Message ID | 20180201102927.15920-1-kleber.souza@canonical.com |
---|---|
Headers | show |
Series | Fix for CVE-2017-17448 | expand |
On Thu, Feb 01, 2018 at 11:29:25AM +0100, Kleber Sacilotto de Souza wrote: > https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17448.html > > Simple backport for Trusty only for context adjustment, and clean cherry > pick for Artful and Bionic. The fix for Xenial is already on the queue > with the upstream stable update to 4.4.114. Acked-by: Seth Forshee <seth.forshee@canonical.com> For bionic, this commit was already in the 4.14.16 stable update that I applied earlier today.
Acked-by: Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
On 2018-02-01 11:29:25 , Kleber Sacilotto de Souza wrote: > https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17448.html > > Simple backport for Trusty only for context adjustment, and clean cherry > pick for Artful and Bionic. The fix for Xenial is already on the queue > with the upstream stable update to 4.4.114. > > Kevin Cernekee (1): > netfilter: nfnetlink_cthelper: Add missing permission checks > > net/netfilter/nfnetlink_cthelper.c | 10 ++++++++++ > 1 file changed, 10 insertions(+) > Acked-by: Khalid Elmously <khalid.elmously@canonical.com>
Applied to artful and trusty On 2018-02-01 11:29:25 , Kleber Sacilotto de Souza wrote: > https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17448.html > > Simple backport for Trusty only for context adjustment, and clean cherry > pick for Artful and Bionic. The fix for Xenial is already on the queue > with the upstream stable update to 4.4.114. > > Kevin Cernekee (1): > netfilter: nfnetlink_cthelper: Add missing permission checks > > net/netfilter/nfnetlink_cthelper.c | 10 ++++++++++ > 1 file changed, 10 insertions(+) > > -- > 2.14.1 > > > -- > kernel-team mailing list > kernel-team@lists.ubuntu.com > https://lists.ubuntu.com/mailman/listinfo/kernel-team
On 02/01/18 11:29, Kleber Sacilotto de Souza wrote: > https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17448.html > > Simple backport for Trusty only for context adjustment, and clean cherry > pick for Artful and Bionic. The fix for Xenial is already on the queue > with the upstream stable update to 4.4.114. > > Kevin Cernekee (1): > netfilter: nfnetlink_cthelper: Add missing permission checks > > net/netfilter/nfnetlink_cthelper.c | 10 ++++++++++ > 1 file changed, 10 insertions(+) > Applied to trusty/master-next branch. Thanks, Kleber
On 02/01/18 11:29, Kleber Sacilotto de Souza wrote: > https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-17448.html > > Simple backport for Trusty only for context adjustment, and clean cherry > pick for Artful and Bionic. The fix for Xenial is already on the queue > with the upstream stable update to 4.4.114. > > Kevin Cernekee (1): > netfilter: nfnetlink_cthelper: Add missing permission checks > > net/netfilter/nfnetlink_cthelper.c | 10 ++++++++++ > 1 file changed, 10 insertions(+) > Applied this patch as well to xenial/master-next-backlog since the upstream update to 4.4.114 hasn't been prepared yet. Thanks, Kleber