Retire CVE-2017-17052 and CVE-2017-17053

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5749 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2017-11-29 05:57:39 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-11-29 05:57:39 +0000
commit: 6126be2e7d48e60d754d23cf0df61e5125bbbed0 (patch)
tree: 7931c6cd1f7fa0e5e34aeb0753ec2f20b8419a0f /retired/CVE-2017-17052
parent: 49b0c4a9efc46e22319b056377c4fb6b691d28e8 (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/retired/CVE-2017-17052 b/retired/CVE-2017-17052
new file mode 100644
index 00000000..12cc9f4e
--- /dev/null
+++ b/retired/CVE-2017-17052
@@ -0,0 +1,12 @@
+Description: fork: fix incorrect fput of ->exe_file causing use-after-free
+References:
+Notes:
+Bugs:
+upstream: released (4.13-rc7) [2b7e8665b4ff51c034c55df3cff76518d1a9ee3a]
+4.9-upstream-stable: released (4.9.46) [b65b6ac52e0f8694aa3a4402d5f766b2bb9e94ef]
+3.16-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
+3.2-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8"
+sid: released (4.12.12-1)
+4.9-stretch-security: released (4.9.47-1)
+3.16-jessie-security: N/A "Vulnerable code not present"
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2017-11-29 05:57:39 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-11-29 05:57:39 +0000
commit	6126be2e7d48e60d754d23cf0df61e5125bbbed0 (patch)
tree	7931c6cd1f7fa0e5e34aeb0753ec2f20b8419a0f /retired/CVE-2017-17052
parent	49b0c4a9efc46e22319b056377c4fb6b691d28e8 (diff)