ACK: [PATCH 0/3][CVE-2015-4004] Disable staging ozwpan
Stefan Bader
stefan.bader at canonical.com
Thu Apr 28 13:35:01 UTC 2016
On 28.04.2016 15:02, Luis Henriques wrote:
> The ozwpan driver has been fixed in mainliner by using the big hammer: it
> has been completely removed the git tree. I'm proposing to simply disable
> it from the Ubuntu kernels to fix this CVE. Only Trusty to Wily kernels
> are impacted.
>
> [ Just a reminder that this will require a 'modules.ignore' in order to
> build the kernels. ]
>
> Luis Henriques (1):
> UBUNTU: [Config] CONFIG_USB_WPAN_HCD=n
>
> debian.master/config/config.common.ubuntu | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
>
Though removing functionality is usually a nogo, but for a staging driver and
security hazard it is probably ok. And hopefully "USB over Wifi" is not the most
commonly used case...
-Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20160428/577bfff2/attachment.sig>
More information about the kernel-team
mailing list