diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2017-04-21 15:32:34 +0000 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2017-04-21 15:32:34 +0000 |
commit | d68c5bf076a6ae38d681b30369ab6499d8204c38 (patch) | |
tree | 40787fbcccbe996653f21e0d96d448c9700fee2c /retired/CVE-2017-6353 | |
parent | 176a37a28c11dd139438f641563167ffd68753f5 (diff) |
Retire CVE-2017-6353
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5186 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2017-6353')
-rw-r--r-- | retired/CVE-2017-6353 | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2017-6353 b/retired/CVE-2017-6353 new file mode 100644 index 00000000..3f7ab501 --- /dev/null +++ b/retired/CVE-2017-6353 @@ -0,0 +1,17 @@ +Description: sctp: deny peeloff operation on asocs with threads sleeping on it +References: + https://marc.info/?l=linux-netdev&m=148785309416337&w=2 +Notes: + carnil> "technically" 3.2-wheezy-security and 3.16-jessie-security are not + carnil> affected since we did not apply 2dcab598484185dea7ec22219c76dcdd59e3cb90 + carnil> but maybe we want to make an exception here and threat this CVE never- + carnil> theless as affected for all branches. + bwh> Introduced by attempted fix for CVE-2017-5986 +Bugs: +upstream: released (4.11-rc1) [dfcb9f4f99f1e9a49e43398a7bfbf56927544af1] +4.9-upstream-stable: released (4.9.24) [35b9d61ea910c1ebd4652b32cc7d713f6689b4f4] +3.16-upstream-stable: released (3.16.42) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch] +3.2-upstream-stable: released (3.2.87) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch] +sid: released (4.9.13-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch] +3.16-jessie-security: released (3.16.39-1+deb8u2) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch] +3.2-wheezy-security: released (3.2.86-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch] |