[kernel-sec-discuss] r5658 - active retired

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Oct 16 20:30:07 UTC 2017 

Author: carnil
Date: 2017-10-16 20:30:06 +0000 (Mon, 16 Oct 2017)
New Revision: 5658

Added:
   retired/CVE-2017-5123
Removed:
   active/CVE-2017-5123
Log:
Retire CVE-2017-5123

Deleted: active/CVE-2017-5123
===================================================================
--- active/CVE-2017-5123	2017-10-16 04:18:20 UTC (rev 5657)
+++ active/CVE-2017-5123	2017-10-16 20:30:06 UTC (rev 5658)
@@ -1,12 +0,0 @@
-Description: waitid() not calling access_ok()
-References:
-Notes:
-Bugs:
-upstream: released (4.14-rc5) [96ca579a1ecc943b75beba58bebb0356f6cc4b51]
-4.9-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
-3.16-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
-3.2-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
-sid: released (4.13.4-2) [bugfix/all/waitid-Add-missing-access_ok-checks.patch]
-4.9-stretch-security: N/A "Vulnerable code not present"
-3.16-jessie-security: N/A "Vulnerable code not present"
-3.2-wheezy-security: N/A "Vulnerable code not present"

Copied: retired/CVE-2017-5123 (from rev 5657, active/CVE-2017-5123)
===================================================================
--- retired/CVE-2017-5123	                        (rev 0)
+++ retired/CVE-2017-5123	2017-10-16 20:30:06 UTC (rev 5658)
@@ -0,0 +1,12 @@
+Description: waitid() not calling access_ok()
+References:
+Notes:
+Bugs:
+upstream: released (4.14-rc5) [96ca579a1ecc943b75beba58bebb0356f6cc4b51]
+4.9-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
+3.16-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
+3.2-upstream-stable: N/A "Vulnerable code introduced in 4.13-rc1 with 4c48abe91be03d191d0c20cc755877da2cb35622"
+sid: released (4.13.4-2) [bugfix/all/waitid-Add-missing-access_ok-checks.patch]
+4.9-stretch-security: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"

More information about the kernel-sec-discuss mailing list