Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4591 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2016-08-24 08:26:40 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2016-08-24 08:26:40 +0000
commit: 8401a6ccb4231c063895387616a45318b7405892 (patch)
tree: e17369dd05390c3dbf15a11fc9abb492606bf13b /retired/CVE-2016-1237
parent: 73c9012ef5d0de587ba5df08cdd9fad0dda01803 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/retired/CVE-2016-1237 b/retired/CVE-2016-1237
new file mode 100644
index 00000000..aa4b3c50
--- /dev/null
+++ b/retired/CVE-2016-1237
@@ -0,0 +1,11 @@
+Description: nfsd: any user can set a file's ACL over NFS  and grant access to it
+References:
+Notes:
+ Requisite for the fix: 485e71e8fb6356c08c7fc6bcce4bf02c9a9a663f 
+Bugs:
+upstream: released (4.7-rc5) [999653786df6954a31044528ac3f7a5dadca08f4]
+3.16-upstream-stable: released (3.16.37) [nfsd-check-permissions-when-setting-acls.patch]
+3.2-upstream-stable: N/A "Introduced in v3.14-rc1 with 4ac7249ea5a0ceef9f8269f63f33cc873c3fac61"
+sid: released (4.6.2-2) [bugfix/all/nfsd-check-permissions-when-setting-acls.patch]
+3.16-jessie-security: released (3.16.7-ckt25-2+deb8u1) [bugfix/all/nfsd-check-permissions-when-setting-ACLs.patch]
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2016-08-24 08:26:40 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2016-08-24 08:26:40 +0000
commit	8401a6ccb4231c063895387616a45318b7405892 (patch)
tree	e17369dd05390c3dbf15a11fc9abb492606bf13b /retired/CVE-2016-1237
parent	73c9012ef5d0de587ba5df08cdd9fad0dda01803 (diff)