[kernel-sec-discuss] r5091 - active
Ben Hutchings
benh at moszumanska.debian.org
Sun Mar 19 04:53:31 UTC 2017
Author: benh
Date: 2017-03-19 04:53:31 +0000 (Sun, 19 Mar 2017)
New Revision: 5091
Modified:
active/CVE-2017-6951
Log:
Update status of CVE-2017-6951
Modified: active/CVE-2017-6951
===================================================================
--- active/CVE-2017-6951 2017-03-18 13:54:00 UTC (rev 5090)
+++ active/CVE-2017-6951 2017-03-19 04:53:31 UTC (rev 5091)
@@ -1,17 +1,19 @@
-Description: NULL pointer dereference in keyring_search_aux
+Description: NULL pointer dereference in keyring_search_aux when type is "dead"
References:
https://www.spinics.net/lists/keyrings/msg01845.html
https://www.spinics.net/lists/keyrings/msg01846.html
https://www.spinics.net/lists/keyrings/msg01849.html
+ https://www.spinics.net/lists/keyrings/msg01882.html
Notes:
carnil> Problem is said to not affect newer kernel, but
carnil> the fixing commit needs to be found still which
carnil> resolves the issue.
+ bwh> I found it.
Bugs:
-upstream:
-4.9-upstream-stable:
+upstream: released (3.18-rc1) [c06cfb08b88dfbe13be44a69ae2fdc3a7c902d81]
+4.9-upstream-stable: N/A "Fixed before branch point"
3.16-upstream-stable: needed
3.2-upstream-stable: needed
-sid:
+sid: released (3.18-1~exp1)
3.16-jessie-security: needed
3.2-wheezy-security: needed
More information about the kernel-sec-discuss
mailing list