[kernel-sec-discuss] r4198 - active
Ben Hutchings
benh at moszumanska.debian.org
Sun Feb 28 17:28:57 UTC 2016
Author: benh
Date: 2016-02-28 17:28:57 +0000 (Sun, 28 Feb 2016)
New Revision: 4198
Added:
active/CVE-2016-aio-oflow
Log:
Add AIO integer overflow issue
Added: active/CVE-2016-aio-oflow
===================================================================
--- active/CVE-2016-aio-oflow (rev 0)
+++ active/CVE-2016-aio-oflow 2016-02-28 17:28:57 UTC (rev 4198)
@@ -0,0 +1,13 @@
+Description: aio write triggers integer overflow in some network protocols
+References:
+ https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit?id=c4f4b82694fe48b02f7a881a1797131a6dad1364
+Notes:
+ bwh> An identical issue was previously fixed by commit a70b52ec1aae, but
+ bwh> commit 41ef4eb8eef8 removed the fix.
+Bugs:
+upstream: released (4.1-rc1) [32a56afa23e157b444b6c2b943322ea0d119517b]
+3.16-upstream-stable: needed
+3.2-upstream-stable: N/A "Includes previous fix and not the regression"
+sid: released (4.1.3-1)
+3.16-jessie-security: needed
+3.2-wheezy-security: N/A "Includes previous fix and not the regression"
More information about the kernel-sec-discuss
mailing list