security events: add writeup of CVE-2016-10229

Signed-off-by: Tycho Andersen <tycho@docker.com>
2025-07-19 17:26:28 +00:00 · 2017-04-13 08:58:33 -06:00 · 2017-04-13 08:58:33 -06:00 · d92560402d
commit d92560402d
parent 28f3f2c946
1 changed files with 3 additions and 0 deletions
--- a/docs/security-events.md
+++ b/docs/security-events.md
@ -9,5 +9,8 @@ The incomplete list below is an assessment of some CVEs, and LinuxKit's resilien
  ([exploit post](https://a13xp0p0v.github.io/2017/03/24/CVE-2017-2636.html)):
  This CVE requires `CONFIG_N_HDLC={y|m}`, which LinuxKit does not specify, and so
  is not vulnerable.
+* [CVE-2016-10229](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10229)
+  This CVE only applies to kernels `<= 4.5, <= 4.4.21`. By using recent kernels
+  (specifically, kernels `=> 4.9, >= 4.4.21`, LinuxKit mitigates this bug.

 ### Bugs not mitigated: