Bug#875881: linux: CVE-2017-1000251

To: Ben Hutchings <ben@decadent.org.uk>
Cc: 875881@bugs.debian.org, Julien Aubin <julien.aubin@gmail.com>
Subject: Bug#875881: linux: CVE-2017-1000251
From: Christoph Anton Mitterer <calestyo@scientia.net>
Date: Fri, 15 Sep 2017 21:03:45 +0200
Message-id: <[🔎] 1505502225.4906.1.camel@scientia.net>
Reply-to: Christoph Anton Mitterer <calestyo@scientia.net>, 875881@bugs.debian.org
In-reply-to: <[🔎] 1505499487.2825.51.camel@decadent.org.uk>
References: <[🔎] 150548587317.6313.17012204153956018761.reportbug@heisenberg.scientia.net> <[🔎] 1505499487.2825.51.camel@decadent.org.uk> <[🔎] 150548587317.6313.17012204153956018761.reportbug@heisenberg.scientia.net>

On Fri, 2017-09-15 at 19:18 +0100, Ben Hutchings wrote:
> Probably less critical than you think, since we enable
> CONFIG_CC_STACKPROTECTOR.

Well... yes, but it wouldn't be the first time in history, that such
defence could then also be circumvented in the next evolution of an
exploit :-)

But of course you can lower the bug severity if you think this is
appropriate.

Cheers&thx.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply to:

Follow-Ups:
- Bug#875881: linux: CVE-2017-1000251
  - From: Julien Aubin <julien.aubin@gmail.com>

References:
- Bug#875881: linux: CVE-2017-1000251
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Bug#875881: linux: CVE-2017-1000251
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Processed: Re: Bug#875781: initramfs-tools-core: /etc/initramfs-tools/initramfs.conf is not modified on upgrade/install/reconfigure
Next by Date: Bug#875924: "Please convert the driver to use hwmon_device_register_with_info()." messages
Previous by thread: Bug#875881: linux: CVE-2017-1000251
Next by thread: Bug#875881: linux: CVE-2017-1000251
Index(es):
- Date
- Thread