From bc76e5f140f1b04071ba7f4ccc1a971b4cd4afa4 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 14 Jan 2017 12:32:38 +0000
Subject: Retire CVEs which are released everywhere

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4836 e094ebfe-e918-0410-adfb-c712417f3574
---
 retired/CVE-2015-8955 | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 retired/CVE-2015-8955

(limited to 'retired/CVE-2015-8955')

diff --git a/retired/CVE-2015-8955 b/retired/CVE-2015-8955
new file mode 100644
index 00000000..60b16dc7
--- /dev/null
+++ b/retired/CVE-2015-8955
@@ -0,0 +1,11 @@
+Description: Incomplete validation of hardware perf_events on arm64
+References:
+Notes:
+ bwh> Minor issue for Debian since we restrict access to perf_event by default
+Bugs:
+upstream: released (4.1-rc1) [8fff105e13041e49b82f92eef034f363a6b1c071]
+3.16-upstream-stable: released (3.16.39) [arm64-perf-reject-groups-spanning-multiple-hw-pmus.patch]
+3.2-upstream-stable: N/A "Vulnerable architecture not present"
+sid: released (4.1.3-1)
+3.16-jessie-security: released (3.16.39-1)
+3.2-wheezy-security: N/A "Vulnerable architecture not present"
-- 
cgit v1.2.3