Retire CVE-2017-6353

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5186 e094ebfe-e918-0410-adfb-c712417f3574

1 files changed, 17 insertions, 0 deletions

diff --git a/retired/CVE-2017-6353 b/retired/CVE-2017-6353
new file mode 100644
index 00000000..3f7ab501
--- /dev/null
+++ b/retired/CVE-2017-6353
@@ -0,0 +1,17 @@
+Description: sctp: deny peeloff operation on asocs with threads sleeping on it
+References:
+ https://marc.info/?l=linux-netdev&m=148785309416337&w=2
+Notes:
+ carnil> "technically" 3.2-wheezy-security and 3.16-jessie-security are not
+ carnil> affected since we did not apply 2dcab598484185dea7ec22219c76dcdd59e3cb90
+ carnil> but maybe we want to make an exception here and threat this CVE never-
+ carnil> theless as affected for all branches.
+ bwh> Introduced by attempted fix for CVE-2017-5986
+Bugs:
+upstream: released (4.11-rc1) [dfcb9f4f99f1e9a49e43398a7bfbf56927544af1]
+4.9-upstream-stable: released (4.9.24) [35b9d61ea910c1ebd4652b32cc7d713f6689b4f4]
+3.16-upstream-stable: released (3.16.42) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]
+3.2-upstream-stable: released (3.2.87) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]
+sid: released (4.9.13-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch]
+3.16-jessie-security: released (3.16.39-1+deb8u2) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch]
+3.2-wheezy-security: released (3.2.86-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]