[kernel-sec-discuss] r4680 - retired
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Nov 3 12:53:54 UTC 2016
Author: jmm
Date: 2016-11-03 12:53:54 +0000 (Thu, 03 Nov 2016)
New Revision: 4680
Added:
retired/CVE-2016-exception-table
Log:
new issue, directly to retired, only affects recent LTS kernels
Added: retired/CVE-2016-exception-table
===================================================================
--- retired/CVE-2016-exception-table (rev 0)
+++ retired/CVE-2016-exception-table 2016-11-03 12:53:54 UTC (rev 4680)
@@ -0,0 +1,17 @@
+Description:
+References:
+ http://www.openwall.com/lists/oss-security/2016/11/03/2
+ https://lwn.net/Articles/705264/
+Notes:
+ jmm> This is only an issue if 1c109fabbd51863475cd12ac206bdd249aee35af
+ jmm> (added in 4.8) is backported without also backporting
+ jmm> 548acf19234dbda5a52d5a8e7e205af46e9da840 (added in 4.6), as such
+ jmm> the stock upstream kernel, unstable, 3.16.x and 3.2.x were never
+ jmm> affected
+Bugs:
+upstream: n/a "Vulnerable combination of patches not present"
+3.16-upstream-stable: n/a "Vulnerable combination of patches not present"
+3.2-upstream-stable: n/a "Vulnerable combination of patches not present"
+sid: n/a "Vulnerable combination of patches not present"
+3.16-jessie-security: n/a "Vulnerable combination of patches not present"
+3.2-wheezy-security: n/a "Vulnerable combination of patches not present"
More information about the kernel-sec-discuss
mailing list