[kernel-sec-discuss] r4041 - active
Ben Hutchings
benh at moszumanska.debian.org
Mon Dec 14 20:10:19 UTC 2015
Author: benh
Date: 2015-12-14 20:10:19 +0000 (Mon, 14 Dec 2015)
New Revision: 4041
Modified:
active/CVE-2015-8543
Log:
Triage CVE-2015-8543
Modified: active/CVE-2015-8543
===================================================================
--- active/CVE-2015-8543 2015-12-14 13:33:34 UTC (rev 4040)
+++ active/CVE-2015-8543 2015-12-14 20:10:19 UTC (rev 4041)
@@ -1,13 +1,16 @@
-Description:
+Description: Connecting unbound raw socket causes oops
References:
http://www.openwall.com/lists/oss-security/2015/12/09/3
Notes:
+ bwh> Only exploitable with CAP_NET_RAW. Since Linux 3.8 the capability
+ bwh> checks use ns_capable() and containers can also exploit this.
+ bwh> For earlier versions it's not important.
Bugs:
-upstream:
-3.16-upstream-stable:
-3.2-upstream-stable:
-2.6.32-upstream-stable:
-sid:
-3.16-jessie-security:
-3.2-wheezy-security:
-2.6.32-squeeze-security:
+upstream: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+2.6.32-upstream-stable: needed
+sid: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
+2.6.32-squeeze-security: needed
More information about the kernel-sec-discuss
mailing list