blob: 3f7ab501260f080f3059727d275218ad8aa87b21 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
Description: sctp: deny peeloff operation on asocs with threads sleeping on it
References:
https://marc.info/?l=linux-netdev&m=148785309416337&w=2
Notes:
carnil> "technically" 3.2-wheezy-security and 3.16-jessie-security are not
carnil> affected since we did not apply 2dcab598484185dea7ec22219c76dcdd59e3cb90
carnil> but maybe we want to make an exception here and threat this CVE never-
carnil> theless as affected for all branches.
bwh> Introduced by attempted fix for CVE-2017-5986
Bugs:
upstream: released (4.11-rc1) [dfcb9f4f99f1e9a49e43398a7bfbf56927544af1]
4.9-upstream-stable: released (4.9.24) [35b9d61ea910c1ebd4652b32cc7d713f6689b4f4]
3.16-upstream-stable: released (3.16.42) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]
3.2-upstream-stable: released (3.2.87) [sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]
sid: released (4.9.13-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch]
3.16-jessie-security: released (3.16.39-1+deb8u2) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sl.patch]
3.2-wheezy-security: released (3.2.86-1) [bugfix/all/sctp-deny-peeloff-operation-on-asocs-with-threads-sleeping-on-it.patch]
|
