[Secure-testing-commits] r50956 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Apr 23 11:04:28 UTC 2017 

Author: carnil
Date: 2017-04-23 11:04:28 +0000 (Sun, 23 Apr 2017)
New Revision: 50956

Modified:
   data/CVE/list
Log:
Mark VMAP_STACK related issues as not-affected for jessie and wheezy

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-23 10:54:11 UTC (rev 50955)
+++ data/CVE/list	2017-04-23 11:04:28 UTC (rev 50956)
@@ -10,15 +10,23 @@
 	NOTE: Fixed by: https://git.kernel.org/linus/7a7b5df84b6b4e5d599c7289526eed96541a0654
 CVE-2017-8070 (drivers/net/usb/catc.c in the Linux kernel 4.9.x before 4.9.11 ...)
 	- linux 4.9.13-1
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/2d6a0e9de03ee658a9adc3bfb2f0ca55dff1e478
 CVE-2017-8069 (drivers/net/usb/rtl8150.c in the Linux kernel 4.9.x before 4.9.11 ...)
 	- linux 4.9.13-1
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/7926aff5c57b577ab0f43364ff0c59d968f6a414
 CVE-2017-8068 (drivers/net/usb/pegasus.c in the Linux kernel 4.9.x before 4.9.11 ...)
 	- linux 4.9.10-1 (bug #852556)
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/5593523f968bc86d42a035c6df47d5e0979b5ace
 CVE-2017-8067 (drivers/char/virtio_console.c in the Linux kernel 4.9.x and 4.10.x ...)
 	- linux <unfixed>
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/c4baad50297d84bde1a7ad45e50c73adae4a2192
 CVE-2017-8066 (drivers/net/can/usb/gs_usb.c in the Linux kernel 4.9.x and 4.10.x ...)
 	- linux 4.9.16-1
@@ -29,6 +37,8 @@
 	- linux <not-affected> (Vulnerable code not present)
 CVE-2017-8064 (drivers/media/usb/dvb-usb-v2/dvb_usb_core.c in the Linux kernel 4.9.x ...)
 	- linux <unfixed>
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/005145378c9ad7575a01b6ce1ba118fb427f583a
 CVE-2017-8063 (drivers/media/usb/dvb-usb/cxusb.c in the Linux kernel 4.9.x and 4.10.x ...)
 	- linux <unfixed>
@@ -37,9 +47,13 @@
 	NOTE: Fixed by: https://git.kernel.org/linus/3f190e3aec212fc8c61e202c51400afa7384d4bc
 CVE-2017-8062 (drivers/media/usb/dvb-usb/dw2102.c in the Linux kernel 4.9.x and ...)
 	- linux 4.9.16-1
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/606142af57dad981b78707234cfbd15f9f7b7125
 CVE-2017-8061 (drivers/media/usb/dvb-usb/dvb-usb-firmware.c in the Linux kernel 4.9.x ...)
 	- linux <unfixed>
+	[jessie] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
+	[wheezy] - linux <not-affected> (Introduced in 4.9-rc1 in combination with VMAP_STACK)
 	NOTE: Fixed by: https://git.kernel.org/linus/67b0503db9c29b04eadfeede6bebbfe5ddad94ef
 CVE-2017-8060
 	RESERVED

More information about the Secure-testing-commits mailing list