[kernel-sec-discuss] r5101 - active retired
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 22 17:51:20 UTC 2017
Author: carnil
Date: 2017-03-22 17:51:20 +0000 (Wed, 22 Mar 2017)
New Revision: 5101
Added:
retired/CVE-2017-2636
retired/CVE-2017-6874
Removed:
active/CVE-2017-2636
active/CVE-2017-6874
Log:
Retire two CVEs
Deleted: active/CVE-2017-2636
===================================================================
--- active/CVE-2017-2636 2017-03-22 17:50:17 UTC (rev 5100)
+++ active/CVE-2017-2636 2017-03-22 17:51:20 UTC (rev 5101)
@@ -1,12 +0,0 @@
-Description: tty: n_hdlc: get rid of racy n_hdlc.tbuf
-References:
- http://www.openwall.com/lists/oss-security/2017/03/07/6
-Notes:
-Bugs:
-upstream: released (4.11-rc2) [82f2341c94d270421f383641b7cd670e474db56b]
-4.9-upstream-stable: released (4.9.15) [e5b9778761558ff3d239ed76925a1a7a734918ea]
-3.16-upstream-stable: released (3.16.42) [tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
-3.2-upstream-stable: released (3.2.87) [tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
-sid: released (4.9.16-1)
-3.16-jessie-security: released (3.16.39-1+deb8u2) [bugfix/all/tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
-3.2-wheezy-security: released (3.2.86-1) [bugfix/all/tty-n_hdlc-get-rid-of-racy-n_hdlc.patch]
Deleted: active/CVE-2017-6874
===================================================================
--- active/CVE-2017-6874 2017-03-22 17:50:17 UTC (rev 5100)
+++ active/CVE-2017-6874 2017-03-22 17:51:20 UTC (rev 5101)
@@ -1,11 +0,0 @@
-Description: ucount: Remove the atomicity from ucount->count
-References:
-Notes:
-Bugs:
-upstream: released (4.11-rc2) [040757f738e13caaa9c5078bca79aa97e11dde88]
-4.9-upstream-stable: released (4.9.16) [ee6f7ee1e4cdb0098fee4593ddf11ca6028abef2]
-3.16-upstream-stable: N/A "Vulnerable code introduced in 4.9-rc1 with f6b2db1a3e8d141dd144df58900fb0444d5d7c53"
-3.2-upstream-stable: N/A "Vulnerable code introduced in 4.9-rc1 with f6b2db1a3e8d141dd144df58900fb0444d5d7c53"
-sid: released (4.9.16-1)
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"
Copied: retired/CVE-2017-2636 (from rev 5100, active/CVE-2017-2636)
===================================================================
--- retired/CVE-2017-2636 (rev 0)
+++ retired/CVE-2017-2636 2017-03-22 17:51:20 UTC (rev 5101)
@@ -0,0 +1,12 @@
+Description: tty: n_hdlc: get rid of racy n_hdlc.tbuf
+References:
+ http://www.openwall.com/lists/oss-security/2017/03/07/6
+Notes:
+Bugs:
+upstream: released (4.11-rc2) [82f2341c94d270421f383641b7cd670e474db56b]
+4.9-upstream-stable: released (4.9.15) [e5b9778761558ff3d239ed76925a1a7a734918ea]
+3.16-upstream-stable: released (3.16.42) [tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
+3.2-upstream-stable: released (3.2.87) [tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
+sid: released (4.9.16-1)
+3.16-jessie-security: released (3.16.39-1+deb8u2) [bugfix/all/tty-n_hdlc-get-rid-of-racy-n_hdlc.tbuf.patch]
+3.2-wheezy-security: released (3.2.86-1) [bugfix/all/tty-n_hdlc-get-rid-of-racy-n_hdlc.patch]
Copied: retired/CVE-2017-6874 (from rev 5100, active/CVE-2017-6874)
===================================================================
--- retired/CVE-2017-6874 (rev 0)
+++ retired/CVE-2017-6874 2017-03-22 17:51:20 UTC (rev 5101)
@@ -0,0 +1,11 @@
+Description: ucount: Remove the atomicity from ucount->count
+References:
+Notes:
+Bugs:
+upstream: released (4.11-rc2) [040757f738e13caaa9c5078bca79aa97e11dde88]
+4.9-upstream-stable: released (4.9.16) [ee6f7ee1e4cdb0098fee4593ddf11ca6028abef2]
+3.16-upstream-stable: N/A "Vulnerable code introduced in 4.9-rc1 with f6b2db1a3e8d141dd144df58900fb0444d5d7c53"
+3.2-upstream-stable: N/A "Vulnerable code introduced in 4.9-rc1 with f6b2db1a3e8d141dd144df58900fb0444d5d7c53"
+sid: released (4.9.16-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list