From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1756625AbcASQ5S (ORCPT <rfc822;w@1wt.eu>);
	Tue, 19 Jan 2016 11:57:18 -0500
Received: from mail-pa0-f42.google.com ([209.85.220.42]:33541 "EHLO
	mail-pa0-f42.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1754881AbcASQ5F (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Tue, 19 Jan 2016 11:57:05 -0500
Subject: Re: 2015 kernel CVEs
To: Dan Carpenter <dan.carpenter@oracle.com>, linux-kernel@vger.kernel.org
References: <20160119112812.GA10818@mwanda>
Cc: kernel-hardening@lists.openwall.com, Greg KH <gregkh@linuxfoundation.org>
From: Peter Hurley <peter@hurleysoftware.com>
Message-ID: <569E6ADC.2090306@hurleysoftware.com>
Date: Tue, 19 Jan 2016 08:57:00 -0800
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101
 Thunderbird/38.4.0
MIME-Version: 1.0
In-Reply-To: <20160119112812.GA10818@mwanda>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 01/19/2016 03:28 AM, Dan Carpenter wrote:
> I like to look back over old CVEs to see how we could do better.  Here
> is the list from 2015.  I got most of this information from the Ubuntu
> CVE tracker.  Thanks Ubuntu!.  If it doesn't have a hash that means it
> might not be fixed yet.

[...]

> CVE-2015-4170 cf872776fc84: tty: hang in tty

Makes no sense that this was assigned a CVE.
I fixed this _2 yrs before_ it was reported and the patch was CC'd stable.

Regards,
Peter Hurley