On 04/21/2016, 01:59 PM, Jiri Slaby wrote: >> (CVE-2016-2085) 613317b EVM: Use crypto_memneq() for digest comparisons > > Does not exist in the CVE database/is not confirmed yet AFAICS. And now I am looking at the patch and I remember why I threw it away. crypto_memneq is not in 3.12 yet and I was not keen enough to backport it. thanks, -- js suse labs
Attachment:
signature.asc
Description: OpenPGP digital signature