[kernel-sec-discuss] r5091 - active

Ben Hutchings benh at moszumanska.debian.org
Sun Mar 19 04:53:31 UTC 2017


Author: benh
Date: 2017-03-19 04:53:31 +0000 (Sun, 19 Mar 2017)
New Revision: 5091

Modified:
   active/CVE-2017-6951
Log:
Update status of CVE-2017-6951

Modified: active/CVE-2017-6951
===================================================================
--- active/CVE-2017-6951	2017-03-18 13:54:00 UTC (rev 5090)
+++ active/CVE-2017-6951	2017-03-19 04:53:31 UTC (rev 5091)
@@ -1,17 +1,19 @@
-Description: NULL pointer dereference in keyring_search_aux
+Description: NULL pointer dereference in keyring_search_aux when type is "dead"
 References:
  https://www.spinics.net/lists/keyrings/msg01845.html
  https://www.spinics.net/lists/keyrings/msg01846.html
  https://www.spinics.net/lists/keyrings/msg01849.html
+ https://www.spinics.net/lists/keyrings/msg01882.html
 Notes:
  carnil> Problem is said to not affect newer kernel, but
  carnil> the fixing commit needs to be found still which
  carnil> resolves the issue.
+ bwh> I found it.
 Bugs:
-upstream:
-4.9-upstream-stable:
+upstream: released (3.18-rc1) [c06cfb08b88dfbe13be44a69ae2fdc3a7c902d81]
+4.9-upstream-stable: N/A "Fixed before branch point"
 3.16-upstream-stable: needed
 3.2-upstream-stable: needed
-sid:
+sid: released (3.18-1~exp1)
 3.16-jessie-security: needed
 3.2-wheezy-security: needed




More information about the kernel-sec-discuss mailing list