From 167c0dab924d8723b1faf9bee55244c524f93f70 Mon Sep 17 00:00:00 2001 From: Ben Hutchings Date: Fri, 4 Mar 2016 13:56:51 +0000 Subject: Mark two more issues pending for 2.6.32-upstream and retire them git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4225 e094ebfe-e918-0410-adfb-c712417f3574 --- retired/CVE-2015-8812 | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 retired/CVE-2015-8812 (limited to 'retired/CVE-2015-8812') diff --git a/retired/CVE-2015-8812 b/retired/CVE-2015-8812 new file mode 100644 index 00000000..57264662 --- /dev/null +++ b/retired/CVE-2015-8812 @@ -0,0 +1,14 @@ +Description: Use-after-free in iw_cxgb3 +References: http://www.openwall.com/lists/oss-security/2016/02/11/1 +Notes: + Introduced in 04b5d028f50ff05a8f9ae049ee71f8fdfcf1f5de (v2.6.30-rc2). + Partially fixed in 2.6.35 with 73a203d2014f50d874b9e40083ad481ca70408e8. +Bugs: +upstream: released (v4.5-rc1) [67f1aee6f45059fd6b0f5b0ecb2c97ad0451f6b3] +3.16-upstream-stable: released (3.16.7-ckt25) +3.2-upstream-stable: released (3.2.78) [iw_cxgb3-fix-incorrectly-returning-error-on-success.patch] +2.6.32-upstream-stable: pending (2.6.32.71) +sid: released (4.4.2-1) [bugfix/all/iw_cxgb3-Fix-incorrectly-returning-error-on-success.patch] +3.16-jessie-security: released (3.16.7-ckt20-1+deb8u4) [bugfix/all/iw_cxgb3-Fix-incorrectly-returning-error-on-success.patch] +3.2-wheezy-security: released (3.2.73-2+deb7u3) [bugfix/all/iw_cxgb3-Fix-incorrectly-returning-error-on-success.patch] +2.6.32-squeeze-security: released (2.6.32-48squeeze20) [bugfix/all/rdma-cxgb3-don-t-free-skbs-on-net_xmit_-indications-.patch, bugfix/all/iw_cxgb3-Fix-incorrectly-returning-error-on-success.patch] -- cgit v1.2.3