[Secure-testing-commits] r56629 - data/CVE

Thu Oct 12 05:41:12 UTC 2017

Author: carnil
Date: 2017-10-12 05:41:12 +0000 (Thu, 12 Oct 2017)
New Revision: 56629

Modified:
   data/CVE/list
Log:
Add CVE-2017-12192/linux

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-10-12 05:15:30 UTC (rev 56628)
+++ data/CVE/list	2017-10-12 05:41:12 UTC (rev 56629)
@@ -8645,8 +8645,11 @@
 	RESERVED
 CVE-2017-12193
 	RESERVED
-CVE-2017-12192
+CVE-2017-12192 [NULL pointer dereference due to KEYCTL_READ on negative key]
 	RESERVED
+	- linux <unfixed>
+	NOTE: Fixed by: https://git.kernel.org/linus/37863c43b2c6464f252862bf2e9768264e961678 (4.14-rc3)
+	NOTE: Introduced by: https://git.kernel.org/linus/61ea0c0ba904a55f55317d850c1072ff7835ac92 (3.13-rc1)
 CVE-2017-12191
 	RESERVED
 CVE-2017-12190 [memory leak when merging buffers in SCSI IO vectors]


