[Secure-testing-commits] r45290 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 13 20:28:41 UTC 2016
Author: carnil
Date: 2016-10-13 20:28:41 +0000 (Thu, 13 Oct 2016)
New Revision: 45290
Modified:
data/CVE/list
Log:
Add temporary entry for one linux issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-13 20:28:32 UTC (rev 45289)
+++ data/CVE/list 2016-10-13 20:28:41 UTC (rev 45290)
@@ -1,3 +1,10 @@
+CVE-2016-XXXX [tunnels: Don't apply GRO to multiple layers of encapsulation]
+ - linux 4.6.1-1
+ [jessie] - linux 3.6.36-1
+ [wheezy] - linux <not-affected> (Vulnerable code introduced later)
+ NOTE: Fixed by: https://git.kernel.org/linus/fac8e0f579695a3ecbc4d3cac369139d7f819971
+ NOTE: Introduced by: htttps://git.kernel.org/linus/bf5a755f5e9186406bbf50f4087100af5bd68e40
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/10/13/11
CVE-2016-8660 [local DoS due to a page lock order bug in the XFS seek hole/data implementation]
- linux <unfixed>
CVE-2016-8659 [privilege escalation via ptrace]
More information about the Secure-testing-commits
mailing list