[kernel-sec-discuss] r5484 - active
Ben Hutchings
benh at moszumanska.debian.org
Thu Aug 17 20:25:36 UTC 2017
Author: benh
Date: 2017-08-17 20:25:35 +0000 (Thu, 17 Aug 2017)
New Revision: 5484
Modified:
active/CVE-2017-1000370
active/CVE-2017-1000371
active/CVE-2017-1000380
active/CVE-2017-7518
Log:
Mark issues pending for jessie and stretch
Modified: active/CVE-2017-1000370
===================================================================
--- active/CVE-2017-1000370 2017-08-17 18:58:28 UTC (rev 5483)
+++ active/CVE-2017-1000370 2017-08-17 20:25:35 UTC (rev 5484)
@@ -11,6 +11,6 @@
3.16-upstream-stable: N/A "Memory layout is different"
3.2-upstream-stable: N/A "Memory layout is different"
sid: released (4.11.11-1) [bugfix/all/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
-4.9-stretch-security: needed
-3.16-jessie-security: needed
+4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
+3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/pie-aslr/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
3.2-wheezy-security: N/A "Memory layout is different"
Modified: active/CVE-2017-1000371
===================================================================
--- active/CVE-2017-1000371 2017-08-17 18:58:28 UTC (rev 5483)
+++ active/CVE-2017-1000371 2017-08-17 20:25:35 UTC (rev 5484)
@@ -11,6 +11,6 @@
3.16-upstream-stable: N/A "Memory layout is different"
3.2-upstream-stable: N/A "Memory layout is different"
sid: released (4.11.11-1) [bugfix/all/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
-4.9-stretch-security: needed
-3.16-jessie-security: needed
+4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
+3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/pie-aslr/binfmt_elf-use-elf_et_dyn_base-only-for-pie.patch]
3.2-wheezy-security: N/A "Memory layout is different"
Modified: active/CVE-2017-1000380
===================================================================
--- active/CVE-2017-1000380 2017-08-17 18:58:28 UTC (rev 5483)
+++ active/CVE-2017-1000380 2017-08-17 20:25:35 UTC (rev 5484)
@@ -8,6 +8,6 @@
3.16-upstream-stable: released (3.16.46) [334e9205dd0c61ec83dfafac51b1947584179bf1, a2ba2aff79410d4abd5341332300fef8e0f55d0f]
3.2-upstream-stable: released (3.2.91) [7aba7242b83b6e9a56a8eb875d669cfab4eff542, 128b87e76b86adcfae4a6658085dceb8234d5e75]
sid: released (4.11.6-1)
-4.9-stretch-security: needed
-3.16-jessie-security: needed
-3.2-wheezy-security: needed
+4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/alsa-timer-fix-race-between-read-and-ioctl.patch, bugfix/all/alsa-timer-fix-missing-queue-indices-reset-at.patch]
+3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/alsa-timer-fix-race-between-read-and-ioctl.patch, bugfix/all/alsa-timer-fix-missing-queue-indices-reset-at.patch]
+3.2-wheezy-security: pending (3.2.91-1)
Modified: active/CVE-2017-7518
===================================================================
--- active/CVE-2017-7518 2017-08-17 18:58:28 UTC (rev 5483)
+++ active/CVE-2017-7518 2017-08-17 20:25:35 UTC (rev 5484)
@@ -12,6 +12,6 @@
3.16-upstream-stable: released (3.16.45) [24ee2a286de7ac680ad4b2423c2dcee68444e567]
3.2-upstream-stable: N/A "Vulnerable code not present"
sid: released (4.11.11-1)
-4.9-stretch-security: needed
-3.16-jessie-security: needed
+4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/x86/kvm-x86-fix-singlestepping-over-syscall.patch]
+3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/x86/kvm-x86-fix-singlestepping-over-syscall.patch]
3.2-wheezy-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list