[kernel-sec-discuss] r4511 - active dsa-texts retired

Ben Hutchings benh at moszumanska.debian.org
Sun Jul 3 14:14:44 UTC 2016 

Author: benh
Date: 2016-07-03 14:14:44 +0000 (Sun, 03 Jul 2016)
New Revision: 4511

Added:
   retired/CVE-2012-6703
Removed:
   active/CVE-2012-6703
Modified:
   dsa-texts/3.16.7-ckt25-2+deb8u3
Log:
Retire CVE-2012-6703

Deleted: active/CVE-2012-6703
===================================================================
--- active/CVE-2012-6703	2016-07-03 14:14:21 UTC (rev 4510)
+++ active/CVE-2012-6703	2016-07-03 14:14:44 UTC (rev 4511)
@@ -1,10 +0,0 @@
-Description:
-References:
-Notes:
-Bugs:
-upstream: released (3.7-rc1) [b35cc8225845112a616e3a2266d2fde5ab13d3ab]
-3.16-upstream-stable: N/A "Issue fixed before initial 3.16 release"
-3.2-upstream-stable: N/A "Introduced in 3.3-rc1 with b21c60a4edd22e26fbebe7dd7078349a8cfa7273"
-sid: released (3.8.11-1)
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"

Modified: dsa-texts/3.16.7-ckt25-2+deb8u3
===================================================================
--- dsa-texts/3.16.7-ckt25-2+deb8u3	2016-07-03 14:14:21 UTC (rev 4510)
+++ dsa-texts/3.16.7-ckt25-2+deb8u3	2016-07-03 14:14:44 UTC (rev 4511)
@@ -25,8 +25,8 @@
 
 CVE-2016-5728
 
-    Pengfei Wang discovered a race condition in the MIC VOP driver could
-    allow a local user to obtain sensitive information from kernel
+    Pengfei Wang discovered a race condition in the MIC VOP driver that
+    could allow a local user to obtain sensitive information from kernel
     memory or cause a denial of service.
 
 CVE-2016-5828
@@ -47,8 +47,8 @@
     Pengfei Wang discovered a flaw in the S/390 character device drivers
     potentially leading to information leak with /dev/sclp.
 
-Additionally this update includes a fix for a regression introduced in
-DSA-3607-1. Setting rules with ebtables did now work anymore.
+Additionally this update fixes a regression in the ebtables facility
+(#828914) that was introduced in DSA-3607-1.
 
 For the stable distribution (jessie), these problems have been fixed in
 version 3.16.7-ckt25-2+deb8u3.

Copied: retired/CVE-2012-6703 (from rev 4510, active/CVE-2012-6703)
===================================================================
--- retired/CVE-2012-6703	                        (rev 0)
+++ retired/CVE-2012-6703	2016-07-03 14:14:44 UTC (rev 4511)
@@ -0,0 +1,10 @@
+Description:
+References:
+Notes:
+Bugs:
+upstream: released (3.7-rc1) [b35cc8225845112a616e3a2266d2fde5ab13d3ab]
+3.16-upstream-stable: N/A "Issue fixed before initial 3.16 release"
+3.2-upstream-stable: N/A "Introduced in 3.3-rc1 with b21c60a4edd22e26fbebe7dd7078349a8cfa7273"
+sid: released (3.8.11-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"

More information about the kernel-sec-discuss mailing list