Re: [vserver] 3.18.43-vs2.3.7.4

From: Romain Rivière <romain+vserver_at_forty-two.fr>
Date: Fri 21 Oct 2016 - 14:24:23 BST
Message-ID: <efe91e16-189e-a37f-5142-f413fec964d6@forty-two.fr>

On 21/10/16 14:57, Herbert Poetzl wrote:
> Did you check that the CVE is relevant for 3.18.x?
>
> If so, it should be easy to fix with a small patch.
>
> Not sure that we care about the ASN.1 parser though.

>From what I can gather, it is, having been introduced in 3.10-rc1. The
faulty code is still in 3.18 and the fix found here
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23c8a812dc3c621009e4f0e5342aa4e2ede1ceaa
applies nicely to 3.18.43.
Dunno why it hasn't been backported though.

HTH

-- 
Romain
Received on Fri Oct 21 14:21:53 2016
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Fri 21 Oct 2016 - 14:21:53 BST by hypermail 2.1.8