Mark two issues N/A for 3.16

author: Ben Hutchings <ben@decadent.org.uk> 2020-01-17 16:48:17 +0000
committer: Ben Hutchings <ben@decadent.org.uk> 2020-01-17 16:48:17 +0000
commit: 1edd166dbd890621a45d73e1a89579211a10afb8 (patch)
tree: c4555e00ccd73c806dc6b9726a72140eb0f159e8 /active/CVE-2019-18282
parent: 26646b7cee5e1b52e5e87256736f3c8ed51a3ea5 (diff)
1 files changed, 5 insertions, 2 deletions
diff --git a/active/CVE-2019-18282 b/active/CVE-2019-18282
index 61d478227..aaea46cf6 100644
--- a/active/CVE-2019-18282
+++ b/active/CVE-2019-18282
@@ -1,12 +1,15 @@
 Description: net/flow_dissector: switch to siphash
 References:
 Notes:
+ bwh> The issue is not in flow dissector itself, but in the use of flow
+ bwh> dissector's hashing to generate flow labels.  This was introduced
+ bwh> as an option in 3.17 and enabled by default in 4.3.
 Bugs:
 upstream: released (5.4-rc6) [55667441c84fa5e0911a0aac44fb059c15ba6da2]
 4.19-upstream-stable: released (4.19.83) [558d2bdad5f6a0dd65ed7ed4f74419e826a97759]
 4.9-upstream-stable: released (4.9.200) [1f94465d13ace2d4610c4eb2b362454ce2a9d87c]
-3.16-upstream-stable:
+3.16-upstream-stable: N/A "Vulnerability introduced later"
 sid: released (5.3.15-1)
 4.19-buster-security: needed
 4.9-stretch-security: needed
-3.16-jessie-security:
+3.16-jessie-security: N/A "Vulnerability introduced later"
author	Ben Hutchings <ben@decadent.org.uk>	2020-01-17 16:48:17 +0000
committer	Ben Hutchings <ben@decadent.org.uk>	2020-01-17 16:48:17 +0000
commit	1edd166dbd890621a45d73e1a89579211a10afb8 (patch)
tree	c4555e00ccd73c806dc6b9726a72140eb0f159e8 /active/CVE-2019-18282
parent	26646b7cee5e1b52e5e87256736f3c8ed51a3ea5 (diff)