8 Sep
2017
8 Sep
'17
9:10 p.m.
On Fri, Sep 08, 2017 at 06:57:57PM +0200, Takashi Iwai wrote:
On Fri, 08 Sep 2017 18:06:25 +0200, grygorii tertychnyi wrote:
Hi Greg,
Could you please apply it for 4.4-stable. This fixes https://nvd.nist.gov/vuln/detail/CVE-2017-9985
This vulnerability is just non-issue. You can't get it working practically; it requires a modified hardware of the decade old ISA sound card, and yet the system has to load / set up the module beforehand. We should withdraw it from CVE, IMO.
Hah, good luck trying to get a CVE withdrawn, people seem to love the foolish things...