[kernel-sec-discuss] r5768 - active

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-12-07 09:12:05 +0000 (Thu, 07 Dec 2017)
New Revision: 5768

Added:
   active/CVE-2017-17448
   active/CVE-2017-17449
   active/CVE-2017-17450
Log:
Add CVE-2017-174{48,49,50}

Added: active/CVE-2017-17448
===================================================================
--- active/CVE-2017-17448	                        (rev 0)
+++ active/CVE-2017-17448	2017-12-07 09:12:05 UTC (rev 5768)
@@ -0,0 +1,13 @@
+Description: netfilter: nfnetlink_cthelper: Add missing permission checks
+References:
+ https://patchwork.kernel.org/patch/10089373/
+Notes:
+Bugs:
+upstream:
+4.9-upstream-stable:
+3.16-upstream-stable:
+3.2-upstream-stable:
+sid:
+4.9-stretch-security:
+3.16-jessie-security:
+3.2-wheezy-security:

Added: active/CVE-2017-17449
===================================================================
--- active/CVE-2017-17449	                        (rev 0)
+++ active/CVE-2017-17449	2017-12-07 09:12:05 UTC (rev 5768)
@@ -0,0 +1,13 @@
+Description: netlink: Add netns check on taps
+References:
+ https://lkml.org/lkml/2017/12/5/950
+Notes:
+Bugs:
+upstream:
+4.9-upstream-stable:
+3.16-upstream-stable:
+3.2-upstream-stable:
+sid:
+4.9-stretch-security:
+3.16-jessie-security:
+3.2-wheezy-security:

Added: active/CVE-2017-17450
===================================================================
--- active/CVE-2017-17450	                        (rev 0)
+++ active/CVE-2017-17450	2017-12-07 09:12:05 UTC (rev 5768)
@@ -0,0 +1,13 @@
+Description: netfilter: xt_osf: Add missing permission checks
+References:
+ https://lkml.org/lkml/2017/12/5/982
+Notes:
+Bugs:
+upstream:
+4.9-upstream-stable:
+3.16-upstream-stable:
+3.2-upstream-stable:
+sid:
+4.9-stretch-security:
+3.16-jessie-security:
+3.2-wheezy-security: