diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2017-07-03 07:24:13 +0000 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2017-07-03 07:24:13 +0000 |
| commit | 7fa91dd46d166029686400082dda51d245703aa8 (patch) | |
| tree | c7c8a62ac0db1735e7ba9a7ef115a2265c52f1c6 /retired/CVE-2017-7645 | |
| parent | eb9f4231ba3f0794e60f8afbeaaf7431450644be (diff) | |
Retire several CVEs fixed everwhere
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5401 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'retired/CVE-2017-7645')
| -rw-r--r-- | retired/CVE-2017-7645 | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/retired/CVE-2017-7645 b/retired/CVE-2017-7645 new file mode 100644 index 00000000..5103c98d --- /dev/null +++ b/retired/CVE-2017-7645 @@ -0,0 +1,25 @@ +Description: The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c +References: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7645 + https://marc.info/?l=linux-nfs&m=149218228327497&w=2 + https://marc.info/?l=linux-nfs&m=149247516212924&w=2 +Notes: + carnil> afaict the issue for which CVE-2017-7645 was assigned + carnil> is fixed with e6838a29ecb484c97e4efef9429643b9851fba6e + carnil> but I think + carnil> db44bac41bbfc0c0d9dd943092d8bded3c9db19b (nfsd4: minor + carnil> NFSv2/v3 write decoding cleanup) and the following + carnil> 13bf9fbff0e5e099e2b6f003a0ab8ae145436309 (nfsd: stricter + carnil> decoding of write-like NFSv2/v3 ops) should be applied + carnil> as well (should the last commit get a separate CVE id?) + carnil> 13bf9fbff0e5e099e2b6f003a0ab8ae145436309 got a separate + carnil> CVE: CVE-2017-7895 +Bugs: +upstream: released (4.11) [e6838a29ecb484c97e4efef9429643b9851fba6e] +4.9-upstream-stable: released (4.9.26) [fc6445df466f37291a70937642068bda78802a5b] +3.16-upstream-stable: released (3.16.44) [1d4ab03084d4bace93b1573c57a309e954d05c09] +3.2-upstream-stable: released (3.2.89) [1eb3e42d91d63fc757a8da38683f417bcdf953a2] +sid: released (4.9.25-1) [bugfix/all/nfsd-check-for-oversized-NFSv2-v3-arguments.patch] +4.9-stretch-security: N/A "Fixed before branching point" +3.16-jessie-security: released (3.16.43-2+deb8u1) [bugfix/all/nfsd-check-for-oversized-nfsv2-v3-arguments.patch] +3.2-wheezy-security: released (3.2.89-1) |