|
|
|
|
|
|
by jfindley
3604 days ago
|
|
|
So far it looks pretty real. CVE exists[0], been picked up by RedHat[1].
It's possible that they're wrong - I haven't personally verified it - but at this point it'd be very surprising. Apart from anything else, these are serious researchers with real track records. I'm proceeding on the assumption that it's real, and working towards ensuring everything (with a kernel >= 3.6 and < 4.7) is patched. I'd humbly suggest it might be a good idea for others to do so also. 0: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5696
1: https://access.redhat.com/security/cve/cve-2016-5696 |
|
|