[kernel-sec-discuss] [Git][kernel-team/kernel-sec][master] Add CVE-2018-1000028
Salvatore Bonaccorso
gitlab at salsa.debian.org
Sun Jan 28 18:32:46 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian kernel team / kernel-sec
Commits:
d56e9b1e by Salvatore Bonaccorso at 2018-01-28T19:32:35+01:00
Add CVE-2018-1000028
- - - - -
1 changed file:
- + active/CVE-2018-1000028
Changes:
=====================================
active/CVE-2018-1000028
=====================================
--- /dev/null
+++ b/active/CVE-2018-1000028
@@ -0,0 +1,17 @@
+Description: nfsd: auth: Fix gid sorting when rootsquash enabled
+References:
+Notes:
+ carnil> Introduced with bdcf0a423ea1 (4.15-rc4) and various
+ carnil> backports (4.14.8+, 4.9.76+).
+ carnil> When though fixing in stretch via new a version
+ carnil> >= 4.9.76 needs to apply a backport of
+ carnil> 1995266727fa8143897e89b55f5d3c79aa828420 as well.
+Bugs:
+upstream: pending [1995266727fa8143897e89b55f5d3c79aa828420]
+4.9-upstream-stable: needed
+3.16-upstream-stable: N/A "Vulnerable code introduced later"
+3.2-upstream-stable: N/A "Vulnerable code introduced later"
+sid: needed
+4.9-stretch-security: N/A "Vulnerable code introduced later"
+3.16-jessie-security: N/A "Vulnerable code introduced later"
+3.2-wheezy-security: N/A "Vulnerable code introduced later"
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/d56e9b1ef845aadb2a316a25ee70ba18cdf86f19
---
View it on GitLab: https://salsa.debian.org/kernel-team/kernel-sec/commit/d56e9b1ef845aadb2a316a25ee70ba18cdf86f19
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/kernel-sec-discuss/attachments/20180128/b32da413/attachment.html>
More information about the kernel-sec-discuss
mailing list