retire

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@3601 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2014-12-09 05:23:28 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2014-12-09 05:23:28 +0000
commit: 0097c40ba4c5b66fca2367c9782821f3d4de470d (patch)
tree: 0a6c026caf36f96dec69aec64f3d7f312e3b4dab /retired/CVE-2014-5077
parent: 5ae6fd26f64eabb877c77bfaa9022ce3a8e46d30 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2014-5077 b/retired/CVE-2014-5077
new file mode 100644
index 00000000..732de319
--- /dev/null
+++ b/retired/CVE-2014-5077
@@ -0,0 +1,14 @@
+Description: SCTP remote denial of service
+References:
+ http://patchwork.ozlabs.org/patch/372475/
+Notes:
+ bwh> Commit message says bug has been present since commit 730fc3d05cd4
+ bwh> ('[SCTP]: Implete SCTP-AUTH parameter processing') i.e. in 2.6.24.
+Bugs:
+upstream: released (3.16) [1be9a950c646c9092fb3618197f7b6bfb50e82aa]
+2.6.32-upstream-stable: released (2.6.32.64)
+sid: released (3.14.15-1) [bugfix/all/net-sctp-inherit-auth_capable-on-INIT-collisions.patch]
+3.2-wheezy-security: released (3.2.63-1)
+3.16-upstream-stable: N/A
+2.6.32-squeeze-security: released (2.6.32-48squeeze9)
+3.2-upstream-stable: released (3.2.63) [net-sctp-inherit-auth_capable-on-init-collisions.patch]
author	Moritz Muehlenhoff <jmm@debian.org>	2014-12-09 05:23:28 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2014-12-09 05:23:28 +0000
commit	0097c40ba4c5b66fca2367c9782821f3d4de470d (patch)
tree	0a6c026caf36f96dec69aec64f3d7f312e3b4dab /retired/CVE-2014-5077
parent	5ae6fd26f64eabb877c77bfaa9022ce3a8e46d30 (diff)