[kernel-sec-discuss] r5749 - active retired
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 29 05:57:39 UTC 2017
Author: carnil
Date: 2017-11-29 05:57:39 +0000 (Wed, 29 Nov 2017)
New Revision: 5749
Added:
retired/CVE-2017-17052
retired/CVE-2017-17053
Removed:
active/CVE-2017-17052
active/CVE-2017-17053
Log:
Retire CVE-2017-17052 and CVE-2017-17053
Deleted: active/CVE-2017-17052
===================================================================
--- active/CVE-2017-17052 2017-11-29 05:57:38 UTC (rev 5748)
+++ active/CVE-2017-17052 2017-11-29 05:57:39 UTC (rev 5749)
@@ -1,12 +0,0 @@
-Description: fork: fix incorrect fput of ->exe_file causing use-after-free
-References:
-Notes:
-Bugs:
-upstream: released (4.13-rc7) [2b7e8665b4ff51c034c55df3cff76518d1a9ee3a]
-4.9-upstream-stable: released (4.9.46) [b65b6ac52e0f8694aa3a4402d5f766b2bb9e94ef]
-3.16-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
-3.2-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
-sid: released (4.12.12-1)
-4.9-stretch-security: released (4.9.47-1)
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"
Deleted: active/CVE-2017-17053
===================================================================
--- active/CVE-2017-17053 2017-11-29 05:57:38 UTC (rev 5748)
+++ active/CVE-2017-17053 2017-11-29 05:57:39 UTC (rev 5749)
@@ -1,12 +0,0 @@
-Description: x86/mm: Fix use-after-free of ldt_struct
-References:
-Notes:
-Bugs:
-upstream: released (4.13-rc7) [ccd5b3235180eef3cfec337df1c8554ab151b5cc]
-4.9-upstream-stable: released (4.9.46) [3559de45c99a68c0b8c4956fc35367837df9161c]
-3.16-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af"
-3.2-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af"
-sid: released (4.12.12-1)
-4.9-stretch-security: released (4.9.47-1)
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"
Copied: retired/CVE-2017-17052 (from rev 5748, active/CVE-2017-17052)
===================================================================
--- retired/CVE-2017-17052 (rev 0)
+++ retired/CVE-2017-17052 2017-11-29 05:57:39 UTC (rev 5749)
@@ -0,0 +1,12 @@
+Description: fork: fix incorrect fput of ->exe_file causing use-after-free
+References:
+Notes:
+Bugs:
+upstream: released (4.13-rc7) [2b7e8665b4ff51c034c55df3cff76518d1a9ee3a]
+4.9-upstream-stable: released (4.9.46) [b65b6ac52e0f8694aa3a4402d5f766b2bb9e94ef]
+3.16-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
+3.2-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
+sid: released (4.12.12-1)
+4.9-stretch-security: released (4.9.47-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
Copied: retired/CVE-2017-17053 (from rev 5748, active/CVE-2017-17053)
===================================================================
--- retired/CVE-2017-17053 (rev 0)
+++ retired/CVE-2017-17053 2017-11-29 05:57:39 UTC (rev 5749)
@@ -0,0 +1,12 @@
+Description: x86/mm: Fix use-after-free of ldt_struct
+References:
+Notes:
+Bugs:
+upstream: released (4.13-rc7) [ccd5b3235180eef3cfec337df1c8554ab151b5cc]
+4.9-upstream-stable: released (4.9.46) [3559de45c99a68c0b8c4956fc35367837df9161c]
+3.16-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af"
+3.2-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af"
+sid: released (4.12.12-1)
+4.9-stretch-security: released (4.9.47-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
More information about the kernel-sec-discuss
mailing list