On Mon, Jan 22, 2018 at 11:19:36AM +0800, wang_qize@xxxxxxxxxxxxxxxx wrote: > > I has recvied a cve-id from mitre.org for this security bug . > should this cve-id( CVE-2018-5750) be mentioned in kernel change log? Only if Rafael wants to hand-edit the patch, it's not really needed for a kernel log commit message to have CVE items in it, especially as the id was received after the patch was created and submitted. thanks, greg k-h -- To unsubscribe from this list: send the line "unsubscribe linux-acpi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html