[Intel-wired-lan] Further information on CVE-2019-0145/CVE-2019-0146/CVE-2019-0147/CVE-2019-0148/CVE-2019-0149 for Linux?

Jesse Brandeburg jesse.brandeburg at intel.com
Mon Aug 10 21:59:09 UTC 2020


On Mon, 10 Aug 2020 20:47:31 +0200
Salvatore Bonaccorso <carnil at debian.org> wrote:

> > We will get you the information, it was a mistake on our part to
> > not mention CVEs in the commit messages if/when we upstreamed the
> > patches. The only thing I can say for sure is that these have been
> > addressed in our Out-of-tree drivers, but I realize that is not
> > your question.
> 
> Thanks a lot as well for coming back to the question from Moritz, much
> appreiciated.
> 
> I noted here was a submission for i40e fixes to stable, as
> https://lore.kernel.org/stable/20200807205517.1740307-1-jesse.brandeburg@intel.com/
> . Is any of those referring to one of the above?
> 
> Thanks already for your time,

The patches to address the above issues are part of mainline kernel
5.2.0, and (upcoming) stable kernel 4.19.139, however I'm not sure if
there is anything else I need to do in order to have them backported to
4.9.y.

I hope that helps you! Thanks for bringing it to our attention.


More information about the Intel-wired-lan mailing list