[kernel-sec-discuss] r5555 - active

Ben Hutchings benh at moszumanska.debian.org
Sun Sep 17 23:47:27 UTC 2017 

Author: benh
Date: 2017-09-17 23:47:27 +0000 (Sun, 17 Sep 2017)
New Revision: 5555

Modified:
   active/CVE-2017-1000111
   active/CVE-2017-1000363
   active/CVE-2017-1000365
   active/CVE-2017-1000380
   active/CVE-2017-10661
   active/CVE-2017-10911
   active/CVE-2017-11176
   active/CVE-2017-11600
   active/CVE-2017-12134
   active/CVE-2017-14106
   active/CVE-2017-14140
   active/CVE-2017-7482
   active/CVE-2017-7542
   active/CVE-2017-7889
Log:
Mark issues pending for wheezy (3.2.93-1)

Modified: active/CVE-2017-1000111
===================================================================
--- active/CVE-2017-1000111	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-1000111	2017-09-17 23:47:27 UTC (rev 5555)
@@ -10,4 +10,4 @@
 sid: released (4.12.6-1) [bugfix/all/packet-fix-tp_reserve-race-in-packet_set_ring.patch]
 4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/packet-fix-tp_reserve-race-in-packet_set_ring.patch]
 3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/packet-fix-tp_reserve-race-in-packet_set_ring.patch]
-3.2-wheezy-security: pending (3.2.91-1) [bugfix/all/packet-fix-tp_reserve-race-in-packet_set_ring.patch]
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-1000363
===================================================================
--- active/CVE-2017-1000363	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-1000363	2017-09-17 23:47:27 UTC (rev 5555)
@@ -9,4 +9,4 @@
 sid: released (4.9.30-1)
 4.9-stretch-security: N/A "Fixed before branching point"
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/char-lp-fix-possible-integer-overflow-in-lp_setup.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-1000365
===================================================================
--- active/CVE-2017-1000365	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-1000365	2017-09-17 23:47:27 UTC (rev 5555)
@@ -11,4 +11,4 @@
 sid: released (4.11.11-1)
 4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/fs-exec.c-account-for-argv-envp-pointers.patch]
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/fs-exec.c-account-for-argv-envp-pointers.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-1000380
===================================================================
--- active/CVE-2017-1000380	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-1000380	2017-09-17 23:47:27 UTC (rev 5555)
@@ -10,4 +10,4 @@
 sid: released (4.11.6-1)
 4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/alsa-timer-fix-race-between-read-and-ioctl.patch, bugfix/all/alsa-timer-fix-missing-queue-indices-reset-at.patch]
 3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/alsa-timer-fix-race-between-read-and-ioctl.patch, bugfix/all/alsa-timer-fix-missing-queue-indices-reset-at.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-10661
===================================================================
--- active/CVE-2017-10661	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-10661	2017-09-17 23:47:27 UTC (rev 5555)
@@ -12,4 +12,4 @@
 sid: released (4.9.30-1)
 4.9-stretch-security: N/A "Fixed before initial release of stretch"
 3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/timerfd-protect-the-might-cancel-mechanism-proper.patch]
-3.2-wheezy-security: pending (3.2.91-1) [bugfix/all/timerfd-protect-the-might-cancel-mechanism-proper.patch]
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-10911
===================================================================
--- active/CVE-2017-10911	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-10911	2017-09-17 23:47:27 UTC (rev 5555)
@@ -10,4 +10,4 @@
 sid: released (4.11.11-1)
 4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/xen-blkback-don-t-leak-stack-data-via-response-ring.patch]
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/xen-blkback-don-t-leak-stack-data-via-response-ring.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-11176
===================================================================
--- active/CVE-2017-11176	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-11176	2017-09-17 23:47:27 UTC (rev 5555)
@@ -11,4 +11,4 @@
 sid: released (4.11.11-1)
 4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/mqueue-fix-a-use-after-free-in-sys_mq_notify.patch]
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/mqueue-fix-a-use-after-free-in-sys_mq_notify.patch]
-3.2-wheezy-security: pending (3.2.91-1) [bugfix/all/mqueue-fix-a-use-after-free-in-sys_mq_notify.patch]
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-11600
===================================================================
--- active/CVE-2017-11600	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-11600	2017-09-17 23:47:27 UTC (rev 5555)
@@ -15,4 +15,4 @@
 sid: released (4.12.6-1) [bugfix/all/xfrm-policy-check-policy-direction-value.patch]
 4.9-stretch-security: pending (4.9.30-2+deb9u4) [bugfix/all/xfrm-policy-check-policy-direction-value.patch]
 3.16-jessie-security: pending (3.16.43-2+deb8u4) [bugfix/all/xfrm-policy-check-policy-direction-value.patch]
-3.2-wheezy-security: pending (3.2.91-1) [bugfix/all/xfrm-policy-check-policy-direction-value.patch]
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-12134
===================================================================
--- active/CVE-2017-12134	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-12134	2017-09-17 23:47:27 UTC (rev 5555)
@@ -10,4 +10,4 @@
 sid: released (4.12.12-1)
 4.9-stretch-security: needed
 3.16-jessie-security: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-14106
===================================================================
--- active/CVE-2017-14106	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-14106	2017-09-17 23:47:27 UTC (rev 5555)
@@ -12,4 +12,4 @@
 sid: released (4.12.6-1)
 4.9-stretch-security: needed
 3.16-jessie-security: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-14140
===================================================================
--- active/CVE-2017-14140	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-14140	2017-09-17 23:47:27 UTC (rev 5555)
@@ -9,4 +9,4 @@
 sid: released (4.12.12-1)
 4.9-stretch-security: needed
 3.16-jessie-security: needed
-3.2-wheezy-security: needed
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-7482
===================================================================
--- active/CVE-2017-7482	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-7482	2017-09-17 23:47:27 UTC (rev 5555)
@@ -12,4 +12,4 @@
 sid: released (4.11.11-1)
 4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/rxrpc-Fix-several-cases-where-a-padded-len-isn-t-che.patch]
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/rxrpc-Fix-several-cases-where-a-padded-len-isn-t-che.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-7542
===================================================================
--- active/CVE-2017-7542	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-7542	2017-09-17 23:47:27 UTC (rev 5555)
@@ -9,4 +9,4 @@
 sid: released (4.12.6-1)
 4.9-stretch-security: released (4.9.30-2+deb9u3) [bugfix/all/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch]
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/all/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch]
-3.2-wheezy-security: pending (3.2.91-1) [bugfix/all/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch]
+3.2-wheezy-security: pending (3.2.93-1)

Modified: active/CVE-2017-7889
===================================================================
--- active/CVE-2017-7889	2017-09-17 07:42:26 UTC (rev 5554)
+++ active/CVE-2017-7889	2017-09-17 23:47:27 UTC (rev 5555)
@@ -14,4 +14,4 @@
 sid: released (4.9.25-1)
 4.9-stretch-security: N/A "Fixed before branching point"
 3.16-jessie-security: released (3.16.43-2+deb8u3) [bugfix/x86/mm-Tighten-x86-dev-mem-with-zeroing-reads.patch b/debian/patches/bugfix/x86/mm-Tighten-x86-dev-mem-with-zeroing-reads.patch]
-3.2-wheezy-security: pending (3.2.91-1)
+3.2-wheezy-security: pending (3.2.93-1)

More information about the kernel-sec-discuss mailing list