[kernel-sec-discuss] r4990 - dsa-texts
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 22 12:18:57 UTC 2017
Author: carnil
Date: 2017-02-22 12:18:57 +0000 (Wed, 22 Feb 2017)
New Revision: 4990
Modified:
dsa-texts/3.16.39-1+deb8u1
Log:
Add description for CVE-2017-6001
Modified: dsa-texts/3.16.39-1+deb8u1
===================================================================
--- dsa-texts/3.16.39-1+deb8u1 2017-02-22 12:13:35 UTC (rev 4989)
+++ dsa-texts/3.16.39-1+deb8u1 2017-02-22 12:18:57 UTC (rev 4990)
@@ -60,6 +60,12 @@
networking code, triggerable by sending bad IP options on a socket.
CVE-2017-6001
+
+ Di Shen discovered a race codition between concurrent
+ sys_perf_event_open() calls in the performance subsystem, allowing a
+ local attacker to escalate privileges. This flaw exists because of
+ an incomplete fix of CVE-2016-6786.
+
CVE-2017-6074
Andrey Konovalov discovered a use-after-free vulnerability in the
More information about the kernel-sec-discuss
mailing list