"This issue does not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4 and 5.
This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2 and will be addressed in a future update."
4 comments
[ 3.2 ms ] story [ 23.7 ms ] threadAnother reason to only use encrypted connections.
"This issue does not affect the Linux kernels as shipped with Red Hat Enterprise Linux 4 and 5.
This issue affects the Linux kernels as shipped with Red Hat Enterprise Linux 6, 7 and Red Hat Enterprise MRG 2 and will be addressed in a future update."
Ubuntu: https://people.canonical.com/~ubuntu-security/cve/2016/CVE-2...
Debian: https://security-tracker.debian.org/tracker/CVE-2016-5696
Linux Kernel (4.7 carries the fix): https://github.com/torvalds/linux/commit/75ff39ccc1bd5d3c455...
Arch Linux will shortly release 4.7, which is how I see them fixing this issue instead of patching.
I wish people would stop relying on tabloids like that, specially here.