[kernel-sec-discuss] r4578 - active
Ben Hutchings
benh at moszumanska.debian.org
Fri Aug 12 15:35:00 UTC 2016
Author: benh
Date: 2016-08-12 15:34:59 +0000 (Fri, 12 Aug 2016)
New Revision: 4578
Modified:
active/CVE-2016-6156
Log:
Mark CVE-2016-6156 pending for sid
Modified: active/CVE-2016-6156
===================================================================
--- active/CVE-2016-6156 2016-08-12 15:28:30 UTC (rev 4577)
+++ active/CVE-2016-6156 2016-08-12 15:34:59 UTC (rev 4578)
@@ -3,11 +3,12 @@
Notes:
carnil> As far I can see the vulnerable code is present in 4.6.3
carnil> but the CROS_EC_CHARDEV is not enabled in Debian builds.
+ bwh> It's fixed in 4.6.6 anyway, whether or not it matters to Debian
Bugs:
https://bugzilla.kernel.org/show_bug.cgi?id=120131
upstream: released (4.7-rc7) [096cdc6f52225835ff503f987a0d68ef770bb78e]
3.16-upstream-stable: N/A "Introduced in 4.2-rc1 with a841178445bb72a3d566b4e6ab9d19e9b002eb47"
3.2-upstream-stable: N/A "Introduced in 4.2-rc1 with a841178445bb72a3d566b4e6ab9d19e9b002eb47"
-sid: needed
+sid: pending (4.6.6-1)
3.16-jessie-security: N/A "Vulnerable code not present"
3.2-wheezy-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list