From 8401a6ccb4231c063895387616a45318b7405892 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 24 Aug 2016 08:26:40 +0000
Subject: Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@4591 e094ebfe-e918-0410-adfb-c712417f3574
---
 retired/CVE-2016-4569 | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 retired/CVE-2016-4569

(limited to 'retired/CVE-2016-4569')

diff --git a/retired/CVE-2016-4569 b/retired/CVE-2016-4569
new file mode 100644
index 00000000..28be0537
--- /dev/null
+++ b/retired/CVE-2016-4569
@@ -0,0 +1,13 @@
+Description: information leak in ALSA timers
+References:
+ http://comments.gmane.org/gmane.linux.kernel/2214250
+Notes:
+ bwh> This only affects 64-bit architectures as no padding is needed in
+ bwh> struct snd_timer_tread on 32-bit architectures.
+Bugs:
+upstream: released (4.7-rc1) [cec8f96e49d9be372fdb0c3836dcf31ec71e457e]
+3.16-upstream-stable: released (3.16.37) [alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
+3.2-upstream-stable: released (3.2.82) [alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
+sid: released (4.4.5-1) [bugfix/all/alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
+3.16-jessie-security: released (3.16.7-ckt25-2+deb8u1) [bugfix/all/alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
+3.2-wheezy-security: released (3.2.81-1) [bugfix/all/alsa-timer-fix-leak-in-sndrv_timer_ioctl_params.patch]
-- 
cgit v1.2.3