[pve-devel] [PATCH v2 kernel 0/3] apparmor fixes

Wolfgang Bumiller w.bumiller at proxmox.com
Wed Jul 13 09:33:06 CEST 2016


> On July 12, 2016 at 4:54 PM Fabian Grünbichler <f.gruenbichler at proxmox.com> wrote:
> 
> 
> On Tue, Jul 12, 2016 at 10:31:12AM +0200, Wolfgang Bumiller wrote:
> > changes: added another required setprocattr patch
> > 
> > Wolfgang Bumiller (3):
> >   Fix CVE-2016-6187: AppArmor oops in apparmor_setprocattr
> >   modinfo is not in a user's PATH
> >   import another apparmor followup patch
> 
> since the 4.4 kernel is not affected by that CVE (the introducing
> commit[1] is from Dec 2015, and was never merged in to 4.4-stable),
> I would prefer to skip patches #1 and #3 and only apply #2..
> 
> unless there are objections?

sounds good



More information about the pve-devel mailing list