[kernel-sec-discuss] r4840 - active
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 14 16:47:46 UTC 2017
Author: carnil
Date: 2017-01-14 16:47:45 +0000 (Sat, 14 Jan 2017)
New Revision: 4840
Modified:
active/CVE-2017-2584
Log:
Update status for CVE-2017-2584
Modified: active/CVE-2017-2584
===================================================================
--- active/CVE-2017-2584 2017-01-14 16:43:07 UTC (rev 4839)
+++ active/CVE-2017-2584 2017-01-14 16:47:45 UTC (rev 4840)
@@ -2,11 +2,14 @@
References:
https://www.spinics.net/lists/kvm/msg143571.html
Notes:
+ carnil> Introduced in 3.6-rc1 with 96051572c819194c37a8367624b285be10297eca,
+ carnil> but after 4.10-rc1 with 283c95d0e3891b64087706b344a4b545d04a6e62
+ carnil> also exploitable for kernel memory write.
Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1413001
upstream: pending [129a72a0d3c8e139a04512325384fe5ac119e74d]
3.16-upstream-stable: needed
-3.2-upstream-stable:
+3.2-upstream-stable: N/A "Vulnerable code introduced in 3.6-rc1 with 96051572c819194c37a8367624b285be10297eca"
sid: needed
3.16-jessie-security: needed
-3.2-wheezy-security:
+3.2-wheezy-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list