[kernel-sec-discuss] r4163 - active

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-02-14 18:16:38 +0000 (Sun, 14 Feb 2016)
New Revision: 4163

Added:
   active/CVE-2016-2383
Removed:
   active/CVE-2016-bpf-wrong-branch
Log:
CVE-2016-2383 assigned

Copied: active/CVE-2016-2383 (from rev 4162, active/CVE-2016-bpf-wrong-branch)
===================================================================
--- active/CVE-2016-2383	                        (rev 0)
+++ active/CVE-2016-2383	2016-02-14 18:16:38 UTC (rev 4163)
@@ -0,0 +1,12 @@
+Description: Incorrect branch fixups for eBPF allow arbitrary read
+References:
+Notes:
+ bwh> Introduced in 4.1 by commit 9bac3d6d548e
+ bwh> ("bpf: allow extended BPF programs access skb fields")
+Bugs:
+upstream: pending (4.5-rc4) [a1b14d27ed0965838350f1377ff97c93ee383492]
+3.16-upstream-stable: N/A "Vulnerable code not present"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: pending (4.4.1-1) [bugfix/all/bpf-fix-branch-offset-adjustment-on-backjumps-after-.patch]
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"

Deleted: active/CVE-2016-bpf-wrong-branch
===================================================================
--- active/CVE-2016-bpf-wrong-branch	2016-02-14 05:01:31 UTC (rev 4162)
+++ active/CVE-2016-bpf-wrong-branch	2016-02-14 18:16:38 UTC (rev 4163)
@@ -1,12 +0,0 @@
-Description: Incorrect branch fixups for eBPF allow arbitrary read
-References:
-Notes:
- bwh> Introduced in 4.1 by commit 9bac3d6d548e
- bwh> ("bpf: allow extended BPF programs access skb fields")
-Bugs:
-upstream: pending (4.5-rc4) [a1b14d27ed0965838350f1377ff97c93ee383492]
-3.16-upstream-stable: N/A "Vulnerable code not present"
-3.2-upstream-stable: N/A "Vulnerable code not present"
-sid: pending (4.4.1-1) [bugfix/all/bpf-fix-branch-offset-adjustment-on-backjumps-after-.patch]
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"