retire (no need to wait for release of pending issues in 2.6.32.x LTS)

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@3701 e094ebfe-e918-0410-adfb-c712417f3574
author: Moritz Muehlenhoff <jmm@debian.org> 2015-02-24 15:47:33 +0000
committer: Moritz Muehlenhoff <jmm@debian.org> 2015-02-24 15:47:33 +0000
commit: 7d1cfdb962bffefb3e1c3ae188b9f6aac088cf5d (patch)
tree: 8458495710db35847d9eab1fbc11a5682433a275 /retired/CVE-2014-7822
parent: c853e5a24c8b013657a053bfd2d882285cfdfcd7 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2014-7822 b/retired/CVE-2014-7822
new file mode 100644
index 00000000..ee60adab
--- /dev/null
+++ b/retired/CVE-2014-7822
@@ -0,0 +1,15 @@
+Description: splice: lack of generic write checks
+References:
+Notes:
+ bwh> I have a reproducer for this.  On 2.6.32 it causes ext4 to corrupt
+ bwh> the filesystem (which is caught by e2fsck).  On 3.2 it causes ext4 to
+ bwh> hang on umount.  ext3 and xfs don't seem to be affected.
+Bugs:
+ - https://bugzilla.redhat.com/show_bug.cgi?id=1163792
+upstream: released (v3.16-rc1) [8d0207652cbe27d1f962050737848e5ad4671958]
+2.6.32-upstream-stable: pending (2.6.32.66)
+sid: released (3.16.2-1)
+3.2-wheezy-security: released (3.2.65-1+deb7u2) [bugfix/all/splice-apply-generic-position-and-size-checks-to-eac.patch]
+2.6.32-squeeze-security: released (2.6.32-48squeeze11) [bugfix/all/splice-apply-generic-position-and-size-checks-to-eac.patch]
+3.16-upstream-stable: N/A "fixed before 3.16"
+3.2-upstream-stable: released (3.2.67) [splice-apply-generic-position-and-size-checks-to-eac.patch]
author	Moritz Muehlenhoff <jmm@debian.org>	2015-02-24 15:47:33 +0000
committer	Moritz Muehlenhoff <jmm@debian.org>	2015-02-24 15:47:33 +0000
commit	7d1cfdb962bffefb3e1c3ae188b9f6aac088cf5d (patch)
tree	8458495710db35847d9eab1fbc11a5682433a275 /retired/CVE-2014-7822
parent	c853e5a24c8b013657a053bfd2d882285cfdfcd7 (diff)