On Thu, 2017-03-23 at 21:27 +0000, Ben Hutchings wrote: > On Thu, 2017-03-23 at 17:06 +0000, James Cowgill wrote: [...] > > I believe any of the following will fix this (but have not all been tested): > > - Reduce the stack usage in xsltproc (the upstream bug) > > - Upgrade the relevant buildds to Linux >= 4.1 > > - Apply d1fd836dcf00 to jessie's kernel > > That's part of a series of 10 commits covering multiple architectures. > I already picked one of them as a dependency for fixing CVE-2016-3672, > which leaves 9 to do. I think it is worth doing this in stable to > support chroots and partial upgrades, but I would like to hear the > release team ack/nak this in principle before I start preparing the > change for Debian stable. > > Kees Cook quotes the list of commits here: > http://lists.openwall.net/linux-kernel/2015/07/27/964 > (I can't find the original message). [...] The kernel bug report for this is #797530. Ben. -- Ben Hutchings Everything should be made as simple as possible, but not simpler. - Albert Einstein
Attachment:
signature.asc
Description: This is a digitally signed message part