diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2017-05-14 14:53:18 +0000 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2017-05-14 14:53:18 +0000 |
commit | 85a308ad7bef95d4c95be50fbe97f32acf4d8cc6 (patch) | |
tree | d97645d7bf9fbb564ff96f273589cd6377af533b /retired/CVE-2017-7477 | |
parent | 65166a324e993b6867593f60bed55dd851dc11b6 (diff) |
Retire CVE-2017-7477
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5288 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2017-7477')
-rw-r--r-- | retired/CVE-2017-7477 | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/retired/CVE-2017-7477 b/retired/CVE-2017-7477 new file mode 100644 index 00000000..117bec9e --- /dev/null +++ b/retired/CVE-2017-7477 @@ -0,0 +1,16 @@ +Description: net: Heap overflow in skb_to_sgvec in macsec.c +References: + http://www.openwall.com/lists/oss-security/2017/04/24/5 +Notes: + nsl> 4.9.26 contains the first commit with 07389a140f + nsl> didn't see the second commit. I assume its needed? + carnil> both commits are needed to fix CVE-2017-7477 +Bugs: + https://bugzilla.redhat.com/show_bug.cgi?id=1445207 +upstream: released (4.11) [4d6fa57b4dab0d77f4d8e9d9c73d1e63f6fe8fee, 5294b83086cc1c35b4efeca03644cf9d12282e5b] +4.9-upstream-stable: released (4.9.28) [07389a140f48a3d5d223881bb01cef9f389e2844, 3b0129d4111e53927c2bc3c6b78a2b12ad71268b] +3.16-upstream-stable: N/A "Introduced in 4.6-rc1" +3.2-upstream-stable: N/A "Introduced in 4.6-rc1" +sid: released (4.9.25-1) [bugfix/all/macsec-avoid-heap-overflow-in-skb_to_sgvec.patch] +3.16-jessie-security: N/A "Introduced in 4.6-rc1" +3.2-wheezy-security: N/A "Introduced in 4.6-rc1" |