From 8e374995e90a601e3cda3d047d44d730c90fe1cc Mon Sep 17 00:00:00 2001 From: Ben Hutchings Date: Sat, 30 Jun 2018 04:22:09 +0100 Subject: Fill in more information for hfs and ntfs issues For the ntfs issues that were no valid references so I can't tell how far back they might date. They were reported against 4.15 and there are no significant changes since then, so I assume sid is affected. --- active/CVE-2018-12928 | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) (limited to 'active/CVE-2018-12928') diff --git a/active/CVE-2018-12928 b/active/CVE-2018-12928 index 7b677725..415299c9 100644 --- a/active/CVE-2018-12928 +++ b/active/CVE-2018-12928 @@ -4,10 +4,14 @@ References: https://marc.info/?l=linux-fsdevel&m=152407263325766&w=2 Notes: jmm> Matthew Wilcox recommends disabling it, might be worth considering for buster + bwh> I'm very hesistant to remove support for filesystems + bwh> without a FUSE-based alternative (like we have for ntfs). I do + bwh> support restricting the set tried by "mount -t auto" and any + bwh> other tools that do similar probing. Bugs: upstream: needed -4.9-upstream-stable: -3.16-upstream-stable: -sid: -4.9-stretch-security: -3.16-jessie-security: +4.9-upstream-stable: needed +3.16-upstream-stable: needed +sid: needed +4.9-stretch-security: needed +3.16-jessie-security: needed -- cgit v1.2.3