Re: About TCP issue in kernel 3.6 - 4.6

To: debian-security@lists.debian.org
Cc: security@debian.org
Subject: Re: About TCP issue in kernel 3.6 - 4.6
From: Justin Steven <justin@justinsteven.com>
Date: Tue, 16 Aug 2016 00:12:06 +1000
Message-id: <[🔎] 20160815141206.54tyo4ypqucslzjs@diablo>
In-reply-to: <[🔎] 20160815134243.GA16440@lorien.valinor.li>
References: <[🔎] CAJXaMDCDuV1WKsL4Apeds4CathxWwJ0Wp89o1DcLFFzisgH-4A@mail.gmail.com> <[🔎] 20160815134243.GA16440@lorien.valinor.li>

On Mon, Aug 15, 2016 at 03:42:43PM +0200, Salvatore Bonaccorso wrote:
> I can confirm that an update is beeing worked on, cf [1].
> 
>  [1] https://anonscm.debian.org/cgit/kernel/linux.git/commit/?h=jessie-security&id=1bd5c3370523e5846019361b33a97c754db76f8d

Is this not an incomplete fix?

I see that <https://security-tracker.debian.org/tracker/CVE-2016-5696> claims
that 75ff39c (committed July 10) fixes the issue, but the researcher said at
<https://www.mail-archive.com/netdev@vger.kernel.org/msg118843.html> (July 10)
that it may be an incomplete fix.

<http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=083ae30>
(committed July 15) may be a more complete fix. Someone who understands the
kernel and TCP better than I should cast their eyes over it and consider having
it be backported before Debian releases a new kernel and publishes a DSA.

-- 
Justin

Reply to:

References:
- About TCP issue in kernel 3.6 - 4.6
  - From: francisco dominguez <francisco.dominguez.lerma@gmail.com>
- Re: About TCP issue in kernel 3.6 - 4.6
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Re: About TCP issue in kernel 3.6 - 4.6
Next by Date: Re: About TCP issue in kernel 3.6 - 4.6
Previous by thread: Re: About TCP issue in kernel 3.6 - 4.6
Next by thread: Re: About TCP issue in kernel 3.6 - 4.6
Index(es):
- Date
- Thread