Retire some CVEs fixed everywhere

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5025 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2017-02-27 07:34:54 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-02-27 07:34:54 +0000
commit: 168752cc6fc4e21854fc4fa450139ed872c81f6d (patch)
tree: 4a4358d5f07316d5aaa10afed6380cb026940e56 /retired/CVE-2017-5970
parent: 79e0fa160a992e5f828209260a0cb6d506251c3f (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/retired/CVE-2017-5970 b/retired/CVE-2017-5970
new file mode 100644
index 00000000..eec806ff
--- /dev/null
+++ b/retired/CVE-2017-5970
@@ -0,0 +1,13 @@
+Description: ipv4: Invalid IP options could cause skb->dst drop
+References:
+ http://seclists.org/oss-sec/2017/q1/414
+ https://patchwork.ozlabs.org/patch/724136/
+Notes:
+Bugs:
+upstream: released (4.10-rc8) [34b2cef20f19c87999fff3da4071e66937db9644]
+4.9-upstream-stable: released (4.9.11) [f5b54446630a973e1f27b68599366bbd0ac53066]
+3.16-upstream-stable: released (3.16.41) [ipv4-keep-skb-dst-around-in-presence-of-ip-options.patch]
+3.2-upstream-stable: N/A "Vulnerable code introduced in 3.3-rc1 with d826eb14ecef3574b6b3be55e5f4329f4a76fbf3"
+sid: released (4.9.10-1) [bugfix/all/ipv4-keep-skb-dst-around-in-presence-of-IP-options.patch]
+3.16-jessie-security: released (3.16.39-1+deb8u1) [bugfix/all/ipv4-keep-skb-dst-around-in-presence-of-ip-options.patch]
+3.2-wheezy-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2017-02-27 07:34:54 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-02-27 07:34:54 +0000
commit	168752cc6fc4e21854fc4fa450139ed872c81f6d (patch)
tree	4a4358d5f07316d5aaa10afed6380cb026940e56 /retired/CVE-2017-5970
parent	79e0fa160a992e5f828209260a0cb6d506251c3f (diff)