Description of problem: From the Debian advisory: CVE-2016-4578, CVE-2016-4580, CVE-2016-5243, CVE-2016-5244 - Kangjie Lu reported that the USB devio, llc, rtnetlink, ALSA timer, x25, tipc, and rds facilities leaked information from the kernel stack. Version-Release number of selected component (if applicable): 4.6
CC: (none) => marja11Assignee: bugsquad => tmb
These would be fixed in the Cauldron kernel by now, but I just checked mga5 and only CVE-2016-4580's patch is in there.
Version: Cauldron => 5Summary: kernel: multiple vulnerabilities (CVE-2016-4578, CVE-2016-4580, CVE-2016-5243, CVE-2016-5244) => kernel: multiple vulnerabilities (CVE-2016-4578, CVE-2016-5243, CVE-2016-5244)Source RPM: (none) => kernel
Mass-reassigning all bugs with "kernel" in the Source RPM field that are assigned to tmb, to the kernel packagers group, because tmb is currently MIA.
Assignee: tmb => kernel
Will all be fixed as soon as 4.4.22 update in bug 19387 goes out *** This bug has been marked as a duplicate of bug 19387 ***
Status: NEW => RESOLVEDCC: (none) => tmbResolution: (none) => DUPLICATE
I meant 19397 *** This bug has been marked as a duplicate of bug 19397 ***