From c77a05b32b2f63a5cefb610c25affbe3a5afe807 Mon Sep 17 00:00:00 2001
From: Ben Hutchings <benh@debian.org>
Date: Thu, 23 Feb 2017 21:55:28 +0000
Subject: Retire many issues now released (or N/A or ignored) in all branches

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5001 e094ebfe-e918-0410-adfb-c712417f3574
---
 retired/CVE-2016-6786 | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 retired/CVE-2016-6786

(limited to 'retired/CVE-2016-6786')

diff --git a/retired/CVE-2016-6786 b/retired/CVE-2016-6786
new file mode 100644
index 00000000..1fc23400
--- /dev/null
+++ b/retired/CVE-2016-6786
@@ -0,0 +1,12 @@
+Description: Possible privilege escalation due to lack of locking around changing event->ctx
+References:
+Notes:
+ bwh> The upstream fix was not complete; see CVE-2017-6001
+Bugs:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1403842
+upstream: released (4.0-rc1) [f63a8daa5812afef4f06c962351687e1ff9ccb2b]
+3.16-upstream-stable: released (3.16.40) [perf-fix-event-ctx-locking.patch]
+3.2-upstream-stable: released (3.2.85) [perf-fix-event-ctx-locking.patch]
+sid: released (4.0.2-1)
+3.16-jessie-security: released (3.16.39-1+deb8u1) [bugfix/all/perf-Fix-event-ctx-locking.patch]
+3.2-wheezy-security: released (3.2.84-2) [bugfix/all/perf-fix-event-ctx-locking.patch]
-- 
cgit v1.2.3