github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-10-04 04:46:40 +00:00
Code Issues Projects Releases Wiki Activity
Files
36eaa44d7e1796af3b32062c563be23a32f39041
linuxkit/docs/security-events.md
Tycho Andersen d92560402d security events: add writeup of CVE-2016-10229 
Signed-off-by: Tycho Andersen <tycho@docker.com>
2017-04-13 10:15:33 -06:00

675 B
Raw Blame History

LinuxKit Security Events

The incomplete list below is an assessment of some CVEs, and LinuxKit's resilience (or not) to them.

Bugs mitigated:

  • CVE-2017-2636 (exploit post): This CVE requires CONFIG_N_HDLC={y|m}, which LinuxKit does not specify, and so is not vulnerable.
  • CVE-2016-10229 This CVE only applies to kernels <= 4.5, <= 4.4.21. By using recent kernels (specifically, kernels => 4.9, >= 4.4.21, LinuxKit mitigates this bug.

Bugs not mitigated: