[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Update status for CVE-2017-13216

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian kernel team / kernel-sec


Commits:
aff3c7f1 by Salvatore Bonaccorso at 2018-01-18T19:29:06+01:00
Update status for CVE-2017-13216

- - - - -


1 changed file:

- active/CVE-2017-13216


Changes:

=====================================
active/CVE-2017-13216
=====================================
--- a/active/CVE-2017-13216
+++ b/active/CVE-2017-13216
@@ -7,12 +7,14 @@ Notes:
  jmm> Only present in drivers/staging/android/ashmem.c
  carnil> not 100% certain I got the right commit, but that seems to be the
  carnil> relevant change.
+ carnil> ashmem driver source-wise introduced in 3.3-rc1 with
+ carnil> 11980c2ac4ccfad21a5f8ee9e12059f1e687bb40
 Bugs:
 upstream: released (4.15-rc8) [443064cb0b1fb4569fe0a71209da7625129f]
 4.9-upstream-stable: released (4.9.77) [c51d23dffc2e9ca05d611c86c440f9055541]
-3.16-upstream-stable:
-3.2-upstream-stable:
+3.16-upstream-stable: ignored "ashmem not enabled for Debian, only Android"
+3.2-upstream-stable: N/A "Vulnerable code introduced in 3.3-rc1"
 sid: pending (4.14.14-1)
-4.9-stretch-security:
-3.16-jessie-security:
-3.2-wheezy-security:
+4.9-stretch-security: ignored "ashmem not enabled for Debian, only Android"
+3.16-jessie-security: ignored "ashmem not enabled for Debian, only Android"
+3.2-wheezy-security: N/A "Vulnerable code not present"



View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/aff3c7f148facc1f2705476646f075524a35c681

---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/aff3c7f148facc1f2705476646f075524a35c681
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180118/0908e5c1/attachment-0001.html>