate": "CONFIG_AX25", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35887" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-35887.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_AX25", "state": "n", "page_entry": "AX.25 / Ham Radio {#ax25-hamradio}" } ], "config_gate": "CONFIG_AX25", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-35929", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-35929" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RCU_NOCB_CPU is not enabled (CVE-2024-35929)", "details": "HeartSuite classifies CVE-2024-35929 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RCU_NOCB_CPU = 'n' (page entry: Rcu Nocb Cpu {#config-rcu-nocb-cpu})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n", "page_entry": "Rcu Nocb Cpu {#config-rcu-nocb-cpu}" } ], "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35929" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-35929.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n", "page_entry": "Rcu Nocb Cpu {#config-rcu-nocb-cpu}" } ], "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-35939", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-35939" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DMA_DIRECT_REMAP is not enabled (CVE-2024-35939)", "details": "HeartSuite classifies CVE-2024-35939 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DMA_DIRECT_REMAP = 'n' (page entry: Dma Direct Remap {#config-dma-direct-remap})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DMA_DIRECT_REMAP", "state": "n", "page_entry": "Dma Direct Remap {#config-dma-direct-remap}" } ], "config_gate": "CONFIG_DMA_DIRECT_REMAP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-35939" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-35939.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DMA_DIRECT_REMAP", "state": "n", "page_entry": "Dma Direct Remap {#config-dma-direct-remap}" } ], "config_gate": "CONFIG_DMA_DIRECT_REMAP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36015", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36015" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PPDEV is not enabled (CVE-2024-36015)", "details": "HeartSuite classifies CVE-2024-36015 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PPDEV = 'n' (page entry: Parallel Port Device {#ppdev-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PPDEV", "state": "n", "page_entry": "Parallel Port Device {#ppdev-driver}" } ], "config_gate": "CONFIG_PPDEV", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36015" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36015.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PPDEV", "state": "n", "page_entry": "Parallel Port Device {#ppdev-driver}" } ], "config_gate": "CONFIG_PPDEV", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36886", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36886" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TIPC is not enabled (CVE-2024-36886)", "details": "HeartSuite classifies CVE-2024-36886 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TIPC = 'n' (page entry: TIPC Protocol)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TIPC", "state": "n", "page_entry": "TIPC Protocol" } ], "config_gate": "CONFIG_TIPC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36886" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36886.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TIPC", "state": "n", "page_entry": "TIPC Protocol" } ], "config_gate": "CONFIG_TIPC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36898", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36898" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GPIOLIB is not enabled (CVE-2024-36898)", "details": "HeartSuite classifies CVE-2024-36898 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GPIOLIB = 'n' (page entry: GPIO Library {#gpiolib})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GPIOLIB", "state": "n", "page_entry": "GPIO Library {#gpiolib}" } ], "config_gate": "CONFIG_GPIOLIB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36898" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36898.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GPIOLIB", "state": "n", "page_entry": "GPIO Library {#gpiolib}" } ], "config_gate": "CONFIG_GPIOLIB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36899", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36899" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GPIOLIB is not enabled (CVE-2024-36899)", "details": "HeartSuite classifies CVE-2024-36899 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GPIOLIB = 'n' (page entry: GPIO Library {#gpiolib})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GPIOLIB", "state": "n", "page_entry": "GPIO Library {#gpiolib}" } ], "config_gate": "CONFIG_GPIOLIB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36899" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36899.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GPIOLIB", "state": "n", "page_entry": "GPIO Library {#gpiolib}" } ], "config_gate": "CONFIG_GPIOLIB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36940", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36940" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PINCTRL is not enabled (CVE-2024-36940)", "details": "HeartSuite classifies CVE-2024-36940 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PINCTRL = 'n' (page entry: Pin Controller Subsystem {#pinctrl})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PINCTRL", "state": "n", "page_entry": "Pin Controller Subsystem {#pinctrl}" } ], "config_gate": "CONFIG_PINCTRL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36940" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36940.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PINCTRL", "state": "n", "page_entry": "Pin Controller Subsystem {#pinctrl}" } ], "config_gate": "CONFIG_PINCTRL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36960", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36960" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_VMWGFX is not enabled (CVE-2024-36960)", "details": "HeartSuite classifies CVE-2024-36960 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_VMWGFX = 'n' (page entry: VMware SVGA (vmwgfx) {#vmwgfx-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_VMWGFX", "state": "n", "page_entry": "VMware SVGA (vmwgfx) {#vmwgfx-driver}" } ], "config_gate": "CONFIG_DRM_VMWGFX", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36960" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36960.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_VMWGFX", "state": "n", "page_entry": "VMware SVGA (vmwgfx) {#vmwgfx-driver}" } ], "config_gate": "CONFIG_DRM_VMWGFX", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-36978", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-36978" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_SCH_MULTIQ is not enabled (CVE-2024-36978)", "details": "HeartSuite classifies CVE-2024-36978 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_MULTIQ = 'n' (page entry: Traffic Control: sch_multiq {#tc-multiq})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_MULTIQ", "state": "n", "page_entry": "Traffic Control: sch_multiq {#tc-multiq}" } ], "config_gate": "CONFIG_NET_SCH_MULTIQ", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36978" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-36978.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_MULTIQ", "state": "n", "page_entry": "Traffic Control: sch_multiq {#tc-multiq}" } ], "config_gate": "CONFIG_NET_SCH_MULTIQ", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-38627", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-38627" ], "summary": "HeartSuite HS kernel not affected: CONFIG_STM is not enabled (CVE-2024-38627)", "details": "HeartSuite classifies CVE-2024-38627 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_STM = 'n' (page entry: Stm {#config-stm})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_STM", "state": "n", "page_entry": "Stm {#config-stm}" } ], "config_gate": "CONFIG_STM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38627" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-38627.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_STM", "state": "n", "page_entry": "Stm {#config-stm}" } ], "config_gate": "CONFIG_STM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-38667", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-38667" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IMA is not enabled (CVE-2024-38667)", "details": "HeartSuite classifies CVE-2024-38667 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IMA = 'n' (page entry: IMA (Integrity Measurement Architecture) {#ima})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IMA", "state": "n", "page_entry": "IMA (Integrity Measurement Architecture) {#ima}" } ], "config_gate": "CONFIG_IMA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38667" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-38667.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IMA", "state": "n", "page_entry": "IMA (Integrity Measurement Architecture) {#ima}" } ], "config_gate": "CONFIG_IMA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-39487", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-39487" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BONDING is not enabled (CVE-2024-39487)", "details": "HeartSuite classifies CVE-2024-39487 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BONDING = 'n' (page entry: Bonding {#config-bonding})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BONDING", "state": "n", "page_entry": "Bonding {#config-bonding}" } ], "config_gate": "CONFIG_BONDING", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39487" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-39487.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BONDING", "state": "n", "page_entry": "Bonding {#config-bonding}" } ], "config_gate": "CONFIG_BONDING", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-39495", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-39495" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GREYBUS is not enabled (CVE-2024-39495)", "details": "HeartSuite classifies CVE-2024-39495 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GREYBUS = 'n' (page entry: Greybus {#config-greybus})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GREYBUS", "state": "n", "page_entry": "Greybus {#config-greybus}" } ], "config_gate": "CONFIG_GREYBUS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39495" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-39495.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GREYBUS", "state": "n", "page_entry": "Greybus {#config-greybus}" } ], "config_gate": "CONFIG_GREYBUS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-39499", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-39499" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VMWARE_VMCI is not enabled (CVE-2024-39499)", "details": "HeartSuite classifies CVE-2024-39499 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VMWARE_VMCI = 'n' (page entry: Vmware Vmci {#config-vmware-vmci})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39499" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-39499.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-39502", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-39502" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IONIC is not enabled (CVE-2024-39502)", "details": "HeartSuite classifies CVE-2024-39502 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IONIC = 'n' (page entry: Ionic {#config-ionic})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IONIC", "state": "n", "page_entry": "Ionic {#config-ionic}" } ], "config_gate": "CONFIG_IONIC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39502" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-39502.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IONIC", "state": "n", "page_entry": "Ionic {#config-ionic}" } ], "config_gate": "CONFIG_IONIC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-40939", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-40939" ], "summary": "HeartSuite HS kernel not affected: CONFIG_WWAN is not enabled (CVE-2024-40939)", "details": "HeartSuite classifies CVE-2024-40939 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_WWAN = 'n' (page entry: Wwan {#config-wwan})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_WWAN", "state": "n", "page_entry": "Wwan {#config-wwan}" } ], "config_gate": "CONFIG_WWAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40939" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-40939.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_WWAN", "state": "n", "page_entry": "Wwan {#config-wwan}" } ], "config_gate": "CONFIG_WWAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-40974", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-40974" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PPC is not enabled (CVE-2024-40974)", "details": "HeartSuite classifies CVE-2024-40974 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PPC = 'n' (page entry: PowerPC Architecture {#powerpc-arch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PPC", "state": "n", "page_entry": "PowerPC Architecture {#powerpc-arch}" } ], "config_gate": "CONFIG_PPC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-40974" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-40974.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PPC", "state": "n", "page_entry": "PowerPC Architecture {#powerpc-arch}" } ], "config_gate": "CONFIG_PPC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-41050", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-41050" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CACHEFILES is not enabled (CVE-2024-41050)", "details": "HeartSuite classifies CVE-2024-41050 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CACHEFILES = 'n' (page entry: Cachefiles {#config-cachefiles})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41050" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-41050.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-41057", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-41057" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CACHEFILES is not enabled (CVE-2024-41057)", "details": "HeartSuite classifies CVE-2024-41057 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CACHEFILES = 'n' (page entry: Cachefiles {#config-cachefiles})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41057" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-41057.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-41059", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-41059" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HFSPLUS_FS is not enabled (CVE-2024-41059)", "details": "HeartSuite classifies CVE-2024-41059 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HFSPLUS_FS = 'n' (page entry: HFS+ Filesystem {#hfsplus-filesystem})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HFSPLUS_FS", "state": "n", "page_entry": "HFS+ Filesystem {#hfsplus-filesystem}" } ], "config_gate": "CONFIG_HFSPLUS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41059" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-41059.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HFSPLUS_FS", "state": "n", "page_entry": "HFS+ Filesystem {#hfsplus-filesystem}" } ], "config_gate": "CONFIG_HFSPLUS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-41069", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-41069" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SND_SOC is not enabled (CVE-2024-41069)", "details": "HeartSuite classifies CVE-2024-41069 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SND_SOC = 'n' (page entry: Snd Soc {#config-snd-soc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SND_SOC", "state": "n", "page_entry": "Snd Soc {#config-snd-soc}" } ], "config_gate": "CONFIG_SND_SOC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41069" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-41069.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SND_SOC", "state": "n", "page_entry": "Snd Soc {#config-snd-soc}" } ], "config_gate": "CONFIG_SND_SOC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-41074", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-41074" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CACHEFILES is not enabled (CVE-2024-41074)", "details": "HeartSuite classifies CVE-2024-41074 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CACHEFILES = 'n' (page entry: Cachefiles {#config-cachefiles})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41074" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-41074.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CACHEFILES", "state": "n", "page_entry": "Cachefiles {#config-cachefiles}" } ], "config_gate": "CONFIG_CACHEFILES", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-42086", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-42086" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-42086)", "details": "HeartSuite classifies CVE-2024-42086 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42086" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-42086.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-42147", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-42147" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CRYPTO_DEV_HISI_SEC2 is not enabled (CVE-2024-42147)", "details": "HeartSuite classifies CVE-2024-42147 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CRYPTO_DEV_HISI_SEC2 = 'n' (page entry: Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n", "page_entry": "Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2}" } ], "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42147" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-42147.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n", "page_entry": "Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2}" } ], "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-42280", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-42280" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ISDN is not enabled (CVE-2024-42280)", "details": "HeartSuite classifies CVE-2024-42280 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ISDN = 'n' (page entry: ISDN)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ISDN", "state": "n", "page_entry": "ISDN" } ], "config_gate": "CONFIG_ISDN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42280" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-42280.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ISDN", "state": "n", "page_entry": "ISDN" } ], "config_gate": "CONFIG_ISDN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-43839", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-43839" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BNA is not enabled (CVE-2024-43839)", "details": "HeartSuite classifies CVE-2024-43839 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BNA = 'n' (page entry: Bna {#config-bna})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BNA", "state": "n", "page_entry": "Bna {#config-bna}" } ], "config_gate": "CONFIG_BNA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43839" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-43839.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BNA", "state": "n", "page_entry": "Bna {#config-bna}" } ], "config_gate": "CONFIG_BNA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-43873", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-43873" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VHOST_VSOCK is not enabled (CVE-2024-43873)", "details": "HeartSuite classifies CVE-2024-43873 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VHOST_VSOCK = 'n' (page entry: Vhost Vsock {#config-vhost-vsock})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VHOST_VSOCK", "state": "n", "page_entry": "Vhost Vsock {#config-vhost-vsock}" } ], "config_gate": "CONFIG_VHOST_VSOCK", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43873" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-43873.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VHOST_VSOCK", "state": "n", "page_entry": "Vhost Vsock {#config-vhost-vsock}" } ], "config_gate": "CONFIG_VHOST_VSOCK", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-44940", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-44940" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_FOU is not enabled (CVE-2024-44940)", "details": "HeartSuite classifies CVE-2024-44940 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_FOU = 'n' (page entry: Net Fou {#config-net-fou})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_FOU", "state": "n", "page_entry": "Net Fou {#config-net-fou}" } ], "config_gate": "CONFIG_NET_FOU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44940" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-44940.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_FOU", "state": "n", "page_entry": "Net Fou {#config-net-fou}" } ], "config_gate": "CONFIG_NET_FOU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-44949", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-44949" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PARISC is not enabled (CVE-2024-44949)", "details": "HeartSuite classifies CVE-2024-44949 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PARISC = 'n' (page entry: Parisc {#config-parisc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PARISC", "state": "n", "page_entry": "Parisc {#config-parisc}" } ], "config_gate": "CONFIG_PARISC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-44949" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-44949.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PARISC", "state": "n", "page_entry": "Parisc {#config-parisc}" } ], "config_gate": "CONFIG_PARISC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-46738", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-46738" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VMWARE_VMCI is not enabled (CVE-2024-46738)", "details": "HeartSuite classifies CVE-2024-46738 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VMWARE_VMCI = 'n' (page entry: Vmware Vmci {#config-vmware-vmci})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46738" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-46738.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-46800", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-46800" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_SCH_NETEM is not enabled (CVE-2024-46800)", "details": "HeartSuite classifies CVE-2024-46800 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_NETEM = 'n' (page entry: Net Sch Netem {#config-net-sch-netem})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_NETEM", "state": "n", "page_entry": "Net Sch Netem {#config-net-sch-netem}" } ], "config_gate": "CONFIG_NET_SCH_NETEM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46800" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-46800.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_NETEM", "state": "n", "page_entry": "Net Sch Netem {#config-net-sch-netem}" } ], "config_gate": "CONFIG_NET_SCH_NETEM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-46844", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-46844" ], "summary": "HeartSuite HS kernel not affected: CONFIG_UML is not enabled (CVE-2024-46844)", "details": "HeartSuite classifies CVE-2024-46844 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_UML = 'n' (page entry: Uml {#config-uml})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_UML", "state": "n", "page_entry": "Uml {#config-uml}" } ], "config_gate": "CONFIG_UML", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46844" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-46844.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_UML", "state": "n", "page_entry": "Uml {#config-uml}" } ], "config_gate": "CONFIG_UML", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-46853", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-46853" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SPI_NXP_FLEXSPI is not enabled (CVE-2024-46853)", "details": "HeartSuite classifies CVE-2024-46853 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SPI_NXP_FLEXSPI = 'n' (page entry: Spi Nxp Flexspi {#config-spi-nxp-flexspi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SPI_NXP_FLEXSPI", "state": "n", "page_entry": "Spi Nxp Flexspi {#config-spi-nxp-flexspi}" } ], "config_gate": "CONFIG_SPI_NXP_FLEXSPI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46853" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-46853.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SPI_NXP_FLEXSPI", "state": "n", "page_entry": "Spi Nxp Flexspi {#config-spi-nxp-flexspi}" } ], "config_gate": "CONFIG_SPI_NXP_FLEXSPI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-46859", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-46859" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PLATFORM_X86 is not enabled (CVE-2024-46859)", "details": "HeartSuite classifies CVE-2024-46859 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PLATFORM_X86 = 'n' (page entry: Platform X86 {#config-platform-x86})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PLATFORM_X86", "state": "n", "page_entry": "Platform X86 {#config-platform-x86}" } ], "config_gate": "CONFIG_PLATFORM_X86", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46859" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-46859.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PLATFORM_X86", "state": "n", "page_entry": "Platform X86 {#config-platform-x86}" } ], "config_gate": "CONFIG_PLATFORM_X86", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-47670", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-47670" ], "summary": "HeartSuite HS kernel not affected: CONFIG_OCFS2_FS is not enabled (CVE-2024-47670)", "details": "HeartSuite classifies CVE-2024-47670 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_OCFS2_FS = 'n' (page entry: OCFS2 Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_OCFS2_FS", "state": "n", "page_entry": "OCFS2 Filesystem" } ], "config_gate": "CONFIG_OCFS2_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47670" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-47670.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_OCFS2_FS", "state": "n", "page_entry": "OCFS2 Filesystem" } ], "config_gate": "CONFIG_OCFS2_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-47730", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-47730" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CRYPTO_DEV_HISI_SEC2 is not enabled (CVE-2024-47730)", "details": "HeartSuite classifies CVE-2024-47730 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CRYPTO_DEV_HISI_SEC2 = 'n' (page entry: Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n", "page_entry": "Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2}" } ], "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47730" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-47730.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n", "page_entry": "Crypto Dev Hisi Sec2 {#config-crypto-dev-hisi-sec2}" } ], "config_gate": "CONFIG_CRYPTO_DEV_HISI_SEC2", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-47748", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-47748" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VDPA is not enabled (CVE-2024-47748)", "details": "HeartSuite classifies CVE-2024-47748 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VDPA = 'n' (page entry: Vdpa {#config-vdpa})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47748" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-47748.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-47751", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-47751" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PCI_KIRIN is not enabled (CVE-2024-47751)", "details": "HeartSuite classifies CVE-2024-47751 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PCI_KIRIN = 'n' (page entry: Pci Kirin {#config-pci-kirin})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PCI_KIRIN", "state": "n", "page_entry": "Pci Kirin {#config-pci-kirin}" } ], "config_gate": "CONFIG_PCI_KIRIN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47751" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-47751.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PCI_KIRIN", "state": "n", "page_entry": "Pci Kirin {#config-pci-kirin}" } ], "config_gate": "CONFIG_PCI_KIRIN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-49936", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-49936" ], "summary": "HeartSuite HS kernel not affected: CONFIG_XEN is not enabled (CVE-2024-49936)", "details": "HeartSuite classifies CVE-2024-49936 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_XEN = 'n' (page entry: Xen Hypervisor)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_XEN", "state": "n", "page_entry": "Xen Hypervisor" } ], "config_gate": "CONFIG_XEN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-49936" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-49936.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_XEN", "state": "n", "page_entry": "Xen Hypervisor" } ], "config_gate": "CONFIG_XEN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-49992", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-49992" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_STM is not enabled (CVE-2024-49992)", "details": "HeartSuite classifies CVE-2024-49992 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_STM = 'n' (page entry: Drm Stm {#config-drm-stm})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_STM", "state": "n", "page_entry": "Drm Stm {#config-drm-stm}" } ], "config_gate": "CONFIG_DRM_STM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-49992" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-49992.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_STM", "state": "n", "page_entry": "Drm Stm {#config-drm-stm}" } ], "config_gate": "CONFIG_DRM_STM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50033", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50033" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PPP is not enabled (CVE-2024-50033)", "details": "HeartSuite classifies CVE-2024-50033 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PPP = 'n' (page entry: PPP)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PPP", "state": "n", "page_entry": "PPP" } ], "config_gate": "CONFIG_PPP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50033" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50033.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PPP", "state": "n", "page_entry": "PPP" } ], "config_gate": "CONFIG_PPP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50035", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50035" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PPP is not enabled (CVE-2024-50035)", "details": "HeartSuite classifies CVE-2024-50035 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PPP = 'n' (page entry: PPP)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PPP", "state": "n", "page_entry": "PPP" } ], "config_gate": "CONFIG_PPP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50035" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50035.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PPP", "state": "n", "page_entry": "PPP" } ], "config_gate": "CONFIG_PPP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50128", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50128" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RMNET is not enabled (CVE-2024-50128)", "details": "HeartSuite classifies CVE-2024-50128 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RMNET = 'n' (page entry: QCOM RmNet Driver {#rmnet-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RMNET", "state": "n", "page_entry": "QCOM RmNet Driver {#rmnet-driver}" } ], "config_gate": "CONFIG_RMNET", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50128" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50128.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RMNET", "state": "n", "page_entry": "QCOM RmNet Driver {#rmnet-driver}" } ], "config_gate": "CONFIG_RMNET", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50143", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50143" ], "summary": "HeartSuite HS kernel not affected: CONFIG_UDF_FS is not enabled (CVE-2024-50143)", "details": "HeartSuite classifies CVE-2024-50143 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_UDF_FS = 'n' (page entry: UDF Filesystem)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_UDF_FS", "state": "n", "page_entry": "UDF Filesystem" } ], "config_gate": "CONFIG_UDF_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50143" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50143.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_UDF_FS", "state": "n", "page_entry": "UDF Filesystem" } ], "config_gate": "CONFIG_UDF_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50150", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50150" ], "summary": "HeartSuite HS kernel not affected: CONFIG_TYPEC is not enabled (CVE-2024-50150)", "details": "HeartSuite classifies CVE-2024-50150 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_TYPEC = 'n' (page entry: Typec {#config-typec})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_TYPEC", "state": "n", "page_entry": "Typec {#config-typec}" } ], "config_gate": "CONFIG_TYPEC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50150" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50150.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_TYPEC", "state": "n", "page_entry": "Typec {#config-typec}" } ], "config_gate": "CONFIG_TYPEC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50267", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50267" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_SERIAL is not enabled (CVE-2024-50267)", "details": "HeartSuite classifies CVE-2024-50267 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_SERIAL = 'n' (page entry: Usb Serial {#config-usb-serial})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_SERIAL", "state": "n", "page_entry": "Usb Serial {#config-usb-serial}" } ], "config_gate": "CONFIG_USB_SERIAL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50267" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50267.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_SERIAL", "state": "n", "page_entry": "Usb Serial {#config-usb-serial}" } ], "config_gate": "CONFIG_USB_SERIAL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50269", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50269" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_MUSB_HDRC is not enabled (CVE-2024-50269)", "details": "HeartSuite classifies CVE-2024-50269 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_MUSB_HDRC = 'n' (page entry: Usb Musb Hdrc {#config-usb-musb-hdrc})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_MUSB_HDRC", "state": "n", "page_entry": "Usb Musb Hdrc {#config-usb-musb-hdrc}" } ], "config_gate": "CONFIG_USB_MUSB_HDRC", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50269" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50269.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_MUSB_HDRC", "state": "n", "page_entry": "Usb Musb Hdrc {#config-usb-musb-hdrc}" } ], "config_gate": "CONFIG_USB_MUSB_HDRC", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-50276", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-50276" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MSE102X is not enabled (CVE-2024-50276)", "details": "HeartSuite classifies CVE-2024-50276 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MSE102X = 'n' (page entry: Mse102X {#config-mse102x})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MSE102X", "state": "n", "page_entry": "Mse102X {#config-mse102x}" } ], "config_gate": "CONFIG_MSE102X", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50276" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-50276.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MSE102X", "state": "n", "page_entry": "Mse102X {#config-mse102x}" } ], "config_gate": "CONFIG_MSE102X", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53061", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53061" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_S5P_JPEG is not enabled (CVE-2024-53061)", "details": "HeartSuite classifies CVE-2024-53061 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_S5P_JPEG = 'n' (page entry: Video S5P Jpeg {#config-video-s5p-jpeg})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_S5P_JPEG", "state": "n", "page_entry": "Video S5P Jpeg {#config-video-s5p-jpeg}" } ], "config_gate": "CONFIG_VIDEO_S5P_JPEG", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53061" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53061.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_S5P_JPEG", "state": "n", "page_entry": "Video S5P Jpeg {#config-video-s5p-jpeg}" } ], "config_gate": "CONFIG_VIDEO_S5P_JPEG", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53068", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53068" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ARM_SCMI_PROTOCOL is not enabled (CVE-2024-53068)", "details": "HeartSuite classifies CVE-2024-53068 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ARM_SCMI_PROTOCOL = 'n' (page entry: Arm Scmi Protocol {#config-arm-scmi-protocol})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ARM_SCMI_PROTOCOL", "state": "n", "page_entry": "Arm Scmi Protocol {#config-arm-scmi-protocol}" } ], "config_gate": "CONFIG_ARM_SCMI_PROTOCOL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53068" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53068.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ARM_SCMI_PROTOCOL", "state": "n", "page_entry": "Arm Scmi Protocol {#config-arm-scmi-protocol}" } ], "config_gate": "CONFIG_ARM_SCMI_PROTOCOL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53098", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53098" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_XE is not enabled (CVE-2024-53098)", "details": "HeartSuite classifies CVE-2024-53098 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_XE = 'n' (page entry: Intel Xe GPU Driver {#drm-xe-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_XE", "state": "n", "page_entry": "Intel Xe GPU Driver {#drm-xe-driver}" } ], "config_gate": "CONFIG_DRM_XE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53098" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53098.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_XE", "state": "n", "page_entry": "Intel Xe GPU Driver {#drm-xe-driver}" } ], "config_gate": "CONFIG_DRM_XE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53103", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53103" ], "summary": "HeartSuite HS kernel not affected: CONFIG_HYPERV_VSOCKETS is not enabled (CVE-2024-53103)", "details": "HeartSuite classifies CVE-2024-53103 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_HYPERV_VSOCKETS = 'n' (page entry: Hyperv Vsockets {#config-hyperv-vsockets})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_HYPERV_VSOCKETS", "state": "n", "page_entry": "Hyperv Vsockets {#config-hyperv-vsockets}" } ], "config_gate": "CONFIG_HYPERV_VSOCKETS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53103" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53103.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_HYPERV_VSOCKETS", "state": "n", "page_entry": "Hyperv Vsockets {#config-hyperv-vsockets}" } ], "config_gate": "CONFIG_HYPERV_VSOCKETS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53126", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53126" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VDPA is not enabled (CVE-2024-53126)", "details": "HeartSuite classifies CVE-2024-53126 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VDPA = 'n' (page entry: Vdpa {#config-vdpa})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53126" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53126.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VDPA", "state": "n", "page_entry": "Vdpa {#config-vdpa}" } ], "config_gate": "CONFIG_VDPA", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53165", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53165" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SUPERH is not enabled (CVE-2024-53165)", "details": "HeartSuite classifies CVE-2024-53165 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SUPERH = 'n' (page entry: Superh {#config-superh})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SUPERH", "state": "n", "page_entry": "Superh {#config-superh}" } ], "config_gate": "CONFIG_SUPERH", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53165" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53165.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SUPERH", "state": "n", "page_entry": "Superh {#config-superh}" } ], "config_gate": "CONFIG_SUPERH", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-53213", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-53213" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_LAN78XX is not enabled (CVE-2024-53213)", "details": "HeartSuite classifies CVE-2024-53213 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_LAN78XX = 'n' (page entry: Usb Lan78Xx {#config-usb-lan78xx})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_LAN78XX", "state": "n", "page_entry": "Usb Lan78Xx {#config-usb-lan78xx}" } ], "config_gate": "CONFIG_USB_LAN78XX", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53213" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-53213.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_LAN78XX", "state": "n", "page_entry": "Usb Lan78Xx {#config-usb-lan78xx}" } ], "config_gate": "CONFIG_USB_LAN78XX", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-56538", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-56538" ], "summary": "HeartSuite HS kernel not affected: CONFIG_DRM_XLNX is not enabled (CVE-2024-56538)", "details": "HeartSuite classifies CVE-2024-56538 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_DRM_XLNX = 'n' (page entry: Drm Xlnx {#config-drm-xlnx})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_DRM_XLNX", "state": "n", "page_entry": "Drm Xlnx {#config-drm-xlnx}" } ], "config_gate": "CONFIG_DRM_XLNX", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56538" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-56538.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_DRM_XLNX", "state": "n", "page_entry": "Drm Xlnx {#config-drm-xlnx}" } ], "config_gate": "CONFIG_DRM_XLNX", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-56628", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-56628" ], "summary": "HeartSuite HS kernel not affected: CONFIG_LOONGARCH is not enabled (CVE-2024-56628)", "details": "HeartSuite classifies CVE-2024-56628 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_LOONGARCH = 'n' (page entry: LoongArch Architecture {#loongarch-arch})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_LOONGARCH", "state": "n", "page_entry": "LoongArch Architecture {#loongarch-arch}" } ], "config_gate": "CONFIG_LOONGARCH", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56628" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-56628.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_LOONGARCH", "state": "n", "page_entry": "LoongArch Architecture {#loongarch-arch}" } ], "config_gate": "CONFIG_LOONGARCH", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57906", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57906" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57906)", "details": "HeartSuite classifies CVE-2024-57906 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57906" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57906.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57907", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57907" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57907)", "details": "HeartSuite classifies CVE-2024-57907 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57907" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57907.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57908", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57908" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57908)", "details": "HeartSuite classifies CVE-2024-57908 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57908" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57908.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57910", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57910" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57910)", "details": "HeartSuite classifies CVE-2024-57910 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57910" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57910.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57911", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57911" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57911)", "details": "HeartSuite classifies CVE-2024-57911 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57911" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57911.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-57912", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-57912" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2024-57912)", "details": "HeartSuite classifies CVE-2024-57912 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-57912" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-57912.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2024-58072", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2024-58072" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RTLWIFI is not enabled (CVE-2024-58072)", "details": "HeartSuite classifies CVE-2024-58072 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RTLWIFI = 'n' (page entry: Realtek WiFi Driver {#rtlwifi-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RTLWIFI", "state": "n", "page_entry": "Realtek WiFi Driver {#rtlwifi-driver}" } ], "config_gate": "CONFIG_RTLWIFI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-58072" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2024-58072.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RTLWIFI", "state": "n", "page_entry": "Realtek WiFi Driver {#rtlwifi-driver}" } ], "config_gate": "CONFIG_RTLWIFI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-21680", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-21680" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PKTGEN is not enabled (CVE-2025-21680)", "details": "HeartSuite classifies CVE-2025-21680 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PKTGEN = 'n' (page entry: Pktgen {#config-pktgen})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PKTGEN", "state": "n", "page_entry": "Pktgen {#config-pktgen}" } ], "config_gate": "CONFIG_PKTGEN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21680" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-21680.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PKTGEN", "state": "n", "page_entry": "Pktgen {#config-pktgen}" } ], "config_gate": "CONFIG_PKTGEN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-21782", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-21782" ], "summary": "HeartSuite HS kernel not affected: CONFIG_ORANGEFS_FS is not enabled (CVE-2025-21782)", "details": "HeartSuite classifies CVE-2025-21782 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_ORANGEFS_FS = 'n' (page entry: Orangefs Fs {#config-orangefs-fs})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_ORANGEFS_FS", "state": "n", "page_entry": "Orangefs Fs {#config-orangefs-fs}" } ], "config_gate": "CONFIG_ORANGEFS_FS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21782" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-21782.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_ORANGEFS_FS", "state": "n", "page_entry": "Orangefs Fs {#config-orangefs-fs}" } ], "config_gate": "CONFIG_ORANGEFS_FS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-21858", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-21858" ], "summary": "HeartSuite HS kernel not affected: CONFIG_GENEVE is not enabled (CVE-2025-21858)", "details": "HeartSuite classifies CVE-2025-21858 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_GENEVE = 'n' (page entry: Geneve {#config-geneve})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_GENEVE", "state": "n", "page_entry": "Geneve {#config-geneve}" } ], "config_gate": "CONFIG_GENEVE", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21858" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-21858.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_GENEVE", "state": "n", "page_entry": "Geneve {#config-geneve}" } ], "config_gate": "CONFIG_GENEVE", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-21914", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-21914" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SLIMBUS is not enabled (CVE-2025-21914)", "details": "HeartSuite classifies CVE-2025-21914 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SLIMBUS = 'n' (page entry: Slimbus {#config-slimbus})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SLIMBUS", "state": "n", "page_entry": "Slimbus {#config-slimbus}" } ], "config_gate": "CONFIG_SLIMBUS", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-21914" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-21914.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SLIMBUS", "state": "n", "page_entry": "Slimbus {#config-slimbus}" } ], "config_gate": "CONFIG_SLIMBUS", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-22020", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-22020" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MEMSTICK is not enabled (CVE-2025-22020)", "details": "HeartSuite classifies CVE-2025-22020 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MEMSTICK = 'n' (page entry: MemStick Driver {#memstick})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MEMSTICK", "state": "n", "page_entry": "MemStick Driver {#memstick}" } ], "config_gate": "CONFIG_MEMSTICK", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22020" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-22020.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MEMSTICK", "state": "n", "page_entry": "MemStick Driver {#memstick}" } ], "config_gate": "CONFIG_MEMSTICK", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-23142", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-23142" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IP_SCTP is not enabled (CVE-2025-23142)", "details": "HeartSuite classifies CVE-2025-23142 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IP_SCTP = 'n' (page entry: SCTP Protocol)\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IP_SCTP", "state": "n", "page_entry": "SCTP Protocol" } ], "config_gate": "CONFIG_IP_SCTP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-23142" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-23142.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IP_SCTP", "state": "n", "page_entry": "SCTP Protocol" } ], "config_gate": "CONFIG_IP_SCTP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-37803", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-37803" ], "summary": "HeartSuite HS kernel not affected: CONFIG_UDMABUF is not enabled (CVE-2025-37803)", "details": "HeartSuite classifies CVE-2025-37803 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_UDMABUF = 'n' (page entry: Udmabuf {#config-udmabuf})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_UDMABUF", "state": "n", "page_entry": "Udmabuf {#config-udmabuf}" } ], "config_gate": "CONFIG_UDMABUF", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-37803" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-37803.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_UDMABUF", "state": "n", "page_entry": "Udmabuf {#config-udmabuf}" } ], "config_gate": "CONFIG_UDMABUF", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-37817", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-37817" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MCB is not enabled (CVE-2025-37817)", "details": "HeartSuite classifies CVE-2025-37817 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MCB = 'n' (page entry: Mcb {#config-mcb})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MCB", "state": "n", "page_entry": "Mcb {#config-mcb}" } ], "config_gate": "CONFIG_MCB", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-37817" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-37817.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MCB", "state": "n", "page_entry": "Mcb {#config-mcb}" } ], "config_gate": "CONFIG_MCB", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-37913", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-37913" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_SCH_QFQ is not enabled (CVE-2025-37913)", "details": "HeartSuite classifies CVE-2025-37913 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_SCH_QFQ = 'n' (page entry: Net Sch Qfq {#config-net-sch-qfq})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Net Sch Qfq {#config-net-sch-qfq}" } ], "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-37913" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-37913.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n", "page_entry": "Net Sch Qfq {#config-net-sch-qfq}" } ], "config_gate": "CONFIG_NET_SCH_QFQ", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38131", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38131" ], "summary": "HeartSuite HS kernel not affected: CONFIG_CORESIGHT is not enabled (CVE-2025-38131)", "details": "HeartSuite classifies CVE-2025-38131 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_CORESIGHT = 'n' (page entry: Coresight {#config-coresight})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_CORESIGHT", "state": "n", "page_entry": "Coresight {#config-coresight}" } ], "config_gate": "CONFIG_CORESIGHT", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38131" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38131.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_CORESIGHT", "state": "n", "page_entry": "Coresight {#config-coresight}" } ], "config_gate": "CONFIG_CORESIGHT", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38153", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38153" ], "summary": "HeartSuite HS kernel not affected: CONFIG_USB_NET_CDCETHER is not enabled (CVE-2025-38153)", "details": "HeartSuite classifies CVE-2025-38153 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_USB_NET_CDCETHER = 'n' (page entry: Usb Net Cdcether {#config-usb-net-cdcether})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_USB_NET_CDCETHER", "state": "n", "page_entry": "Usb Net Cdcether {#config-usb-net-cdcether}" } ], "config_gate": "CONFIG_USB_NET_CDCETHER", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38153" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38153.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_USB_NET_CDCETHER", "state": "n", "page_entry": "Usb Net Cdcether {#config-usb-net-cdcether}" } ], "config_gate": "CONFIG_USB_NET_CDCETHER", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38403", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38403" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VMWARE_VMCI is not enabled (CVE-2025-38403)", "details": "HeartSuite classifies CVE-2025-38403 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VMWARE_VMCI = 'n' (page entry: Vmware Vmci {#config-vmware-vmci})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38403" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38403.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VMWARE_VMCI", "state": "n", "page_entry": "Vmware Vmci {#config-vmware-vmci}" } ], "config_gate": "CONFIG_VMWARE_VMCI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38476", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38476" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IPV6_SEG6_LWTUNNEL is not enabled (CVE-2025-38476)", "details": "HeartSuite classifies CVE-2025-38476 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IPV6_SEG6_LWTUNNEL = 'n' (page entry: Ipv6 Seg6 Lwtunnel {#config-ipv6-seg6-lwtunnel})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IPV6_SEG6_LWTUNNEL", "state": "n", "page_entry": "Ipv6 Seg6 Lwtunnel {#config-ipv6-seg6-lwtunnel}" } ], "config_gate": "CONFIG_IPV6_SEG6_LWTUNNEL", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38476" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38476.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IPV6_SEG6_LWTUNNEL", "state": "n", "page_entry": "Ipv6 Seg6 Lwtunnel {#config-ipv6-seg6-lwtunnel}" } ], "config_gate": "CONFIG_IPV6_SEG6_LWTUNNEL", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38482", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38482" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-38482)", "details": "HeartSuite classifies CVE-2025-38482 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38482" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38482.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38483", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38483" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-38483)", "details": "HeartSuite classifies CVE-2025-38483 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38483" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38483.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38485", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38485" ], "summary": "HeartSuite HS kernel not affected: CONFIG_IIO is not enabled (CVE-2025-38485)", "details": "HeartSuite classifies CVE-2025-38485 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_IIO = 'n' (page entry: Iio {#config-iio})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38485" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38485.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_IIO", "state": "n", "page_entry": "Iio {#config-iio}" } ], "config_gate": "CONFIG_IIO", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38529", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38529" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-38529)", "details": "HeartSuite classifies CVE-2025-38529 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38529" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38529.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38530", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38530" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-38530)", "details": "HeartSuite classifies CVE-2025-38530 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38530" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38530.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-38704", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-38704" ], "summary": "HeartSuite HS kernel not affected: CONFIG_RCU_NOCB_CPU is not enabled (CVE-2025-38704)", "details": "HeartSuite classifies CVE-2025-38704 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_RCU_NOCB_CPU = 'n' (page entry: Rcu Nocb Cpu {#config-rcu-nocb-cpu})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n", "page_entry": "Rcu Nocb Cpu {#config-rcu-nocb-cpu}" } ], "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-38704" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-38704.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n", "page_entry": "Rcu Nocb Cpu {#config-rcu-nocb-cpu}" } ], "config_gate": "CONFIG_RCU_NOCB_CPU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-39685", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-39685" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-39685)", "details": "HeartSuite classifies CVE-2025-39685 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39685" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-39685.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-39686", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-39686" ], "summary": "HeartSuite HS kernel not affected: CONFIG_COMEDI is not enabled (CVE-2025-39686)", "details": "HeartSuite classifies CVE-2025-39686 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_COMEDI = 'n' (page entry: Comedi {#config-comedi})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39686" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-39686.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_COMEDI", "state": "n", "page_entry": "Comedi {#config-comedi}" } ], "config_gate": "CONFIG_COMEDI", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-39859", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-39859" ], "summary": "HeartSuite HS kernel not affected: CONFIG_PTP_1588_CLOCK_OCP is not enabled (CVE-2025-39859)", "details": "HeartSuite classifies CVE-2025-39859 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_PTP_1588_CLOCK_OCP = 'n' (page entry: Ptp 1588 Clock Ocp {#config-ptp-1588-clock-ocp})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_PTP_1588_CLOCK_OCP", "state": "n", "page_entry": "Ptp 1588 Clock Ocp {#config-ptp-1588-clock-ocp}" } ], "config_gate": "CONFIG_PTP_1588_CLOCK_OCP", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39859" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-39859.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_PTP_1588_CLOCK_OCP", "state": "n", "page_entry": "Ptp 1588 Clock Ocp {#config-ptp-1588-clock-ocp}" } ], "config_gate": "CONFIG_PTP_1588_CLOCK_OCP", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-39891", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-39891" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MWIFIEX is not enabled (CVE-2025-39891)", "details": "HeartSuite classifies CVE-2025-39891 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MWIFIEX = 'n' (page entry: Marvell WiFi Driver {#mwifiex-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MWIFIEX", "state": "n", "page_entry": "Marvell WiFi Driver {#mwifiex-driver}" } ], "config_gate": "CONFIG_MWIFIEX", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39891" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-39891.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MWIFIEX", "state": "n", "page_entry": "Marvell WiFi Driver {#mwifiex-driver}" } ], "config_gate": "CONFIG_MWIFIEX", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-39952", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-39952" ], "summary": "HeartSuite HS kernel not affected: CONFIG_WILC1000 is not enabled (CVE-2025-39952)", "details": "HeartSuite classifies CVE-2025-39952 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_WILC1000 = 'n' (page entry: Microchip WILC1000 WiFi Driver {#wilc1000-driver})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_WILC1000", "state": "n", "page_entry": "Microchip WILC1000 WiFi Driver {#wilc1000-driver}" } ], "config_gate": "CONFIG_WILC1000", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-39952" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-39952.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_WILC1000", "state": "n", "page_entry": "Microchip WILC1000 WiFi Driver {#wilc1000-driver}" } ], "config_gate": "CONFIG_WILC1000", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-71091", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-71091" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_TEAM is not enabled (CVE-2025-71091)", "details": "HeartSuite classifies CVE-2025-71091 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_TEAM = 'n' (page entry: Net Team {#config-net-team})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_TEAM", "state": "n", "page_entry": "Net Team {#config-net-team}" } ], "config_gate": "CONFIG_NET_TEAM", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-71091" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-71091.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_TEAM", "state": "n", "page_entry": "Net Team {#config-net-team}" } ], "config_gate": "CONFIG_NET_TEAM", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2025-71136", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2025-71136" ], "summary": "HeartSuite HS kernel not affected: CONFIG_VIDEO_ADV748X is not enabled (CVE-2025-71136)", "details": "HeartSuite classifies CVE-2025-71136 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_VIDEO_ADV748X = 'n' (page entry: Video Adv748X {#config-video-adv748x})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_VIDEO_ADV748X", "state": "n", "page_entry": "Video Adv748X {#config-video-adv748x}" } ], "config_gate": "CONFIG_VIDEO_ADV748X", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-71136" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2025-71136.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_VIDEO_ADV748X", "state": "n", "page_entry": "Video Adv748X {#config-video-adv748x}" } ], "config_gate": "CONFIG_VIDEO_ADV748X", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2026-23001", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2026-23001" ], "summary": "HeartSuite HS kernel not affected: CONFIG_MACVLAN is not enabled (CVE-2026-23001)", "details": "HeartSuite classifies CVE-2026-23001 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_MACVLAN = 'n' (page entry: Macvlan {#config-macvlan})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_MACVLAN", "state": "n", "page_entry": "Macvlan {#config-macvlan}" } ], "config_gate": "CONFIG_MACVLAN", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23001" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2026-23001.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_MACVLAN", "state": "n", "page_entry": "Macvlan {#config-macvlan}" } ], "config_gate": "CONFIG_MACVLAN", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2026-23083", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2026-23083" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_FOU is not enabled (CVE-2026-23083)", "details": "HeartSuite classifies CVE-2026-23083 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_FOU = 'n' (page entry: Net Fou {#config-net-fou})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_FOU", "state": "n", "page_entry": "Net Fou {#config-net-fou}" } ], "config_gate": "CONFIG_NET_FOU", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23083" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2026-23083.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_FOU", "state": "n", "page_entry": "Net Fou {#config-net-fou}" } ], "config_gate": "CONFIG_NET_FOU", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2026-23099", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2026-23099" ], "summary": "HeartSuite HS kernel not affected: CONFIG_BONDING is not enabled (CVE-2026-23099)", "details": "HeartSuite classifies CVE-2026-23099 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_BONDING = 'n' (page entry: Bonding {#config-bonding})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_BONDING", "state": "n", "page_entry": "Bonding {#config-bonding}" } ], "config_gate": "CONFIG_BONDING", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23099" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2026-23099.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_BONDING", "state": "n", "page_entry": "Bonding {#config-bonding}" } ], "config_gate": "CONFIG_BONDING", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2026-23204", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2026-23204" ], "summary": "HeartSuite HS kernel not affected: CONFIG_NET_CLS_U32 is not enabled (CVE-2026-23204)", "details": "HeartSuite classifies CVE-2026-23204 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_NET_CLS_U32 = 'n' (page entry: Traffic Control: cls_u32 {#tc-cls-u32})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_NET_CLS_U32", "state": "n", "page_entry": "Traffic Control: cls_u32 {#tc-cls-u32}" } ], "config_gate": "CONFIG_NET_CLS_U32", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23204" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2026-23204.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_NET_CLS_U32", "state": "n", "page_entry": "Traffic Control: cls_u32 {#tc-cls-u32}" } ], "config_gate": "CONFIG_NET_CLS_U32", "state": "n" } }, { "schema_version": "1.7.0", "id": "CVE-2026-23408", "modified": "2026-06-23T01:27:34Z", "published": "2026-06-23T01:27:34Z", "aliases": [ "CVE-2026-23408" ], "summary": "HeartSuite HS kernel not affected: CONFIG_SECURITY_APPARMOR is not enabled (CVE-2026-23408)", "details": "HeartSuite classifies CVE-2026-23408 as **not affected** on supported HS kernel builds when the cited Kconfig gates are disabled (not set).\n\nRationale: the vulnerable subsystem is not compiled into the HS kernel image, so the CVE attack surface is absent regardless of upstream version-string matching.\n\nConfig gates enforced by Gate 0.5 (hs_config_parity.py):\n - CONFIG_SECURITY_APPARMOR = 'n' (page entry: Security Apparmor {#config-security-apparmor})\n\nCrosswalk gate_status at generation time: PASS\n\nHuman-readable source: Kernel Security Transparency page on the HeartSuite documentation site.", "affected": [ { "package": { "ecosystem": "HeartSuite", "name": "hs-kernel" }, "versions": [ "6.18.9-HeartSuite-1.0" ], "database_specific": { "status": "not_affected", "config_gates": [ { "config_gate": "CONFIG_SECURITY_APPARMOR", "state": "n", "page_entry": "Security Apparmor {#config-security-apparmor}" } ], "config_gate": "CONFIG_SECURITY_APPARMOR", "state": "n" } } ], "references": [ { "type": "ADVISORY", "url": "https://docs.heartsecsuite.com/docs/security/" }, { "type": "REPORT", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23408" }, { "type": "ARTICLE", "url": "https://docs.heartsecsuite.com/advisories/osv/CVE-2026-23408.json" } ], "database_specific": { "status": "not_affected", "source_schema": "hs-cve-config-sbom/v1", "gate_status": "PASS", "release_tag": "hs-v1.6.4-kernel-6.18.9", "kernel_version": "6.18.9-HeartSuite-1.0", "config_gates": [ { "config_gate": "CONFIG_SECURITY_APPARMOR", "state": "n", "page_entry": "Security Apparmor {#config-security-apparmor}" } ], "config_gate": "CONFIG_SECURITY_APPARMOR", "state": "n" } } ]