Control: tag -1 moreinfo On Thu, 22 Jun 2017 19:02:26 +0200 Ximin Luo <infini...@debian.org> wrote: > Package: linux-image-3.16.0-4-powerpc64le > Version: 3.16.43-2+deb8u1 > Severity: critical > Justification: breaks unrelated software > > Dear Maintainer, > > I have been getting segfaults trying to build cargo on ppc64el > > https://github.com/rust-lang/cargo/issues/4197 > > The signs point to the recent stack guard fix as being the culprit, I can > confirm that the test program given here: > > http://www.openwall.com/lists/oss-security/2017/06/22/6 > > indicates the presence of the bug on plummer.debian.org. I'm not very familiar > with kernel development so I don't know where the proper fix is, but > subsequent > discussion on that thread suggests that mainline has the "correct fix" whereas > some distros applied an incorrect one.
Can you please test with this candidate fix? https://people.debian.org/~benh/packages/CVE-2017-1000364/ Ben. -- Ben Hutchings Sturgeon's Law: Ninety percent of everything is crap.
signature.asc
Description: This is a digitally signed message part
