Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1752754AbcDUMjZ (ORCPT <rfc822;w@1wt.eu>);
	Thu, 21 Apr 2016 08:39:25 -0400
Received: from out2-smtp.messagingengine.com ([66.111.4.26]:33200 "EHLO
	out2-smtp.messagingengine.com" rhost-flags-OK-OK-OK-OK)
	by vger.kernel.org with ESMTP id S1752066AbcDUMjX (ORCPT
	<rfc822;linux-kernel@vger.kernel.org>);
	Thu, 21 Apr 2016 08:39:23 -0400
X-Sasl-enc: 9Ci4BM6yhDlWua9zfMc5g20BFVGQPRPsdmYdtPKBTQYL 1461242361
Date: Thu, 21 Apr 2016 21:39:18 +0900
From: Greg KH <greg@kroah.com>
To: Jiri Slaby <jslaby@suse.cz>
Cc: Sasha Levin <sasha.levin@oracle.com>, LKML <linux-kernel@vger.kernel.org>,
        stable <stable@vger.kernel.org>, lwn@lwn.net
Subject: Re: stable-security kernel updates
Message-ID: <20160421123918.GA2294@kroah.com>
References: <5717DD8A.4000707@oracle.com>
 <571876AB.2060106@suse.cz>
 <5718B57D.4000504@oracle.com>
 <5718C0B8.8010609@suse.cz>
 <5718C215.7060703@suse.cz>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <5718C215.7060703@suse.cz>
User-Agent: Mutt/1.6.0 (2016-04-01)
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 554
Lines: 15

On Thu, Apr 21, 2016 at 02:05:41PM +0200, Jiri Slaby wrote:
> On 04/21/2016, 01:59 PM, Jiri Slaby wrote:
> >> (CVE-2016-2085) 613317b EVM: Use crypto_memneq() for digest comparisons
> > 
> > Does not exist in the CVE database/is not confirmed yet AFAICS.
> 
> And now I am looking at the patch and I remember why I threw it away.
> crypto_memneq is not in 3.12 yet and I was not keen enough to backport  it.

Which brings up the question, Sasha, why did you think these CVEs were
relevant for 3.12?  What were you basing that list on?

thanks,

greg k-h