commit 14fd7c710c1f9f31ec4d36413c3066092c71aa3d Author: Greg Kroah-Hartman Date: Thu Dec 10 18:11:40 2015 -0500 Linux 4.3.2 commit 14a837d297366fed10bc5f6f2bbecf9400e84e15 Author: David Howells Date: Thu Nov 12 09:36:40 2015 +0000 X.509: Fix the time validation [ver #2] commit cc25b994acfbc901429da682d0f73c190e960206 upstream. This fixes CVE-2015-5327. It affects kernels from 4.3-rc1 onwards. Fix the X.509 time validation to use month number-1 when looking up the number of days in that month. Also put the month number validation before doing the lookup so as not to risk overrunning the array. This can be tested by doing the following: cat < Signed-off-by: David Howells Tested-by: Mimi Zohar Acked-by: David Woodhouse Signed-off-by: James Morris Signed-off-by: Greg Kroah-Hartman commit 6b8b7d4fb9d71db1d78d29ce39323e198049e2c3 Author: sudip Date: Thu Sep 17 13:12:51 2015 +0530 crypto: asymmetric_keys - remove always false comparison commit 4dd17c9c8a30c8d8cd1c9d4b94f08aca4b038d3e upstream. hour, min and sec are unsigned int and they can never be less than zero. Signed-off-by: Sudip Mukherjee Signed-off-by: Herbert Xu Signed-off-by: Greg Kroah-Hartman