From 05e144f5efb3f82e93da6f2fa0283cf10f5662c5 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 6 Jun 2017 09:43:25 +0000
Subject: Retire several CVEs

git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5347 e094ebfe-e918-0410-adfb-c712417f3574
---
 retired/CVE-2017-7472 | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 retired/CVE-2017-7472

(limited to 'retired/CVE-2017-7472')

diff --git a/retired/CVE-2017-7472 b/retired/CVE-2017-7472
new file mode 100644
index 00000000..d19ba7e1
--- /dev/null
+++ b/retired/CVE-2017-7472
@@ -0,0 +1,16 @@
+Description: keyctl_set_reqkey_keyring() leaks thread keyrings
+References:
+ https://lkml.org/lkml/2017/4/1/235
+ https://lkml.org/lkml/2017/4/3/724
+Notes:
+ carnil> 'Fixes: d84f4f992cbd ("CRED: Inaugurate COW credentials")'
+ carnil> which is first in 2.6.29-rc1
+Bugs:
+ https://bugzilla.redhat.com/show_bug.cgi?id=1442086
+upstream: released (4.11-rc8) [c9f838d104fed6f2f61d68164712e3204bf5271b]
+4.9-upstream-stable: released (4.9.25) [174a74dbca2ddc7269c265598399c000e5b9b870]
+3.16-upstream-stable: released (3.16.44) [f7ce1014bc5e4bb42d6b9f5afb308f59534067ea]
+3.2-upstream-stable: released (3.2.89) [0ebd7208190d2f7b16fee3cea05665e212cebaab]
+sid: released (4.9.25-1)
+3.16-jessie-security: released (3.16.43-1) [bugfix/all/keys-fix-keyctl_set_reqkey_keyring-to-not-leak-threa.patch]
+3.2-wheezy-security: released (3.2.88-1) [bugfix/all/keys-fix-keyctl_set_reqkey_keyring-to-not-leak-threa.patch]
-- 
cgit v1.2.3