I have tested both 3.16.43-2+deb8u2 and 4.9.30-2+deb9u2 and everything works. Thanks!
Sasa On Thu, Jun 22, 2017 at 2:03 PM Ben Hutchings <b...@decadent.org.uk> wrote: > I have candidate fixes for this regression which are available at: > https://people.debian.org/~benh/packages/CVE-2017-1000364/ > > The changes files there are signed with my GPG key so you can verify > them. > > (The sources for these are at > https://anonscm.debian.org/cgit/kernel/linux.git on branches > benh/{wheezy,jessie,stretch}-security.) > > I have tested these using Charles Leclerc's sample jsvc service and my > own stack clash test program, but would appreciate other testing > results. > > Ben. > > -- > Ben Hutchings > Sturgeon's Law: Ninety percent of everything is crap. >