[kernel-sec-discuss] r4612 - active retired

Ben Hutchings benh at moszumanska.debian.org
Fri Sep 2 20:49:14 UTC 2016 

Author: benh
Date: 2016-09-02 20:49:13 +0000 (Fri, 02 Sep 2016)
New Revision: 4612

Added:
   retired/CVE-2016-7118
Removed:
   active/CVE-2016-7118
Log:
Retire CVE-2016-7118

Deleted: active/CVE-2016-7118
===================================================================
--- active/CVE-2016-7118	2016-09-02 20:49:00 UTC (rev 4611)
+++ active/CVE-2016-7118	2016-09-02 20:49:13 UTC (rev 4612)
@@ -1,14 +0,0 @@
-Description: Null pointer dereference when fcntl() called on aufs directory
-References:
- http://www.openwall.com/lists/oss-security/2016/08/31/1
-Notes:
- bwh> Debian-specific bug, introduced while making the check for the new
- bwh> setfl operation ABI-backward-compatible.  Affects 3.2.81-1
- bwh> (wheezy-security) and 3.16.36-1 (jessie-proposed-updates) only.
-Bugs:
-upstream: N/A "Vulnerable code not present"
-3.16-upstream-stable: N/A "Vulnerable code not present"
-3.2-upstream-stable: N/A "Vulnerable code not present"
-sid: N/A "Vulnerable code not present"
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: released (3.2.81-2) [debian/fs-fix-abi-change-for-aufs-f_setfl-fix.patch]

Copied: retired/CVE-2016-7118 (from rev 4611, active/CVE-2016-7118)
===================================================================
--- retired/CVE-2016-7118	                        (rev 0)
+++ retired/CVE-2016-7118	2016-09-02 20:49:13 UTC (rev 4612)
@@ -0,0 +1,14 @@
+Description: Null pointer dereference when fcntl() called on aufs directory
+References:
+ http://www.openwall.com/lists/oss-security/2016/08/31/1
+Notes:
+ bwh> Debian-specific bug, introduced while making the check for the new
+ bwh> setfl operation ABI-backward-compatible.  Affects 3.2.81-1
+ bwh> (wheezy-security) and 3.16.36-1 (jessie-proposed-updates) only.
+Bugs:
+upstream: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: released (3.2.81-2) [debian/fs-fix-abi-change-for-aufs-f_setfl-fix.patch]

More information about the kernel-sec-discuss mailing list