Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5347 e094ebfe-e918-0410-adfb-c712417f3574
author: Salvatore Bonaccorso <carnil@debian.org> 2017-06-06 09:43:25 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-06-06 09:43:25 +0000
commit: 05e144f5efb3f82e93da6f2fa0283cf10f5662c5 (patch)
tree: 21da5aba7295fd76da23f65b845b8c46be428976 /retired/CVE-2017-7472
parent: 746bd81de6f5b86cc825f4d7ed1565bc1a7f8ff6 (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2017-7472 b/retired/CVE-2017-7472
new file mode 100644
index 00000000..d19ba7e1
--- /dev/null
+++ b/retired/CVE-2017-7472
@@ -0,0 +1,16 @@
+Description: keyctl_set_reqkey_keyring() leaks thread keyrings
+References:
+ https://lkml.org/lkml/2017/4/1/235
+ https://lkml.org/lkml/2017/4/3/724
+Notes:
+ carnil> 'Fixes: d84f4f992cbd ("CRED: Inaugurate COW credentials")'
+ carnil> which is first in 2.6.29-rc1
+Bugs:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1442086
+upstream: released (4.11-rc8) [c9f838d104fed6f2f61d68164712e3204bf5271b]
+4.9-upstream-stable: released (4.9.25) [174a74dbca2ddc7269c265598399c000e5b9b870]
+3.16-upstream-stable: released (3.16.44) [f7ce1014bc5e4bb42d6b9f5afb308f59534067ea]
+3.2-upstream-stable: released (3.2.89) [0ebd7208190d2f7b16fee3cea05665e212cebaab]
+sid: released (4.9.25-1)
+3.16-jessie-security: released (3.16.43-1) [bugfix/all/keys-fix-keyctl_set_reqkey_keyring-to-not-leak-threa.patch]
+3.2-wheezy-security: released (3.2.88-1) [bugfix/all/keys-fix-keyctl_set_reqkey_keyring-to-not-leak-threa.patch]
author	Salvatore Bonaccorso <carnil@debian.org>	2017-06-06 09:43:25 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-06-06 09:43:25 +0000
commit	05e144f5efb3f82e93da6f2fa0283cf10f5662c5 (patch)
tree	21da5aba7295fd76da23f65b845b8c46be428976 /retired/CVE-2017-7472
parent	746bd81de6f5b86cc825f4d7ed1565bc1a7f8ff6 (diff)