diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2017-09-21 18:32:34 +0000 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2017-09-21 18:32:34 +0000 |
| commit | a18ac2270af7bb365a08c844255932f7f45b4a65 (patch) | |
| tree | 3832d13b52df4e068693a73d2096ab769a03f153 /dsa-texts/4.9.30-2+deb9u5 | |
| parent | 69ac71ea50aadfa00344ad3031a269ba2ba6a0e3 (diff) | |
Sync final text version used for DSA-3981-1
git-svn-id: svn+ssh://svn.debian.org/svn/kernel-sec@5592 e094ebfe-e918-0410-adfb-c712417f3574
Diffstat (limited to 'dsa-texts/4.9.30-2+deb9u5')
| -rw-r--r-- | dsa-texts/4.9.30-2+deb9u5 | 28 |
1 files changed, 15 insertions, 13 deletions
diff --git a/dsa-texts/4.9.30-2+deb9u5 b/dsa-texts/4.9.30-2+deb9u5 index 277f9844b..546e0831c 100644 --- a/dsa-texts/4.9.30-2+deb9u5 +++ b/dsa-texts/4.9.30-2+deb9u5 @@ -2,10 +2,10 @@ Package : linux CVE ID : CVE-2017-7518 CVE-2017-7558 CVE-2017-10661 CVE-2017-11600 CVE-2017-12134 CVE-2017-12146 CVE-2017-12153 CVE-2017-12154 CVE-2017-14106 CVE-2017-14140 CVE-2017-14156 CVE-2017-14340 - CVE-2017-14489 CVE-2017-14497 CVE-2017-1000111 - CVE-2017-1000112 CVE-2017-1000251 CVE-2017-1000252 - CVE-2017-1000370 CVE-2017-1000371 CVE-2017-1000380 -Debian Bug : #866511 #875881 + CVE-2017-14489 CVE-2017-14497 CVE-2017-1000111 CVE-2017-1000112 + CVE-2017-1000251 CVE-2017-1000252 CVE-2017-1000370 CVE-2017-1000371 + CVE-2017-1000380 +Debian Bug : 866511 875881 Several vulnerabilities have been discovered in the Linux kernel that may lead to privilege escalation, denial of service or information @@ -30,7 +30,7 @@ CVE-2017-10661 (jessie only) not properly handle certain concurrent operations on a single file descriptor. This allows a local attacker to cause a denial of service or potentially execute arbitrary code. - + CVE-2017-11600 Bo Zhang reported that the xfrm subsystem does not properly @@ -126,9 +126,8 @@ CVE-2017-1000111 CVE-2017-1000112 Andrey Konovalov of Google reported a race condition flaw in the - UDP Fragmentation Offload (UFO) code. A local user with the - CAP_NET_ADMIN capability can use this flaw for denial of service - or possibly to execute arbitrary code. + UDP Fragmentation Offload (UFO) code. A local user can use this + flaw for denial of service or possibly to execute arbitrary code. CVE-2017-1000251 / #875881 @@ -166,8 +165,11 @@ CVE-2017-1000380 Debian disables unprivileged user namespaces by default, but if they are enabled (via the kernel.unprivileged_userns_clone sysctl) then -CVE-2017-11600, CVE-2017-14497, CVE-2017-1000111, and CVE-2017-1000112 -can be exploited by any local user. - -jessie: 3.16.43-2+deb8u5 -stretch: 4.9.30-2+deb9u5 +CVE-2017-11600, CVE-2017-14497 and CVE-2017-1000111 can be exploited +by any local user. + +For the oldstable distribution (jessie), these problems have been fixed +in version 3.16.43-2+deb8u5. + +For the stable distribution (stretch), these problems have been fixed in +version 4.9.30-2+deb9u5. |