Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5834 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2017-12-24 07:36:56 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-12-24 07:36:56 +0000
commit: 9a53b9c6d958966fc78a6511fbe0f7926448251a (patch)
tree: a5ba1eb6c02bfcf7657c37693c6899359b5ba2af /retired/CVE-2017-15127
parent: 2193ab58e9173e2630c27364d10dbf9ea304a80b (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/retired/CVE-2017-15127 b/retired/CVE-2017-15127
new file mode 100644
index 00000000..448b80c8
--- /dev/null
+++ b/retired/CVE-2017-15127
@@ -0,0 +1,15 @@
+Description: Improper error handling of VM_SHARED hugetlbfs mapping in mm/hugetlb.c
+References:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1525218
+Notes:
+ bwh> Appears to have been introduced in 4.11 by commit 8fb5debc5fcd "userfaultfd:
+ bwh> hugetlbfs: add hugetlb_mcopy_atomic_pte for userfaultfd support".
+Bugs:
+upstream: released (4.13-rc5) [5af10dfd0afc559bb4b0f7e3e8227a1578333995]
+4.9-upstream-stable: N/A "Vulnerable code not present"
+3.16-upstream-stable: N/A "Vulnerable code not present"
+3.2-upstream-stable: N/A "Vulnerable code not present"
+sid: released (4.13.4-1)
+4.9-stretch-security: N/A "Vulnerable code not present"
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2017-12-24 07:36:56 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-12-24 07:36:56 +0000
commit	9a53b9c6d958966fc78a6511fbe0f7926448251a (patch)
tree	a5ba1eb6c02bfcf7657c37693c6899359b5ba2af /retired/CVE-2017-15127
parent	2193ab58e9173e2630c27364d10dbf9ea304a80b (diff)