[kernel-sec-discuss] r4969 - active retired

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Feb 21 13:06:38 UTC 2017 

Author: carnil
Date: 2017-02-21 13:06:38 +0000 (Tue, 21 Feb 2017)
New Revision: 4969

Added:
   retired/CVE-2016-3044
Removed:
   active/CVE-2016-3044
Log:
Retire CVE-2016-3044

Deleted: active/CVE-2016-3044
===================================================================
--- active/CVE-2016-3044	2017-02-21 13:06:37 UTC (rev 4968)
+++ active/CVE-2016-3044	2017-02-21 13:06:38 UTC (rev 4969)
@@ -1,16 +0,0 @@
-Description: Infinite loop vulnerability in KVM
-References:
- https://www-01.ibm.com/support/docview.wss?uid=isg3T1023969
- http://www.securityfocus.com/bid/92123/info
-Notes:
- jmm> RH bugzilla lists the commit below and since they're deeply involved in KVM using
- jmm> that as the authoritative source
- carnil> Fixed as well in 4.4.6: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.6
-Bugs:
-upstream: released (4.5) [ccec44563b18a0ce90e2d4f332784b3cb25c8e9c]
-4.9-upstream-stable: N/A
-3.16-upstream-stable: released (3.16.35) [ea51a643e950c2b51f9afcd6b72c586bcf8ccdf0]
-3.2-upstream-stable: N/A "Introduced in 3.14-rc3 with b005255e12a311d2c87ea70a7c7b192b2187c22c"
-sid: released (4.4.6-1)
-3.16-jessie-security: released (3.16.36-1)
-3.2-wheezy-security: N/A "Vulnerable code introduced later"

Copied: retired/CVE-2016-3044 (from rev 4968, active/CVE-2016-3044)
===================================================================
--- retired/CVE-2016-3044	                        (rev 0)
+++ retired/CVE-2016-3044	2017-02-21 13:06:38 UTC (rev 4969)
@@ -0,0 +1,16 @@
+Description: Infinite loop vulnerability in KVM
+References:
+ https://www-01.ibm.com/support/docview.wss?uid=isg3T1023969
+ http://www.securityfocus.com/bid/92123/info
+Notes:
+ jmm> RH bugzilla lists the commit below and since they're deeply involved in KVM using
+ jmm> that as the authoritative source
+ carnil> Fixed as well in 4.4.6: https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.6
+Bugs:
+upstream: released (4.5) [ccec44563b18a0ce90e2d4f332784b3cb25c8e9c]
+4.9-upstream-stable: N/A
+3.16-upstream-stable: released (3.16.35) [ea51a643e950c2b51f9afcd6b72c586bcf8ccdf0]
+3.2-upstream-stable: N/A "Introduced in 3.14-rc3 with b005255e12a311d2c87ea70a7c7b192b2187c22c"
+sid: released (4.4.6-1)
+3.16-jessie-security: released (3.16.36-1)
+3.2-wheezy-security: N/A "Vulnerable code introduced later"

More information about the kernel-sec-discuss mailing list