blob: ef8972ab84fdeb11339b1bb11769aec755251acf (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
Description: Potential info-leak in ethtool_get_wol()
References:
https://source.codeaurora.org/quic/la/kernel/msm-3.10/commit/?id=63c317dbee97983004dffdd9f742a20d17150071
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9900
http://source.android.com/security/bulletin/2016-08-01.html
https://lkml.org/lkml/2016/8/23/314
Notes:
jmm> Fixed in Android 3.10 kernel, but this is still unfixed in current mainline
bwh> This is compiler-dependent, and doesn't appear to have been demonstrated
bwh> as an actual leak (yet).
Bugs:
upstream: ignored "minor and as-yet theoretical issue"
4.9-upstream-stable: ignored "upstream first"
3.16-upstream-stable: ignored "upstream first"
3.2-upstream-stable: ignored "upstream first"
sid: ignored "minor and as-yet theoretical issue"
3.16-jessie-security: ignored "minor and as-yet theoretical issue"
3.2-wheezy-security: ignored "minor and as-yet theoretical issue
|
