From 6126be2e7d48e60d754d23cf0df61e5125bbbed0 Mon Sep 17 00:00:00 2001 From: Salvatore Bonaccorso Date: Wed, 29 Nov 2017 05:57:39 +0000 Subject: Retire CVE-2017-17052 and CVE-2017-17053 git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5749 e094ebfe-e918-0410-adfb-c712417f3574 --- active/CVE-2017-17052 | 12 ------------ active/CVE-2017-17053 | 12 ------------ retired/CVE-2017-17052 | 12 ++++++++++++ retired/CVE-2017-17053 | 12 ++++++++++++ 4 files changed, 24 insertions(+), 24 deletions(-) delete mode 100644 active/CVE-2017-17052 delete mode 100644 active/CVE-2017-17053 create mode 100644 retired/CVE-2017-17052 create mode 100644 retired/CVE-2017-17053 diff --git a/active/CVE-2017-17052 b/active/CVE-2017-17052 deleted file mode 100644 index 12cc9f4e6..000000000 --- a/active/CVE-2017-17052 +++ /dev/null @@ -1,12 +0,0 @@ -Description: fork: fix incorrect fput of ->exe_file causing use-after-free -References: -Notes: -Bugs: -upstream: released (4.13-rc7) [2b7e8665b4ff51c034c55df3cff76518d1a9ee3a] -4.9-upstream-stable: released (4.9.46) [b65b6ac52e0f8694aa3a4402d5f766b2bb9e94ef] -3.16-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8" -3.2-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8" -sid: released (4.12.12-1) -4.9-stretch-security: released (4.9.47-1) -3.16-jessie-security: N/A "Vulnerable code not present" -3.2-wheezy-security: N/A "Vulnerable code not present" diff --git a/active/CVE-2017-17053 b/active/CVE-2017-17053 deleted file mode 100644 index 99ed2dc57..000000000 --- a/active/CVE-2017-17053 +++ /dev/null @@ -1,12 +0,0 @@ -Description: x86/mm: Fix use-after-free of ldt_struct -References: -Notes: -Bugs: -upstream: released (4.13-rc7) [ccd5b3235180eef3cfec337df1c8554ab151b5cc] -4.9-upstream-stable: released (4.9.46) [3559de45c99a68c0b8c4956fc35367837df9161c] -3.16-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af" -3.2-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af" -sid: released (4.12.12-1) -4.9-stretch-security: released (4.9.47-1) -3.16-jessie-security: N/A "Vulnerable code not present" -3.2-wheezy-security: N/A "Vulnerable code not present" diff --git a/retired/CVE-2017-17052 b/retired/CVE-2017-17052 new file mode 100644 index 000000000..12cc9f4e6 --- /dev/null +++ b/retired/CVE-2017-17052 @@ -0,0 +1,12 @@ +Description: fork: fix incorrect fput of ->exe_file causing use-after-free +References: +Notes: +Bugs: +upstream: released (4.13-rc7) [2b7e8665b4ff51c034c55df3cff76518d1a9ee3a] +4.9-upstream-stable: released (4.9.46) [b65b6ac52e0f8694aa3a4402d5f766b2bb9e94ef] +3.16-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8" +3.2-upstream-stable: N/A "Introduced in 4.7-rc1 with 7c051267931a9be9c6620cc17b362bc6ee6dedc8" +sid: released (4.12.12-1) +4.9-stretch-security: released (4.9.47-1) +3.16-jessie-security: N/A "Vulnerable code not present" +3.2-wheezy-security: N/A "Vulnerable code not present" diff --git a/retired/CVE-2017-17053 b/retired/CVE-2017-17053 new file mode 100644 index 000000000..99ed2dc57 --- /dev/null +++ b/retired/CVE-2017-17053 @@ -0,0 +1,12 @@ +Description: x86/mm: Fix use-after-free of ldt_struct +References: +Notes: +Bugs: +upstream: released (4.13-rc7) [ccd5b3235180eef3cfec337df1c8554ab151b5cc] +4.9-upstream-stable: released (4.9.46) [3559de45c99a68c0b8c4956fc35367837df9161c] +3.16-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af" +3.2-upstream-stable: N/A "Introduced in 4.6-rc1 with 39a0526fb3f7d93433d146304278477eb463f8af" +sid: released (4.12.12-1) +4.9-stretch-security: released (4.9.47-1) +3.16-jessie-security: N/A "Vulnerable code not present" +3.2-wheezy-security: N/A "Vulnerable code not present" -- cgit v1.2.3