diff options
| author | Ben Hutchings <ben@decadent.org.uk> | 2019-04-25 16:36:00 +0100 |
|---|---|---|
| committer | Ben Hutchings <ben@decadent.org.uk> | 2019-04-25 20:41:22 +0100 |
| commit | d98b5dfcad9328b959c258b480dec33c85c7e108 (patch) | |
| tree | 4429fe0a08b471341c44180a80a42dbb25076925 | |
| parent | 8540216243495fe412b2365d73066c546481cd05 (diff) | |
Fill in status of CVE-2018-20449 and retire it
| -rw-r--r-- | retired/CVE-2018-20449 (renamed from active/CVE-2018-20449) | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/active/CVE-2018-20449 b/retired/CVE-2018-20449 index 5dc13139..9f0f8b53 100644 --- a/active/CVE-2018-20449 +++ b/retired/CVE-2018-20449 @@ -9,11 +9,13 @@ Notes: canril> Issue mitigated with commit canril> ad67b74d2469d9b82aaa572d76474c95bc484d57 ("printk: hash canril> addresses printed with %p"). + bwh> I consider hashing pointers to be a complete fix. Additionally + bwh> debugfs is only accessible to root by default. Bugs: -upstream: released (4.15-rc2) [ad67b74d2469d9b82aaa572d76474c95bc484d57], released (4.18-rc1) [91efafb1dd8f471177a3dddb4841d75d3df1cc46] -4.19-upstream-stable: needed -4.9-upstream-stable: needed +upstream: released (4.15-rc2) [ad67b74d2469d9b82aaa572d76474c95bc484d57] +4.19-upstream-stable: N/A "Fixed before branch point" +4.9-upstream-stable: ignored "Minor issue" 3.16-upstream-stable: N/A "Vulnerable code introduced later" sid: released (4.15.4-1) -4.9-stretch-security: needed +4.9-stretch-security: ignored "Minor issue" 3.16-jessie-security: N/A "Vulnerable code introduced later" |