Retire CVE-2016-7118

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4612 e094ebfe-e918-0410-adfb-c712417f3574
author: Ben Hutchings <benh@debian.org> 2016-09-02 20:49:13 +0000
committer: Ben Hutchings <benh@debian.org> 2016-09-02 20:49:13 +0000
commit: b90e1cdd57b557b57c11fcdaede2d89698764bba (patch)
tree: f513d8d6ed3029d527f4326a0cb9bfdf1ecf839b /retired/CVE-2016-7118
parent: db01a2bb8b81e247be36610b15e0434d8f653517 (diff)
1 files changed, 14 insertions, 0 deletions
diff --git a/retired/CVE-2016-7118 b/retired/CVE-2016-7118
new file mode 100644
index 00000000..37d83901
--- /dev/null
+++ b/retired/CVE-2016-7118
@@ -0,0 +1,14 @@
+Description: Null pointer dereference when fcntl() called on aufs directory
+References:
+ http://www.openwall.com/lists/oss-security/2016/08/31/1
+Notes:
+ bwh> Debian-specific bug, introduced while making the check for the new
+ bwh> setfl operation ABI-backward-compatible.  Affects 3.2.81-1
+ bwh> (wheezy-security) and 3.16.36-1 (jessie-proposed-updates) only.
+Bugs:
+upstream: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: released (3.2.81-2) [debian/fs-fix-abi-change-for-aufs-f_setfl-fix.patch]
author	Ben Hutchings <benh@debian.org>	2016-09-02 20:49:13 +0000
committer	Ben Hutchings <benh@debian.org>	2016-09-02 20:49:13 +0000
commit	b90e1cdd57b557b57c11fcdaede2d89698764bba (patch)
tree	f513d8d6ed3029d527f4326a0cb9bfdf1ecf839b /retired/CVE-2016-7118
parent	db01a2bb8b81e247be36610b15e0434d8f653517 (diff)