Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4499 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2016-06-28 08:34:54 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2016-06-28 08:34:54 +0000
commit: 5995bb05fadb43acd248258147490c1c08ae951a (patch)
tree: 434a620c1e69976405abcdc237a569473d83544a /retired/CVE-2016-3070
parent: 98bb4c4104a3c0885f9feab828bf5cb178ec1fa1 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2016-3070 b/retired/CVE-2016-3070
new file mode 100644
index 00000000..bb919933
--- /dev/null
+++ b/retired/CVE-2016-3070
@@ -0,0 +1,14 @@
+Description: Null pointer dereference in trace_writeback_dirty_page() 
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1306851 (not yet public)
+Notes:
+ bwh> Problematic call sequence removed by upstream commit appears to be:
+ bwh> migrate_page_copy() -> __set_page_dirty_nobuffers()
+ bwh> -> account_page_dirtied() -> trace_writeback_dirty_page()
+Bugs:
+upstream: released (4.4-rc1) [42cb14b110a5698ccf26ce59c4441722605a3743]
+3.16-upstream-stable: released (3.16.36) [mm-migrate-dirty-page-without-clear_page_dirty_for_io-etc.patch]
+3.2-upstream-stable: N/A ("Vulnerable code not present")
+sid: released (4.4.2-1)
+3.16-jessie-security: released (3.16.7-ckt25-2+deb8u1) [bugfix/all/mm-migrate-dirty-page-without-clear_page_dirty_for_io-etc.patch]
+3.2-wheezy-security: N/A ("Vulnerable code not present")
author	Salvatore Bonaccorso <carnil@debian.org>	2016-06-28 08:34:54 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2016-06-28 08:34:54 +0000
commit	5995bb05fadb43acd248258147490c1c08ae951a (patch)
tree	434a620c1e69976405abcdc237a569473d83544a /retired/CVE-2016-3070
parent	98bb4c4104a3c0885f9feab828bf5cb178ec1fa1 (diff)