Changes made to bug 1386286

Back to bug 1386286

Who	When	What	Removed	Added
Adam Mariš	2016-10-18 14:42:09 UTC	CC		security-response-team
Adam Mariš	2016-10-18 14:43:58 UTC	Blocks		1386287
Adam Mariš	2016-10-18 14:44:12 UTC	Depends On		1386234
Vladis Dronov	2016-11-03 14:14:05 UTC	Whiteboard	impact=moderate,public=no,reported=20161018,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-476,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected	impact=moderate,public=20151217,reported=20161018,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-476,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected
Vladis Dronov	2016-11-03 14:17:37 UTC	CC		vdronov
Vladis Dronov	2016-11-03 14:17:37 UTC	Whiteboard	impact=moderate,public=20151217,reported=20161018,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-476,rhel-5/kernel=new,rhel-6/kernel=new,rhel-7/kernel=new,rhel-7/kernel-rt=new,mrg-2/realtime-kernel=new,rhelsa-7/arm-kernel=new,fedora-all/kernel=affected	impact=moderate,public=20151217,reported=20161018,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-476,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=notaffected
Vladis Dronov	2016-11-03 14:56:51 UTC	Doc Text		The lrw_crypt() function in 'crypto/lrw.c' in the Linux kernel before 4.5 allows local users to cause a system crash and a denial of service by the NULL pointer dereference via accept(2) system call for AF_ALG socket without calling setkey() first to set a cipher key.
Vladis Dronov	2016-11-03 14:56:51 UTC	Summary	EMBARGOED kernel: GPF in lrw_crypt caused by null pointer dereference	EMBARGOED kernel: crypto: GPF in lrw_crypt caused by null-deref
Vladis Dronov	2016-11-03 15:03:37 UTC	Comment 1 is private	1	0
Vladis Dronov	2016-11-03 15:07:16 UTC	Summary	EMBARGOED kernel: crypto: GPF in lrw_crypt caused by null-deref	kernel: crypto: GPF in lrw_crypt caused by null-deref
Vladis Dronov	2016-11-03 15:07:25 UTC	Group	security, qe_staff
Vladis Dronov	2016-11-03 15:23:57 UTC	Depends On		1391589
Vladis Dronov	2016-11-03 15:24:04 UTC	Depends On		1391590
Salvatore Bonaccorso	2016-11-03 15:42:28 UTC	CC		carnil
Vladis Dronov	2016-11-04 10:33:16 UTC	Alias		CVE-2015-8970
Vladis Dronov	2016-11-04 10:33:30 UTC	Summary	kernel: crypto: GPF in lrw_crypt caused by null-deref	CVE-2015-8970 kernel: crypto: GPF in lrw_crypt caused by null-deref
Vladis Dronov	2016-11-09 09:58:14 UTC	Depends On		1393299
Vladis Dronov	2016-11-09 09:58:22 UTC	Depends On		1393300
Slawomir Czarko	2016-11-29 09:37:14 UTC	CC		slawomir
Joel Smith	2017-07-31 22:32:13 UTC	CC	joelsmith
PnT Account Manager	2018-02-07 23:19:05 UTC	CC	agordeev
PnT Account Manager	2018-07-19 06:20:46 UTC	CC	mguzik
PnT Account Manager	2018-08-28 22:08:43 UTC	CC	lwang
Eric Sammons	2019-02-08 15:03:09 UTC	CC	esammons
Product Security DevOps Team	2019-06-08 03:00:22 UTC	Status	NEW	CLOSED
		Resolution	---	ERRATA
		Last Closed		2019-06-08 03:00:22 UTC
Product Security DevOps Team	2019-09-29 13:58:49 UTC	Whiteboard	impact=moderate,public=20151217,reported=20161018,source=researcher,cvss2=4.9/AV:L/AC:L/Au:N/C:N/I:N/A:C,cvss3=5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H,cwe=CWE-476,rhel-5/kernel=notaffected,rhel-6/kernel=notaffected,rhel-7/kernel=affected,rhel-7/kernel-rt=affected,mrg-2/realtime-kernel=affected,rhelsa-7/arm-kernel=notaffected,fedora-all/kernel=notaffected

Back to bug 1386286