[kernel-sec-discuss] r5241 - active

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Apr 28 05:06:29 UTC 2017


Author: carnil
Date: 2017-04-28 05:06:28 +0000 (Fri, 28 Apr 2017)
New Revision: 5241

Modified:
   active/CVE-2017-7645
Log:
Track fix for CVE-2017-7645

Modified: active/CVE-2017-7645
===================================================================
--- active/CVE-2017-7645	2017-04-28 04:22:10 UTC (rev 5240)
+++ active/CVE-2017-7645	2017-04-28 05:06:28 UTC (rev 5241)
@@ -4,8 +4,16 @@
  https://marc.info/?l=linux-nfs&m=149218228327497&w=2
  https://marc.info/?l=linux-nfs&m=149247516212924&w=2
 Notes:
+ carnil> afaict the issue for which CVE-2017-7645 was assigned
+ carnil> is fixed with e6838a29ecb484c97e4efef9429643b9851fba6e
+ carnil> but I think
+ carnil> db44bac41bbfc0c0d9dd943092d8bded3c9db19b (nfsd4: minor
+ carnil> NFSv2/v3 write decoding cleanup) and the following
+ carnil> 13bf9fbff0e5e099e2b6f003a0ab8ae145436309 (nfsd: stricter
+ carnil> decoding of write-like NFSv2/v3 ops) should be applied
+ carnil> as well (should the last commit get a separate CVE id?)
 Bugs:
-upstream:
+upstream: pending [e6838a29ecb484c97e4efef9429643b9851fba6e]
 4.9-upstream-stable:
 3.16-upstream-stable:
 3.2-upstream-stable:




More information about the kernel-sec-discuss mailing list