oss-sec mailing list archives

Re: CVE-2016-5696: linux kernel - challange ack information leak.

From: Greg KH <greg () kroah com>
Date: Mon, 15 Aug 2016 09:53:01 +0200

On Mon, Aug 15, 2016 at 06:23:04AM +0000, Sona Sarmadi wrote:

This vulnerability is currently only fixed in mainline kernels (4.7 &
4.8). Does anyone know if there is any work ongoing to backport this
fix to the  older versions?


I just added the fix for this issue to the stable kernel queues and it will
show up in the next stable releases, in about 2 days after it passes all of
the needed review.

Hope this helps,

greg k-h


Great, thanks, this helps :)


You can _always_ just apply the patch to your local tree, there's never
a need to wait for me to get a kernel out.  That's the advantage of
having the source for your systems :)

thanks,

greg k-h

Current thread:

CVE-2016-5389: linux kernel - challange ack information leak. Wade Mealing (Jul 11)
- Re: CVE-2016-5389: linux kernel - challange ack information leak. Wade Mealing (Jul 12)
- Re: CVE-2016-5696: linux kernel - challange ack information leak. Sona Sarmadi (Aug 14)
  - Re: CVE-2016-5696: linux kernel - challange ack information leak. Greg KH (Aug 14)
    - RE: CVE-2016-5696: linux kernel - challange ack information leak. Sona Sarmadi (Aug 14)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Greg KH (Aug 15)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Sona Sarmadi (Aug 16)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Greg KH (Aug 16)
    - RE: CVE-2016-5696: linux kernel - challange ack information leak. Sona Sarmadi (Aug 17)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Greg KH (Aug 17)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Gsunde Orangen (Aug 17)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Greg KH (Aug 17)
    - Re: CVE-2016-5696: linux kernel - challange ack information leak. Salvatore Bonaccorso (Aug 17)