[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Update status on CVE-2017-13220

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian kernel team / kernel-sec


Commits:
0b5dc84d by Salvatore Bonaccorso at 2018-04-10T14:26:14+02:00
Update status on CVE-2017-13220

Add references to RedHat and SUSE bugzilla and note were issue
introduced.

- - - - -


1 changed file:

- active/CVE-2017-13220


Changes:

=====================================
active/CVE-2017-13220
=====================================
--- a/active/CVE-2017-13220
+++ b/active/CVE-2017-13220
@@ -1,12 +1,16 @@
 Description: Possible out-of-bound access in Bluetooth subsystem
 References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1536155
+ https://bugzilla.suse.com/show_bug.cgi?id=1076537
 Notes:
+ carnil> Introduced in/later than b4f34d8d9d26b2428fa7cf7c8f97690a297978e6
+ carnil> in 3.10-rc1.
 Bugs:
-upstream: released (v3.19-rc3) [51bda2bca53b]
-4.9-upstream-stable: N/A
-3.16-upstream-stable:
-3.2-upstream-stable:
+upstream: released (v3.19-rc3) [51bda2bca53b265715ca1852528f38dc67429d9a]
+4.9-upstream-stable: N/A "Fixed before branching point"
+3.16-upstream-stable: needed
+3.2-upstream-stable: N/A "Vulnerable code not present"
 sid: released (4.0.2-1)
-4.9-stretch-security: N/A
-3.16-jessie-security: 
-3.2-wheezy-security:
+4.9-stretch-security: N/A "Fixed before branching point"
+3.16-jessie-security:  needed
+3.2-wheezy-security: N/A "Vulnerable code not present"



View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/0b5dc84d0be15d86887e65151a627cc3684c6a80

---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/0b5dc84d0be15d86887e65151a627cc3684c6a80
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180410/a9e7f94c/attachment-0001.html>