[kernel-sec-discuss] r3908 - active retired

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Aug 20 23:24:36 UTC 2015 

Author: jmm
Date: 2015-08-20 23:24:36 +0000 (Thu, 20 Aug 2015)
New Revision: 3908

Added:
   retired/CVE-2015-5157
Removed:
   active/CVE-2015-5157
Log:
retire


Deleted: active/CVE-2015-5157
===================================================================
--- active/CVE-2015-5157	2015-08-20 23:24:19 UTC (rev 3907)
+++ active/CVE-2015-5157	2015-08-20 23:24:36 UTC (rev 3908)
@@ -1,14 +0,0 @@
-Description: DoS or privilege escalation by triggering fault in NMI on x86_64
-References: https://marc.info/?l=oss-security&m=143758877425647&w=2
-Notes:
- Seems to have been introduced by commit 3f3c8b8c4b2a ("x86: Add workaround
- to NMI iret woes") in 3.3.
-Bugs:
-upstream: released (4.2-rc3) [9d05041679904b12c12421cbcf9cb5f4860a8d7b, 0e181bb58143cb4a2e8f01c281b0816cd0e4798e, 9b6e6a8334d56354853f9c255d1395c2ba570e0a]
-3.16-upstream-stable: released (3.16.7-ckt16)
-3.2-upstream-stable: N/A ("Vulnerable code not present")
-2.6.32-upstream-stable: N/A ("Vulnerable code not present")
-sid: released (4.0.8-2)
-3.16-jessie-security: released (3.16.7-ckt11-1+deb8u2)
-3.2-wheezy-security: N/A ("Vulnerable code not present")
-2.6.32-squeeze-security: N/A ("Vulnerable code not present")

Copied: retired/CVE-2015-5157 (from rev 3907, active/CVE-2015-5157)
===================================================================
--- retired/CVE-2015-5157	                        (rev 0)
+++ retired/CVE-2015-5157	2015-08-20 23:24:36 UTC (rev 3908)
@@ -0,0 +1,14 @@
+Description: DoS or privilege escalation by triggering fault in NMI on x86_64
+References: https://marc.info/?l=oss-security&m=143758877425647&w=2
+Notes:
+ Seems to have been introduced by commit 3f3c8b8c4b2a ("x86: Add workaround
+ to NMI iret woes") in 3.3.
+Bugs:
+upstream: released (4.2-rc3) [9d05041679904b12c12421cbcf9cb5f4860a8d7b, 0e181bb58143cb4a2e8f01c281b0816cd0e4798e, 9b6e6a8334d56354853f9c255d1395c2ba570e0a]
+3.16-upstream-stable: released (3.16.7-ckt16)
+3.2-upstream-stable: N/A ("Vulnerable code not present")
+2.6.32-upstream-stable: N/A ("Vulnerable code not present")
+sid: released (4.0.8-2)
+3.16-jessie-security: released (3.16.7-ckt11-1+deb8u2)
+3.2-wheezy-security: N/A ("Vulnerable code not present")
+2.6.32-squeeze-security: N/A ("Vulnerable code not present")

More information about the kernel-sec-discuss mailing list