[kernel-sec-discuss] r5556 - active
Ben Hutchings
benh at moszumanska.debian.org
Mon Sep 18 00:20:21 UTC 2017
Author: benh
Date: 2017-09-18 00:20:20 +0000 (Mon, 18 Sep 2017)
New Revision: 5556
Modified:
active/CVE-2017-12153
active/CVE-2017-12154
active/CVE-2017-14340
active/CVE-2017-14489
Log:
Fill in status of various issues
Modified: active/CVE-2017-12153
===================================================================
--- active/CVE-2017-12153 2017-09-17 23:47:27 UTC (rev 5555)
+++ active/CVE-2017-12153 2017-09-18 00:20:20 UTC (rev 5556)
@@ -3,12 +3,14 @@
https://marc.info/?t=150525503100001&r=1&w=2
https://marc.info/?l=linux-wireless&m=150525493517953&w=2
Notes:
+ bwh> Said to be introduced in 3.1 by commit e5497d766ad ("cfg80211/nl80211:
+ bwh> support GTK rekey offload").
Bugs:
-upstream:
-4.9-upstream-stable:
-3.16-upstream-stable:
-3.2-upstream-stable:
-sid:
-4.9-stretch-security:
-3.16-jessie-security:
-3.2-wheezy-security:
+upstream: needed
+4.9-upstream-stable: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+sid: needed
+4.9-stretch-security: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
Modified: active/CVE-2017-12154
===================================================================
--- active/CVE-2017-12154 2017-09-17 23:47:27 UTC (rev 5555)
+++ active/CVE-2017-12154 2017-09-18 00:20:20 UTC (rev 5556)
@@ -2,13 +2,15 @@
References:
https://www.spinics.net/lists/kvm/msg155414.html
Notes:
+ bwh> Appears to have been introduced in 3.1 by commit fe3ef05c7572
+ bwh> "KVM: nVMX: Prepare vmcs02 from vmcs01 and vmcs12".
Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1491224
upstream: released (4.14-rc1) [51aa68e7d57e3217192d88ce90fd5b8ef29ec94f]
-4.9-upstream-stable:
-3.16-upstream-stable:
-3.2-upstream-stable:
-sid:
-4.9-stretch-security:
-3.16-jessie-security:
-3.2-wheezy-security:
+4.9-upstream-stable: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+sid: needed
+4.9-stretch-security: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
Modified: active/CVE-2017-14340
===================================================================
--- active/CVE-2017-14340 2017-09-17 23:47:27 UTC (rev 5555)
+++ active/CVE-2017-14340 2017-09-18 00:20:20 UTC (rev 5556)
@@ -2,12 +2,14 @@
References:
http://www.openwall.com/lists/oss-security/2017/09/13/1
Notes:
+ bwh> Said to be introduced in 2.6.15 by commit f538d4da8d52 "[XFS] write
+ bwh> barrier support".
Bugs:
upstream: released (4.14-rc1) [b31ff3cdf540110da4572e3e29bd172087af65cc]
-4.9-upstream-stable:
-3.16-upstream-stable:
-3.2-upstream-stable:
-sid: pending (4.12.12-3) [bugfix/all/xfs-XFS_IS_REALTIME_INODE-should-be-false-if-no-rt-d.patch]
-4.9-stretch-security:
-3.16-jessie-security:
-3.2-wheezy-security:
+4.9-upstream-stable: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+sid: pending (4.12.12-3) [bugfix/all/xfs-XFS_IS_REALTIME_INODE-should-be-false-if-no-rt-d.patch] needed
+4.9-stretch-security: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
Modified: active/CVE-2017-14489
===================================================================
--- active/CVE-2017-14489 2017-09-17 23:47:27 UTC (rev 5555)
+++ active/CVE-2017-14489 2017-09-18 00:20:20 UTC (rev 5556)
@@ -3,12 +3,15 @@
https://bugzilla.redhat.com/show_bug.cgi?id=1490421
https://patchwork.kernel.org/patch/9923803/
Notes:
+ bwh> Appears to have been introduced in 2.6.15 by commit 0896b7523026
+ bwh> "[SCSI] open-iscsi/linux-iscsi-5 Initiator: Transport class update for
+ bwh> iSCSI".
Bugs:
-upstream:
-4.9-upstream-stable:
-3.16-upstream-stable:
-3.2-upstream-stable:
-sid:
-4.9-stretch-security:
-3.16-jessie-security:
-3.2-wheezy-security:
+upstream: needed
+4.9-upstream-stable: needed
+3.16-upstream-stable: needed
+3.2-upstream-stable: needed
+sid: needed
+4.9-stretch-security: needed
+3.16-jessie-security: needed
+3.2-wheezy-security: needed
More information about the kernel-sec-discuss
mailing list