7ceb71a555
scsi: target: iscsi: Use hex2bin instead of a re-implementation (CVE-2018-14633)
2018-09-27 21:19:15 +02:00
1353758acf
Update to 4.19-rc5
...
This updates the changelogs and removes patches that have been applied
upstream.
2018-09-26 12:17:37 +02:00
5a77952e41
[i386/686] Enable MGEODE_LX instead of M686 (regression in 4.16)
...
- x86-32: Disable 3D-Now in generic config
2018-09-25 21:55:43 +01:00
5ea1715db4
Update to 4.18.9
...
This updates the debian changelog for listing changes of this stable
update. It also removes patches applied upstream and refreshes a patch
that is part of 4.18.7-rt5.
2018-09-23 20:00:57 +02:00
d112adae70
f2fs: fix to do sanity check with secs_per_zone (CVE-2018-13100)
2018-09-22 17:31:48 +02:00
310f694a6b
f2fs: fix to do sanity check with reserved blkaddr of inline inode (CVE-2018-13099)
2018-09-22 17:28:29 +02:00
f46ed6ff17
floppy: Do not copy a kernel pointer to user memory in FDGETPRM ioctl (CVE-2018-7755)
2018-09-22 17:11:42 +02:00
bf27abcb1c
Add fixup for HPE m400 APEI firmware problems
...
Signed-off-by: Geoff Levand <geoff@infradead.org>
[bwh: Add Forwarded field and note the patch in debian/changelog]
2018-09-21 18:34:18 +01:00
337682dc35
Release linux (4.18.8-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAluhDZUACgkQ57/I7JWG
EQkLvQ//QqqAfJXjwZt3Iy+dcYieLqmhy4/KtjVvFP8EKSyfdeWl0awb3szbmMs5
cy2p5q17mafVZTx9MCppp4y1modMBZrMC6hmB9UAoU0j1GnKHNbtddzA3+uo1dmw
i2LudGseb8LSL5z6g95P4SozSNNeFPIOLSYxkGVnlG3sUdlhlRYCvYf9k8BKUEbx
sU0yDXQOhf0kBLsRXW8QfJEBHv5ivr9/Q+s9e71NUpVWaEOZwgfJacM/QWcY8+J4
2o0XlHtS9+r0Ik0RK5Zyt8eun1sH1cb4Lta9LZjvRLWpCqXNpPSus6V8qENngcyw
X9ZGWi3nMiR4OOuEMGMxbzXXzWreg9MNPyM5/kVfJKlsLi1xP7ufhnstR+j2/tTJ
guVLDw73B4RyOwH2p4Kh1Pk0hACagI9AeKfjSBTMMlv2rD6FDfuJlSgEYUIK/NLl
lsefkkKu2EZVdhIBEGDnu80+V2AuoTYXpEknvbnvlYZ1wLNXb73GIFptWu18dfOy
fZ4cEWDxuKd52nbsjKlQmaxlFGSfjmmWliorhrU84FZsRjvFARGWWPwnjk8fwcpD
+D0GASqx37iw1gQK8yNQER3dxHzVh1blIKhADgEWJXsaeHcfyDHziShX7FZ8n6G5
HQBaynaG0Qc9fWd8O6xmX6wsP/vGRFJchbWwa5Gd7L2cCmur1Vk=
=lopf
-----END PGP SIGNATURE-----
Merge tag 'debian/4.18.8-1'
Release linux (4.18.8-1).
- Drop ABI reference files and ABI maintenance patch
- Replace ccp driver patch with upstream version that applies to 4.19
2018-09-18 15:49:53 +01:00
ee7d2e20ff
Update to 4.18.8
...
- Drop security fixes included in it
- mm: Avoid ABI change in 4.18.7
2018-09-17 01:13:52 +01:00
70cbc7d0ea
Update to 4.19-rc4
...
Drop lockdep build fixes that were applied or obsoleted upstream.
2018-09-16 23:17:20 +01:00
cdba06ffc2
debian/patches: Add Forwarded fields to several patches
2018-09-16 16:27:59 +01:00
841b031a9f
Revert "Revert "net: increase fragment memory usage limits""
...
4.19 includes a better fix for CVE-2018-5391.
2018-09-16 16:20:13 +01:00
d7423140dd
Revert "i40e: Add kconfig dependency to ensure cmpxchg64() is available"
...
The bug that prompted this was fixed upstream in 4.17 by commit
8f769dd14a43 "i40e: re-number feature flags to remove gaps".
2018-09-16 16:13:00 +01:00
2943a959c9
[x86] crypto: ccp: add timeout support in the SEV command ( Closes : #908248 )
2018-09-16 01:58:12 +01:00
21f4f386c3
Update to 4.18.7
...
This updates the debian changelog for listing changes of this stable
update. It also removes patches that have been applied upstream.
2018-09-15 20:27:11 +01:00
f21b10d326
hfsplus: fix NULL dereference in hfsplus_lookup() (CVE-2018-14617)
2018-09-15 11:27:16 +02:00
f84af2d0a0
btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (CVE-2018-14609)
2018-09-15 11:19:09 +02:00
e3cee898ab
mac80211: don't update the PM state of a peer upon a multicast frame
...
Closes : #887045
Closes : #886292
2018-09-12 22:31:37 +02:00
824debfd2e
tools: turbostat: Add checks for failure of fgets() and fscanf()
2018-09-11 04:17:46 +01:00
605745f58f
tools: x86_energy_perf_policy: Fix "uninitialized variable" warnings at -O2
2018-09-11 04:17:45 +01:00
428a3d136e
Update to 4.18.6
2018-09-06 08:07:27 +02:00
c74e5d6fe7
[x86] boot: Fix EFI stub alignment
2018-09-05 17:55:25 +01:00
295116a6db
[powerpc*] boot: Fix missing crc32poly.h when building with KERNEL_XZ (fixes FTBFS)
2018-09-05 02:48:16 +01:00
c3b8d670c3
Update to 4.19-rc2
2018-09-03 21:34:30 +01:00
5ad4d97be9
[x86] Allow generating user-space headers without a compiler
2018-08-30 16:06:25 +01:00
d87efc40a0
Update descriptions and add Forwarded fields for liblockdep build fixes
2018-08-29 00:39:50 +01:00
d34b1c8943
locking/lockdep: Delete unnecesary #include (fixes liblockdep build)
2018-08-28 22:07:54 +01:00
54cc69a744
Update to 4.19-rc1
...
- Drop/refresh patches as appropriate
- Disable aufs patches until they are updated upstream
2018-08-27 15:21:43 +01:00
d6c050378d
Release linux (4.17.17-1).
...
-----BEGIN PGP SIGNATURE-----
iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlt4FyhfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
ZWJpYW4ub3JnAAoJEAVMuPMTQ89EitQQAJ4S3n+2azIKz50gfxon0dgS9ybXRxeb
2Hk/FzBXqFduVhWe9vVuZdE4ko5QsQ8ht2HR726kcEkud8pFOh0pt/7Q67IQHbQN
t/hD3C2C6M8pKhwBEwuSZtRqsruqv3qll95xbwIqW7AWP+/AODQltzgB0AplpC6a
8ED1nCxutDI0WrzN76UcfYxa1slRJ9sRfh+KRWQSEsU+jCSP0aD0rArYVeppXGaR
cAy5Xku7237hFdeIzlt6goHuvfDuSlbAxpuaF944TVFtmPYwe7W+S3rRSy0OtjQY
WzdSsIKXlXVMkMJD4t3ybFUMOyHP/jT79Tem0kp8EBn8NcPjtnLJYLiODVR0PH3A
5XOEzR3NLGspDxkEJWdq/7IsLL4a7wVLAYn5VbkRVzo2Jxp6IpSqPrFjYwdf/KMF
PizvbJtHTQxGFk6jPdCG+DV9hBrMOzXedcqH24qZ4yr6xUOj5WICR3+9E57DYLwH
oJzXef8BKhx4MdkDduduyWcyWJvlH2nBae2T+q+4mwfI/I+8PeyUDnSc7Hmzx1Cc
feeeccvQPrhnu8HAE0RmfF1YhfyXXq3GQEt4MaV5Z2h6aAS1zxm1EhBueJMeaEhh
i6oldiPDd2qHX9rZXYLvUx109qLyTiqxbzCgJCAF3s8Bk7P/Aj/0mDADo7d5V0TY
KsXydFzhoiTZ
=Qmdt
-----END PGP SIGNATURE-----
Merge tag 'debian/4.17.17-1'
Release linux (4.17.17-1).
- Drop "gpu: host1x: Fix compiler errors by converting to dma_addr_t"
which is already in 4.18
- Drop ABI reference files and ABI number change
2018-08-27 14:15:27 +01:00
66fce4cbfe
Update to 4.17.16
...
Drop x86-l1tf-fix-build-error-seen-if-config_kvm_intel-is-disabled.patch
Drop x86-i8259-add-missing-include-file.patch
Drop bluetooth-hidp-buffer-overflow-in-hidp_process_report.patch
Cleanup debian/changelog file
2018-08-18 12:22:37 +02:00
cfd1f69cfe
Bluetooth: hidp: buffer overflow in hidp_process_report (CVE-2018-9363)
2018-08-16 21:28:17 +02:00
f7fa757621
[x86] i8259: Add missing include file
2018-08-16 21:18:18 +02:00
757e7a9cb1
l1tf: Fix build error seen if CONFIG_KVM_INTEL is disabled
2018-08-16 07:26:32 +02:00
e090a7f60d
Revert "net: increase fragment memory usage limits" (CVE-2018-5391)
2018-08-14 22:23:59 +01:00
f813b6ebf5
Update to 4.17.14
...
This updates the debian changelog for listing changes of this stable
update. It also removes patches that have been applied upstream.
2018-08-13 14:01:38 +02:00
281dea527f
Update to 4.17.12
...
This updates the debian changelog for listing changes of this stable
update. It also removes patches that have been applied upstream.
2018-08-09 12:33:21 +02:00
27f02c775b
scripts/kernel-doc: Escape all literal braces in regexes ( Closes : #905116 )
2018-08-06 00:25:05 +08:00
522d548dd5
Partially revert "block: fail op_is_write() requests to read-only partitions"
...
Closes : #900442
2018-08-05 17:14:54 +02:00
8131366d14
block: really disable runtime-pm for blk-mq ( Closes : #904441 )
2018-08-05 23:12:11 +08:00
9572404d42
[armhf] gpu: host1x: Drop my build fix in favour of upstream fix
...
- Revert "Revert "gpu: host1x: Add IOMMU support""
- gpu: host1x: Fix compiler errors by converting to dma_addr_t
2018-08-05 19:43:37 +08:00
cb5e4246bf
Update to 4.18-rc7
2018-07-31 23:28:25 +08:00
99f612471f
Update to 4.18-rc6
2018-07-26 19:52:20 +08:00
97fb73c92a
Add Forwarded fields to gcc 8 build fixes
2018-07-21 03:15:40 +01:00
e5beaefd01
Release linux (4.17.8-1).
...
-----BEGIN PGP SIGNATURE-----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=bju1
-----END PGP SIGNATURE-----
Merge tag 'debian/4.17.8-1'
Release linux (4.17.8-1).
2018-07-21 03:02:42 +01:00
b9984b38e6
Fix remaining build failures with gcc 8 ( Closes : #897802 )
...
- tools/lib/api/fs/fs.c: Fix misuse of strncpy()
- usbip: Fix misuse of strncpy()
2018-07-20 02:01:35 +01:00
edbc7c3c16
Update to 4.17.7
...
Refresh features/all/aufs4/aufs4-base.patch
Drop bugfix/all/fix-up-non-directory-creation-in-sgid-directories.patch
Cleanup debian/changelog file
2018-07-18 18:04:46 +02:00
a89fe586a1
ext4: fix false negatives *and* false positives in ext4_check_descriptors() ( Closes : #903838 )
2018-07-17 17:54:37 +01:00
05d36f23b0
Update to 4.18-rc5
2018-07-16 01:41:49 +01:00
3c07bfca57
[powerpcspe] powerpc/Makefile: Assemble with -me500 when building for E500
...
This fixes a new FTBFS in 4.18. Thanks again to James Clarke.
2018-07-12 23:26:15 +01:00
9832544260
bugfix/powerpc/powerpc-lib-makefile-don-t-pull-in-quad.o-for-32-bit.patch: Unfuzz
2018-07-12 05:12:47 +01:00
3885cfb63f
Release linux (4.17.6-1).
...
-----BEGIN PGP SIGNATURE-----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=VAyl
-----END PGP SIGNATURE-----
Merge tag 'debian/4.17.6-1'
Release linux (4.17.6-1).
- Drop patches for ABI maintenance or that are already upstream
- Drop ABI reference files
2018-07-12 05:07:12 +01:00
8b5c36b9d4
Update to 4.17.6
...
Drop patches applied upstream.
Add patches to avoid ABI changes.
2018-07-12 01:11:34 +01:00
34a7d9011f
[armhf] mm: Export __sync_icache_dcache() for xen-privcmd (fixes FTBFS)
2018-07-12 00:21:54 +01:00
bedf220e50
fs: Fix up non-directory creation in SGID directories (CVE-2018-13405)
2018-07-10 00:47:18 +01:00
99de07e63b
Update to 4.18~rc4
...
This updates the debian changelog and removes the patches that have been
merged upstream.
Signed-off-by: Romain Perier <romain.perier@gmail.com>
2018-07-09 19:09:54 +02:00
af34178104
autofs: rename 'autofs' module back to 'autofs4' ( Closes : #902946 )
2018-07-07 00:55:56 +01:00
e442796757
linux-perf: Really fix man page generation with asciidoctor
...
The real problem was not that there were two rules, but that the first
rule didn't work for out-of-tree builds.
After I disabled the second rule, "make man" still succeeded because
of another rule (with no commands) that made all man pages depend on
asciidoc.conf.
2018-07-07 00:14:59 +01:00
afa20e4a35
linux-perf: Build docs using asciidoctor instead of asciidoc
...
This removes another Python 2 dependency.
2018-07-06 21:35:30 +01:00
f434dd0d83
Merge branch 'rperier-guest/linux-sid' into sid
...
Update to 4.17.4
See merge request kernel-team/linux!42
2018-07-06 19:28:54 +01:00
16fe15c366
Update to 4.17.4
...
This updates the debian changelog for listing changes of this stable
update. It also removes the patches that have been merged upstream.
Signed-off-by: Romain Perier <romain.perier@gmail.com>
2018-07-06 15:00:25 +02:00
4f5d99cab4
[powerpcspe] Fix build failures (thanks to James Clarke)
2018-07-06 05:11:04 +01:00
353c1b13ce
lockdep: Stub task_struct::state
2018-07-03 15:12:33 +01:00
7f113f9112
Release linux (4.17.3-1).
...
-----BEGIN PGP SIGNATURE-----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=n9qI
-----END PGP SIGNATURE-----
Merge tag 'debian/4.17.3-1'
Release linux (4.17.3-1).
2018-07-03 00:45:29 +01:00
1f88ab63d4
jfs: Fix inconsistency between memory allocation and ea_buf->max_size (CVE-2018-12233)
2018-07-02 21:43:33 +01:00
2e3f7d9495
Add fixes for ext4 security issues relating to corrupted disk images
2018-07-02 21:34:14 +01:00
24e6de2add
netfilter: ipvs: Fix invalid bytes in IP_VS_MH_TAB_INDEX help text
2018-07-02 17:30:21 +01:00
d7f4f21608
tracing: Check for no filter when processing event filters (CVE-2018-12714)
2018-06-30 03:27:55 +01:00
6143dfd1bd
Update to 4.18-rc2
...
Drop/refresh patches as appropriate.
Disable the aufs support patchset since aufs hasn't yet been updated.
2018-06-26 03:08:29 +01:00
2202083eb0
Update to 4.17.3
...
Drop patches applied upstream.
2018-06-26 02:49:57 +01:00
4eabac8481
[x86] virt: vbox: Only copy_from_user the request-header once (CVE-2018-12633)
2018-06-26 00:26:41 +01:00
d6b55c2dde
socket: close race condition between sock_close() and sockfs_setattr() (CVE-2018-12232)
2018-06-26 00:26:41 +01:00
8d25e929ea
ext4: do not allow external inodes for inline data (CVE-2018-11412)
...
Plus the related fix "ext4: bubble errors from
ext4_find_inline_data_nolock() up to ext4_iget()".
2018-06-26 00:26:41 +01:00
5e4f042d2f
ext4: correctly handle a zero-length xattr with a non-zero e_value_offs (CVE-2018-10840)
2018-06-26 00:26:41 +01:00
43505297af
vhost: fix info leak due to uninitialized memory (CVE-2018-1118)
2018-06-26 00:26:36 +01:00
793d0ba52e
Release linux (4.16.16-1)
...
-----BEGIN PGP SIGNATURE-----
iQFFBAABCgAvFiEER3HMN63jdS1rqjxLbZOIhYpp/lEFAlspVJURHHdhbGRpQGRl
Ymlhbi5vcmcACgkQbZOIhYpp/lFk8ggAvgwAw3CSdFCGSLvd8cBjZa2mqpxqOILN
BbuXT0qRTibN19qtjeHvk0SQUQuBBIoP9DVGu0j1UIBfpQcVsEg+tM2FTqrPI5DT
1LPdMcOEyNpD9FlmEljd7lkjetyils/0T87+hHXxhBP2d2DkuUjcaY1t09+6kKW0
A2XXeEGeJmDbLEuY7R/WxGHsT20nvvLD0on5691mF8yW7wLDavekwGk9JJlFjOID
XkwxAj2nFVDCWB6hmi1ETGYahmnFXgK1kX2X0lTAi6FM1mql4oha6LNxQSYc8hAd
03nWnzwh+BmsAJjapp1PkkGEj7SHw9AHl8EUS+cqaAzigB4LjSPffw==
=4gVf
-----END PGP SIGNATURE-----
Merge tag 'debian/4.16.16-1'
Release linux (4.16.16-1)
2018-06-19 21:50:55 +02:00
c2d82aa53d
[arm64] correct voltage selector for Firefly-RK3399 ( Closes : #900799 )
2018-06-15 18:49:25 +02:00
87e3b20439
hv_netvsc: Fix a network regression after ifdown/ifup
2018-06-13 13:49:24 +02:00
64f4d67d9e
ext4: Fix duplicate softdep fields in module info
...
We no longer need to add the crypto-aes or crypto-ecb dependencies
because ext4 uses the common encryption code in fscrypto (and has a
regular symbol dependency on it).
Since upstream added a softdep on "crc32c", we don't actually need to
change ext4 at all now. But let's replace it with "crypto-crc32c",
since that's the module alias the crypto subsystem will actually
request and is consistent with the softdep we add to other
filesystems.
2018-06-07 16:21:25 +01:00
657307624b
Update to 4.16.13
...
This updates the debian changelog for listing changes of this stable
update. It also removes the patches that have been merged upstream.
2018-06-05 14:31:46 +02:00
bc42fd66b1
sr: pass down correctly sized SCSI sense buffer (CVE-2018-11506)
2018-05-30 08:41:40 +02:00
cb55017d9c
[x86] KVM: VMX: Expose SSBD properly to guests.
2018-05-23 00:45:33 +02:00
0e0b695e53
Update to 4.16.11
...
Revert "[x86] Add support for disabling Speculative Store Bypass (CVE-2018-3639)"
Cleanup debian/changelog file
2018-05-22 21:03:43 +02:00
975e4433ed
[x86] Add support for disabling Speculative Store Bypass (CVE-2018-3639)
...
Apply all the SSB-related patches pending for 4.16-stable.
2018-05-22 12:26:02 +02:00
b1a9e2470a
Update to 4.16.10
2018-05-22 00:49:31 +02:00
c2dbc30362
proc: do not access cmdline nor environ from file-backed areas (CVE-2018-1120)
2018-05-17 23:15:48 +02:00
9febee02d1
mm, oom: fix concurrent munlock and oom reaper unmap (CVE-2018-1000200)
2018-05-12 16:49:55 +02:00
24b281238c
Update to 4.16.7
...
Refresh bugfix/all/fs-add-module_softdep-declarations-for-hard-coded-cr.patch
Drop patches applied upstream related to CVE-2018-1093
Cleanup debian/changelog entries
2018-05-10 15:01:21 +02:00
f65f618689
rtl8192se: Fix warning introduced by "firmware: Remove redundant log messages from drivers"
...
The firmware file name is a local variable in both functions that
use it, and rtl92se_fw_cb() only uses it for the logging that we
remove.
2018-05-09 22:53:01 +01:00
a5394cbc13
[hppa/parisc64-smp] IB: Fix RDMA_RXE and INFINIBAND_RDMAVT dependencies for DMA_VIRT_OPS
2018-05-09 22:48:55 +01:00
f4a882f016
Update to 4.17-rc4
2018-05-09 19:10:50 +01:00
bb6c7da6fe
Update to 4.17-rc3
2018-04-30 00:12:50 +01:00
634a2fc7db
Release linux (4.16.5-1).
...
-----BEGIN PGP SIGNATURE-----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=hQGL
-----END PGP SIGNATURE-----
Merge tag 'debian/4.16.5-1'
Release linux (4.16.5-1).
2018-04-29 21:09:11 +01:00
5b54699034
ext4: fix bitmap position validation
...
Un-revert "ext4: add validity checks for bitmap block numbers" and
apply this new fix on top of it.
2018-04-27 18:08:44 +01:00
019c1fa6f3
xfs: set format back to extents if xfs_bmap_extents_to_btree (CVE-2018-10323)
2018-04-25 21:23:07 +01:00
f78c3b3434
xfs: enhance dinode verifier (CVE-2018-10322)
2018-04-25 21:22:21 +01:00
9f2182e09a
Revert "ext4: add validity checks for bitmap block numbers", which caused a regression
2018-04-25 21:15:48 +01:00
98017b2bd7
Update to 4.16.4
2018-04-25 21:14:23 +01:00
1c1d5f2d95
Documentation: Update references to drivers/base/firmware_class.c
2018-04-20 00:57:50 +01:00
d04e628f00
Documentation: typec.rst: Use literal-block element with ascii art
...
This fixes a fatal error in the doc build process.
2018-04-20 00:50:39 +01:00
8457aba35f
Update to 4.17-rc1
...
- Drop patches included upstream
- Drop "Don't WARN about expected W+X pages on Xen"; the problem appears
to have been fixed by upstream commits 2cc42bac1c ("x86-64/Xen: eliminate
W+X mappings") and 672c0ae09b33 ("x86/mm: Consider effective protection
attributes in W+X check")
- Drop "Kbuild: kconfig: Verbose version of --listnewconfig"; it seems
redundant with upstream commit 17baab68d337 ("kconfig: extend output of
'listnewconfig'")
- Drop lockdown patch to drivers/scsi/eata.c; the driver was removed
upstream
- Refresh various other patches
2018-04-19 23:44:22 +01:00
fcb558d168
Merge branch 'sid'
...
- Drop patches already in 4.16
- Overwrite changes on master to debian/installer, which were also
applied on sid and then changed
- [x86] Fix up dell_smbios configuration; now it's a single driver
selected by DELL_SMBIOS, with DELL_SMBIOS_{SMM,WMI} being boolean
options
- Clean up configuration with kconfigeditor2
2018-04-19 14:43:33 +01:00
fc0c66ddb9
ath9k_htc: Fix regression in 4.15, thanks to Ben Caradoc-Davies ( Closes : #891060 )
...
- mac80211: add ieee80211_hw flag for QoS NDP support
- ath9k_htc: use non-QoS NDP for AP probing
2018-04-19 00:01:09 +01:00
9f5a30bb07
Add various security fixes
2018-04-18 00:11:35 +01:00
66b63716aa
Update to 4.15.17
2018-04-17 23:43:11 +01:00
a325681bab
[arm64] net: hns: Fix ethtool private flags (CVE-2017-18222)
2018-04-15 20:58:48 +02:00
f5b6a35cad
media: usbtv: prevent double free in error case (CVE-2017-17975)
2018-04-15 20:52:17 +02:00
8e41f67460
drm/nouveau/mmu: ALIGN_DOWN correct variable
...
Closes : #895750
2018-04-15 20:33:52 +02:00
10b9c6345e
[armhf] Add patch to fix loading of imx6q-cpufreq module.
2018-04-12 01:12:40 -07:00
630c3f806d
Release linux (4.15.11-1).
...
-----BEGIN PGP SIGNATURE-----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=PehK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.15.11-1'
Release linux (4.15.11-1).
Refresh patches.
2018-03-20 13:50:27 +00:00
1d363986d0
mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl() (CVE-2018-8087)
2018-03-19 22:31:39 +01:00
6a020907c6
Update to 4.15.11
...
Drop bugfix/all/crypto-ecc-fix-null-pointer-deref.-on-no-default_rng.patch
Cleanup debian/changelog file
2018-03-19 13:05:40 +01:00
677fae7f88
Update to 4.15.10
...
Add CVE ids for two issues fixed in 4.15.10
Drop bugfix/all/scsi-core-Avoid-that-ATA-error-handling-can-trigger-.patch
Drop bugfix/all/nospec-kill-array_index_nospec_mask_check.patch
Cleanup debian/changelog file
2018-03-16 11:53:04 +01:00
90520391a2
i40e: Add kconfig dependency to ensure cmpxchg64() is available
...
This should fix FTBFS on architectures where it isn't.
2018-03-15 19:08:05 +00:00
8039021914
scsi: core: Avoid that ATA error handling can trigger a kernel hang or oops
...
Closes : #891467
2018-03-15 08:53:49 +01:00
35e5ff18f3
amdgpu: Abort probing if firmware is not installed, as we do in radeon
2018-03-15 02:19:45 +00:00
ae02ddd98a
Make "radeon: Firmware is required for DRM and KMS ..." less Debian-specific
2018-03-15 02:19:44 +00:00
33277fbe2b
nospec: Kill array_index_nospec_mask_check()
2018-03-13 22:22:31 +00:00
17703a438b
Update to 4.15.9
...
This has some ABI changes, which still need to be resolved.
2018-03-13 22:20:14 +00:00
3c7088b5cd
Update to 4.16-rc5
2018-03-12 02:40:37 +00:00
7b3adb7e57
Merge branch 'master' into sid
2018-03-12 02:02:24 +00:00
b6d7061ed6
[arm64] Apply patch from linux-next to fix eMMC corruption on
...
Odroid-C2 (Closes : #879072 ).
2018-03-11 18:46:05 -07:00
07f055d4a5
sctp: verify size of a new chunk in _sctp_make_chunk() (CVE-2018-5803)
2018-03-09 20:34:10 +01:00
999a1d81ab
Correct commit id reference, actually take from linus tree
...
Gbp-Dch: Ignore
2018-03-09 11:58:43 +01:00
5bd62d6357
ALSA: seq: Fix racy pool initializations (CVE-2018-7566)
2018-03-09 11:54:59 +01:00
fc2cf56edb
Update to 4.15.4
...
Drop media-dvb-usb-v2-lmedm04-Improve-logic-checking-of-w.patch
Drop media-dvb-usb-v2-lmedm04-move-ts2020-attach-to-dm04_.patch
Drop media-hdpvr-fix-an-error-handling-path-in-hdpvr_prob.patch
Cleanup Debian changelog for 4.15.4
2018-02-16 22:46:54 +01:00
0ec05d8c81
Release linux (4.14.17-1).
...
-----BEGIN PGP SIGNATURE-----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=jSDv
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.17-1'
Release linux (4.14.17-1).
2018-02-16 00:20:10 +01:00
0ce4bbe790
Fix building of liblockdep
2018-02-11 09:51:44 +01:00
0a69e0b046
Update to 4.14.17
...
Refresh cpupower-fix-checks-for-cpu-existence.patch patch
2018-02-04 15:14:12 +01:00
a870b2741a
crypto: ecc - Fix NULL pointer deref. on no default_rng
...
Closes : #886556
2018-02-02 20:43:54 +01:00
edfb7d0f0e
Update to 4.14.16
2018-02-02 14:39:34 +01:00
aacdec9702
Update to 4.15
2018-01-29 23:46:40 +00:00
623cfd4d39
Merge branch 'sid'
...
- Drop ABI maintenance patches
- Apply usbip config change in debian/config/config
2018-01-28 19:02:08 +00:00
4fae92a1d5
nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
2018-01-28 19:38:02 +01:00
3a81855475
Update to 4.14.15
2018-01-28 15:50:32 +01:00
e30f878e1d
ALSA: seq: Make ioctls race-free (CVE-2018-1000004)
2018-01-18 14:30:46 +01:00
6f43038466
Update to 4.14.14
...
Mostly done by Salvatore Bonaccorso.
2018-01-18 06:10:01 +00:00
0bb5e7cccb
loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
2018-01-16 20:57:59 +01:00
6c0d6a6239
RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
2018-01-16 20:53:46 +01:00
24cdd62c17
RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
2018-01-16 20:50:50 +01:00
6e7610453d
Release linux (4.14.13-1).
...
-----BEGIN PGP SIGNATURE-----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=M11J
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.13-1'
Release linux (4.14.13-1).
- Drop ABI reference
- Drop/refresh patches as necessary
- linux-headers: Drop versioned dependency on linux-kbuild, as there has not
been any version of linux-kbuild-4.15 without objtool
2018-01-15 04:35:41 +00:00
13eb990095
Update to 4.15-rc8
2018-01-15 04:31:31 +00:00
da2cd8b85c
drm/nouveau/disp/gf119: add missing drive vfunc ptr
...
Closes : #880660
2018-01-13 11:54:57 +01:00
aac0e5380a
Properly name patch according to subject
...
Gbp-Dch: Ignore
2018-01-10 22:46:07 +01:00
d42878a1e5
Disable asynchronous aborts for SATA devices
2018-01-10 13:23:46 +01:00
9a41499923
Update to 4.14.13
2018-01-10 10:49:59 +01:00
8996784cdc
Release linux (4.14.12-2).
...
-----BEGIN PGP SIGNATURE-----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=wQ4Q
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.12-2'
Release linux (4.14.12-2).
2018-01-06 14:30:49 +01:00
9a96b9c27a
x86/tlb: Drop the _GPL from the cpu_tlbstate export
2018-01-05 21:17:13 +01:00
3452777429
Fix refresh of bugfix/all/bpf-fix-integer-overflows.patch patch
...
Gbp-Dch: Ignore
2018-01-05 20:22:43 +01:00
96dad8ed7e
Update to 4.14.11
2018-01-05 14:22:34 +01:00
a7b364e44f
Update to 4.14.9
2018-01-05 14:19:40 +01:00
f5474829b9
Update to 4.14.8
2018-01-05 10:59:15 +01:00
6a221d27b1
e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
...
Closes : #885348
2017-12-28 01:24:56 +00:00
7dd9b58675
Update to 4.15-rc5
...
Also update the aufs and lockdown patchsets.
2017-12-26 18:54:17 +00:00
8423f81c55
Merge remote-tracking branch 'alioth/sid' into sid
2017-12-22 14:10:04 +00:00
196596c560
crypto: hmac - require that the underlying hash algorithm is unkeyed (CVE-2017-17806)
2017-12-22 09:13:19 +01:00
4f056ca2c6
crypto: salsa20 - fix blkcipher_walk API usage (CVE-2017-17805)
2017-12-22 09:00:33 +01:00
cf1f6e2019
bpf/verifier: Fix multiple security issues ( Closes : #883558 )
2017-12-22 03:54:44 +00:00
fc7f6fafd8
Add security fixes
2017-12-20 19:27:18 +00:00
9e0441b20a
Update to 4.14.7
...
Drop patches applied upstream, and fix a few conflicts.
2017-12-20 18:40:37 +00:00
2f634be5d8
xen/time: do not decrease steal time after live migration on xen
...
Closes : #871608
2017-12-03 10:53:37 +01:00
3f937de450
[x86] mmap: Add an exception to the stack gap for Hotspot JVM compatibility
...
Closes : #865303
2017-11-30 12:07:11 +00:00
71832be11b
mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d() (CVE-2017-1000405)
2017-11-30 08:16:06 +01:00
a633085eb6
apparmor: fix oops in audit_signal_cb hook (regression in 4.14)
2017-11-24 13:25:03 +00:00
d769bf7e2b
Update to 4.14.1
2017-11-22 03:13:35 +00:00
bf3c5027e0
i40e: Build for 32-bit targets again
...
Apply the upstream patches that removed the use of cmpxchg64().
2017-11-21 16:14:37 +00:00
1a1f0ef065
Release linux (4.13.13-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAloODhAACgkQ57/I7JWG
EQkFAg//Zb5RqwypcEFRZs6Oyi4jF6EekQW+UVXjAE8gAw3ae8+1uvkg3TyMY7uT
C//3H1DGY/A3imqHsxku9NG5T9KhJL9cKn2EDRz8c/+lU949wXjzSFCQk+p9mwcb
RSyuqES+FwtrMJoN0iXpVIiTSjImuu4IIpTmc6IsZo1frn5oHKmeC4mvsKuflL/S
usdauRUkQewtTvi/Z8wDA5fJIDN2ff0DcSN8Km/QPlB2zUoGaQRM36ApZVeHDX3X
190bDAuBfJp9Pht3eFPUq6HwEht9hbiqSaSpMKB/jyPE8lWZ7AL8CM2qiOuZCXil
ncELxkx+8Cqp4jAWc3wqGZ5mkeVHeHxZcmFv0b4hQaaifW5GtmlMo/XHhMeFIoCc
tbcC55No2c3ZUhUH0kAQyf26zZ3f7hBAYT8EI5BNngPpZB4W7NJL8A2c09QYxAVB
/uXNnCdd7LZ9Dnhgc0K1FjIEckd1XHVQgVZ6Seo4Pv2adMfLckla3Xvqj888515a
akTL9LFAKySOqalakMl34G2FT1S0CR9+7I45KFcKjiGW5pF1RgDeLZy1W+nQq3Vd
oH2KmWGovmouMEnrh8RgKJNwLkelVkLKl0AFhJ29PGeDrGAklz0Sy5egB8iqoxRh
fiKph8IGdD8akqlI4d8mTWs01FmALkkSHUkLAxbME8HC3lpb7Ic=
=TJmK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.13-1'
Release linux (4.13.13-1).
2017-11-16 22:18:14 +00:00
4c3b3b1dec
dvb_frontend: don't use-after-free the frontend struct (CVE-2017-16648)
...
Plus another fix it seems to depend on.
2017-11-16 20:04:01 +00:00
58e12683e1
net: qmi_wwan: fix divide by 0 on bad descriptors (CVE-2017-16650)
2017-11-16 18:13:46 +00:00
91a7ba9320
net: cdc_ether: fix divide by 0 on bad descriptors (CVE-2017-16649)
2017-11-16 18:12:24 +00:00
4ee0c56703
net: usb: asix: fill null-ptr-deref in asix_suspend (CVE-2017-16647)
2017-11-16 18:11:00 +00:00
ed4bdea861
media: dib0700: fix invalid dvb_detach argument (CVE-2017-16646)
2017-11-16 18:10:19 +00:00
c718be9d81
media: imon: Fix null-ptr-deref in imon_probe (CVE-2017-16537)
2017-11-16 18:04:43 +00:00
a06739ccd2
media: cx231xx-cards: fix NULL-deref on missing association descriptor (CVE-2017-16536)
2017-11-16 18:03:20 +00:00
c08c3b8b25
usb: usbtest: fix NULL pointer dereference (CVE-2017-16532)
2017-11-16 17:40:00 +00:00
1549b29ea0
Add follow-up fixes relatd to CVE-2017-13080
2017-11-16 17:35:46 +00:00
f4e45ee455
Update to 4.13.13
2017-11-16 17:32:44 +00:00
6ff07bd9a5
sctp: do not peel off an assoc from one netns to another one (CVE-2017-15115)
2017-11-16 15:22:47 +01:00
5d9e74ced8
mac80211: accept key reinstall without changing anything (CVE-2017-13080)
2017-11-16 15:18:54 +01:00
95757c39a8
Update to 4.13.12
2017-11-11 09:29:31 +01:00
e7fd57b49f
netfilter: nft_set_hash: disable fast_ops for 2-len keys
...
Closes : #880145
2017-11-04 15:43:57 +01:00
4b0df3bed7
cifs: check MaxPathNameComponentLength != 0 before using it
...
Thanks: Andrew Chadwick
Closes : #880504
2017-11-04 09:55:14 +01:00
48bb38a3f7
Update to 4.13.9
...
Drop many patches which are now upstream.
Avoid/ignore ABI changes as appropriate.
2017-10-26 22:41:11 +02:00
4206eefe13
Update to 4.14-rc5
2017-10-17 23:34:01 +01:00
146583d59c
Release linux (4.13.4-2).
...
-----BEGIN PGP SIGNATURE-----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=juOG
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.4-2'
Release linux (4.13.4-2).
2017-10-16 00:09:19 +01:00
ccefd718c8
[x86] KVM: MMU: always terminate page walks at level 1 (CVE-2017-12188)
2017-10-13 18:09:37 +02:00
02033a7a17
[x86] KVM: nVMX: update last_nonleaf_level when initializing nested EPT (CVE-2017-12188)
2017-10-13 18:07:54 +02:00
52c8b81bca
ALSA: seq: Fix use-after-free at creating a port (CVE-2017-15265)
2017-10-13 06:52:33 +02:00
35125947a2
waitid(): Add missing access_ok() checks (CVE-2017-5123)
2017-10-12 21:16:37 +02:00
6f55d3e571
KEYS: prevent KEYCTL_READ on negative key (CVE-2017-12192)
2017-10-12 07:55:47 +02:00
7c8172804e
mac80211: fix deadlock in driver-managed RX BA session start
...
Thanks: Eric Côté
Closes : #878092
2017-10-11 21:23:02 +02:00
fba37066c7
[powerpc*] Fix illegal TM state in signal handler
2017-10-11 07:57:06 +02:00
6c3a386d04
[powerpc*] Use emergency stack for kernel TM Bad Thing program (CVE-2017-1000255)
2017-10-11 07:55:16 +02:00
c68c0840bc
brcmfmac: add length check in brcmf_cfg80211_escan_handler() (CVE-2017-0786)
2017-10-09 21:45:15 +02:00
4d6306b792
i40e: Build for 64-bit targets only (fixes FTBFS on hppa)
2017-10-04 03:50:08 +01:00
335613b4d6
Update to 4.14-rc3
2017-10-01 23:23:22 +01:00
6c9c816966
Update to 4.14-rc2
...
aufs: Update support patchset to aufs4.x-rcN-20171002
2017-10-01 20:26:01 +01:00
884aedc0b4
liblockdep: Define pr_cont()
2017-10-01 15:44:25 +01:00
e2431bcb2f
[armhf] dts: exynos: Add dwc3 SUSPHY quirk ( Closes : #843448 )
2017-10-01 15:23:55 +01:00
2678c31e68
fix infoleak in waitid(2) (CVE-2017-14954)
2017-10-01 12:02:28 +02:00
f3152ccaad
Update to 4.13.4
2017-09-29 16:29:45 +02:00
b80b24d3e0
Release linux (4.12.13-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlnBUMkACgkQ57/I7JWG
EQkU2hAAo/L20PPbaPfnnCTppx1+UD9UHNfoGhY7eoy+GYt36YjNTeqcbDUcnmGS
oqILWJq8Qwb4r2zBgnrLL+Ek3spErVtmcIi7HoCKK9pRdqDCIQUkkHQQjQob1o5f
fMAr+qTcGAm9/yEIclCrAJmrYPtS1e4ryBmwu4ZGzeeGS0PG/WFsGOLq9Tiq2cIh
pmszRX59ZqpMcTHuBs2Fi6xz7YWXqGUXxJiax5fqwF6j/9CpbReFhv2ZFH2HcPA5
4sTtGLsGTwz7lzXLljp0IN7aFkW830FGE4WuTRe2fOkFKgXlj+8wtor7D2vFB7Ou
FHhyVrMc6y32+K9LG955ECXgwN2wGioKEMyEi67ci9qxvCGf/EA9vtEj3ytzm8+j
fiJ1gRjk0Ec2D5Aewl2L0i2bYYf4RqTriRHmEQa14kk70U8oK4AmOilyU+d1t3WC
xwo6ZdThvBGJGlHzrkjWxutWz3aQiL7AC2Ora51BhrR83chmxWeRa4mvo6yH6yfs
kmSHfqIgHklwLBVpF1/9tam8E5W6KkHgW3tTX9Duz6dM+mrVxKTJz1iKbnt1213t
xco667k4txs5k+K2JkJfUUEMlH+lCicAqEHB2EZIV0R7FCf+n4dENJ/FwXUF7XE+
41h3BqWbxZDYcuBxBYmmoF7B3QgeFylSbbYb1W4E6Erd6j7AHj0=
=Thw/
-----END PGP SIGNATURE-----
Merge tag 'debian/4.12.13-1'
Release linux (4.12.13-1).
Drop ABI reference files.
2017-09-19 18:34:53 +01:00
a18f05bb5b
Add various security fixes
2017-09-19 00:49:12 +01:00
cb5ce6ce3b
Update to 4.12.13
2017-09-19 00:33:58 +01:00
bab2ab0e8d
Fix field name in patch for Bug-Debian
...
Gbp-Dch: Ignore
2017-09-15 17:10:03 +02:00
2afb7462ca
Add bug field to patch
...
Gbp-Dch: Ignore
2017-09-15 16:58:36 +02:00
acfbd0bece
Bluetooth: Properly check L2CAP config option output buffer length (CVE-2017-1000251)
2017-09-14 06:51:56 +02:00
8f075a9a83
xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present (CVE-2017-14340)
2017-09-14 06:51:56 +02:00
bcc9a01d8e
scsi: qla2xxx: Fix an integer overflow in sysfs code (CVE-2017-14051)
2017-09-14 06:51:56 +02:00
2ed545523f
sctp: Avoid out-of-bounds reads from address storage (CVE-2017-7558)
2017-09-14 06:51:56 +02:00
5897597d01
Update to 4.13.1
2017-09-11 01:16:41 +01:00
41ff7a03ca
Update to 4.12.12
2017-09-10 12:07:09 +02:00
68b6e32819
Update to 4.12.11
2017-09-09 15:06:49 +02:00
b066a269e0
Update to 4.13
2017-09-04 01:19:41 +01:00
9ba3914638
Update to 4.13-rc7
2017-08-30 20:34:25 +01:00
4a53c826d6
mtd: nandsim: remove debugfs entries in error path
2017-08-29 22:31:30 +02:00
a2dde14ec6
Update to 4.12.9
2017-08-29 22:20:12 +02:00
df8a5bf53a
Update to 4.13-rc7
2017-08-29 22:07:26 +02:00
8e44fd873c
Update to 4.12.7
2017-08-25 21:47:57 +02:00
a129c1c207
Update to 4.13-rc6
2017-08-21 03:09:19 +01:00
0697a35c1d
[sh4] Do not use hyphen in exported variable names (fixes FTBFS)
2017-08-19 22:37:50 +01:00
918dc43e46
Update metadata for "kbuild: Do not use hyphen in exported variable name"
...
I updated the commit message and re-submitted it after further
investigation.
2017-08-19 22:37:17 +01:00
31202be148
Update to 4.13-rc5
2017-08-14 23:18:47 +01:00
d545b4e4d0
Update to 4.13-rc4
...
Drop and refresh patchs as appropriate.
2017-08-13 14:45:14 +01:00
0134b5c8b9
[amd64,arm64] mm: Revert x86_64 and arm64 ELF_ET_DYN_BASE base ( Closes : #869090 )
2017-08-12 23:08:23 +01:00
aa404ad63b
bfq: Enable auto-loading when built as a module
2017-08-12 22:36:27 +01:00
831ae89c56
rtlwifi: Fix firmware loading bugs ( Closes : #869084 )
2017-08-12 21:54:36 +01:00
3b32a0551f
xfrm: policy: check policy direction value (CVE-2017-11600)
2017-08-12 21:36:28 +01:00
e58e3e6be9
Update to 4.12.6
2017-08-12 16:54:34 +02:00
0442142ae4
udp: consistently apply ufo or fragmentation (CVE-2017-1000112)
2017-08-11 09:12:58 +02:00
3b6247dba4
packet: fix tp_reserve race in packet_set_ring (CVE-2017-1000111)
2017-08-11 09:09:51 +02:00
f302f4dbad
Drop upstream applied patch
...
Gbp-Dch: Ignore
2017-08-08 10:20:30 +02:00
693284da5b
media: saa7164: fix double fetch PCIe access condition (CVE-2017-8831)
2017-08-03 20:36:47 +02:00
9f89bea8ab
ipv6: avoid overflow of offset in ip6_find_1stfragopt (CVE-2017-7542)
2017-08-03 20:32:16 +02:00
b5081c50bc
dentry name snapshots (CVE-2017-7533)
2017-08-03 20:27:55 +02:00
db815c4a3b
Update to 4.12.3
2017-07-22 18:26:23 +01:00
192ee88a05
[i386] perf tools: Fix unwind build (fixes FTBFS)
2017-07-22 17:41:53 +01:00
e6acb1f3d5
[mips*/octeon] Fix broken EDAC driver (fixes FTBFS)
2017-07-22 00:38:10 +01:00
45a06e2c0f
Clean up symbol version fixes for symbols exported from asm
...
We can't keep reverting these changes, so instead move forward. Most
architectures now have <asm/asm-protoypes.h> and only 3 were left:
- alpha: Added <asm/asm-protoypes.h> and submitted patch upstream
- m68k: Did same, but realised it's only needed for Coldfire configs
so we don't need any patches
- sparc: Cherry-picked changes from upstream
2017-07-19 19:36:04 +01:00
aaafbb9091
[sparc64] Update "Revert "sparc: move exports to definitions"" again
...
This should really fix the FTBFS - at least, the build got as far as
building linux-image packages.
genksyms doesn't recognise __int128 as a type name, so fails to parse
the prototype for __multi3(). I could fix genksyms but would have to
regenerate the parser tables which would be a horrible patch to
maintan. So use a struct type instead for now. gcc doesn't seem to
care about this because it isn't a normal C function.
Also update the patch properly for 4.12 - I removed exports for some
symbols that were not really removed but renamed.
2017-07-18 22:50:53 +01:00
50381a0ca2
Update to 4.12.2
...
Refresh aufs4 patches by hand, as there is no release for 4.12 yet.
Refresh lockdown patches with genpatch.py and then by hand, as the
branch is a little out of date and many patches went upstream.
[rt] Disable until it is updated for 4.12 or later
2017-07-18 01:06:31 +01:00
0de513746f
[x86] pinctrl: cherryview: Extend the Chromebook DMI quirk to Intel_Strago systems
...
Closes : #862723
2017-07-17 00:38:29 +01:00
769a37d5bd
[x86] ideapad-laptop: Add various IdeaPad models to no_hw_rfkill list
...
Closes : #866706
2017-07-17 00:04:31 +01:00
09f1166971
binfmt_elf: use ELF_ET_DYN_BASE only for PIE (CVE-2017-1000370, CVE-2017-1000371)
2017-07-16 21:24:08 +01:00
e70c79cce5
Update to 4.11.9
2017-07-09 12:54:43 +02:00
2125fc6614
Update to 4.11.8
2017-06-29 21:21:01 +02:00
3aaf7fba55
rxrpc: Fix several cases where a padded len isn't checked in ticket decode (CVE-2017-7482)
2017-06-29 08:24:46 +02:00
4bffab0d23
Update to 4.11.7
...
Drop upstream applied patch.
Refresh features/all/rt/sched-mmdrop-delayed.patch.
Ignore changes for module: drivers/iio/imu/inv_mpu6050/*.
2017-06-26 22:01:21 +02:00
c63d4533ab
[sparc64] Update "Revert "sparc: move exports to definitions"" for the addition of __multi3 (fixes FTBFS)
2017-06-20 20:08:40 +01:00
4d907dfd7a
Revert "Revert "ia64: move exports to definitions""
...
Can't remember why I ever applied this, as we don't have any support
for ia64 any more. In any case ia64 now has an <asm/asm-prototypes.h>.
2017-06-20 19:35:33 +01:00
0f89be27d3
mm: larger stack guard gap, between vmas (CVE-2017-1000364)
2017-06-20 00:19:55 +01:00
76ed7c5f09
Update to 4.11.6
2017-06-18 18:12:42 +01:00
21159c097a
Release linux (4.9.30-2).
...
-----BEGIN PGP SIGNATURE-----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=7TPb
-----END PGP SIGNATURE-----
Merge tag 'debian/4.9.30-2' into sid
2017-06-12 19:09:18 +01:00
29fbd594e5
NFSv4.x/callback: Create the callback service through svc_create_pooled ( Closes : #862357 )
2017-06-12 16:20:51 +01:00
6fdb07003d
Revert "uapi: fix linux/if.h userspace compilation errors"
...
This patch fixes a bug but it broke compilation of radvd (see
by reverting it for stretch.
2017-06-09 15:27:04 +01:00
cb766cd661
Add follow-up fixes for CVE-2017-9074
2017-06-08 15:39:03 +01:00
9bf3ee218c
Add follow-up fixes for CVE-2017-9074
2017-06-08 15:37:04 +01:00
304a2920e5
Update to 4.11.4
2017-06-07 23:41:28 +01:00
2da7c17a3d
ipv6: Check ip6_find_1stfragopt() return value properly.
...
Follow-up to the fix for CVE-2017-9074.
2017-06-07 23:34:55 +01:00
5174845342
Release linux (4.9.30-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlkz7vwACgkQ57/I7JWG
EQmWdQ//ctWbgUQezu+yi96QR/algQVpsRH/x1oUVnPIYi96FYOabS9pKaK0aAz1
gvTzEBz+ej2lj+ju51UWGsWHXG9CuBO9i+lRqxf74YdpmDPVco+sDWULBJzEnXqC
rYJsvnwLneDdUOeLd+r9nS/a38PezOqXd0eQApzwzvj4GStrj23aSQeLH7pXqXrr
KI/dORIXEujHoNeWzSzW3XXzOYlg9yAJuLyFmS8FGg7fBaEpnlRA+z2gXtmX7Bdn
SBJxYNttrVbucpHsIwFQysaVU+G0EXnbwgsB/AQBycCrDDIYmhmWLdqlIG+q6lsm
AGLmmX47xxrDpBPhr8iHWJkcmTBBNsSADghLvTru5PSWWTd70P/f2XWGYrfJ5bvU
OrQaV4BFG+zw6RC7Jlzx+byaXyWq15aorRAJSXKaFdebHBZXFzsbKTq4HNTRKV06
3DpoH47C0Jr4YXSbcNvgZiDZnF7OmYw/vsbJk+X4IC+igpriz3dV93QTnL2vf4iO
LaS2KT1MkGInS329DRpjCy14+q1LZM2nti6/mPji2Uqwl6ACvGYgL5y0FJLfEThH
XN+a2So6+u8MvWxrUoNrHIj8aYok96oONpDDbPIueS/PT7TwHBbq2ui1zlE8Uahg
zR3+U/V5VoBEct5n/nm0c8SRhkqsfOk8l42Dj5ibkQAuDzzt39g=
=MA6Q
-----END PGP SIGNATURE-----
Merge tag 'debian/4.9.30-1'
Drop ABI reference files and ABI maintenance patch.
2017-06-05 14:12:31 +01:00
7b53b52f6f
Update to 4.11.3
2017-06-05 14:04:06 +01:00
65c1808993
[m68k] Update 'Revert "m68k: move exports to definitions"' for 4.11 (fixes FTBFS)
...
Closes : #862393
2017-06-05 13:51:12 +01:00
0aead2461f
[x86] pinctrl: cherryview: Add a quirk to make Acer Chromebook keyboard work again
...
Closes : #862723
2017-06-04 02:30:55 +01:00
b9ea5ea2a4
uapi: fix linux/if.h userspace compilation errors (see #822393 , #824442 )
2017-06-01 17:50:12 +01:00
a843bf5bb3
Merge remote-tracking branch 'alioth/sid' into sid
2017-06-01 14:10:48 +01:00
2502943c58
ipv6: fix out of bound writes in __ip6_append_data() (CVE-2017-9242)
2017-06-01 08:38:02 +02:00
cd87fb7a86
crypto: skcipher - Add missing API setkey checks (CVE-2017-9211)
2017-06-01 08:34:46 +02:00
261dbebcde
ipv6/dccp: do not inherit ipv6_mc_list from parent (CVE-2017-9076 CVE-2017-9077)
2017-06-01 08:13:06 +02:00
3253209d02
sctp: do not inherit ipv6_{mc|ac|fl}_list from parent (CVE-2017-9075)
2017-06-01 08:08:49 +02:00
35c1e8ae8d
ipv6: Prevent overrun when parsing v6 header options (CVE-2017-9074)
2017-06-01 08:05:24 +02:00
a68b36a505
dccp/tcp: do not inherit mc_list from parent (CVE-2017-8890)
2017-06-01 07:43:55 +02:00
20b3d9876a
tracing: Use strlcpy() instead of strcpy() in __trace_find_cmdline() (CVE-2017-0605)
2017-06-01 07:36:02 +02:00
ad62774819
Add various security fixes
2017-06-01 00:30:04 +01:00
e9619f03d3
Update to 4.9.30
...
* Drop/refresh patches as necessary
* Ignore ABI changes in ccp and hid-sensors
* [mips*el/loongson-3] Revert "MIPS: Loongson-3: Select
MIPS_L1_CACHE_SHIFT_6" to avoid ABI change
2017-05-31 21:02:34 +01:00
dd1408c66d
Update to 4.9.28
2017-05-27 17:12:34 +02:00
3d18d55b64
Update to 4.9.26
...
Ignore changes to module:sound/firewire/snd-firewire-lib
Ignore changes to module:net/l2tp/l2tp_core
2017-05-13 16:07:07 +02:00
2d982936e8
usbip: Fix potential format overflow in userspace tools
...
This fixes FTBFS on 64-bit architectures with gcc-7, which in
experimental means at least amd64, ppc64, sparc64.
2017-05-04 02:48:18 +01:00
85b468262e
Remove unused liblockdep packaging
2017-05-03 21:02:49 +01:00
a4e087d3b1
Release linux (4.9.25-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlkI0/kACgkQ57/I7JWG
EQkutQ/9EsYdnQXf4HaC1YTqQW0Nu5+swZzyosOcdtMfJrj+PWXQMgmY4WWav8I/
DipRGhfXXMnqlBg1vOR5cEdqPznRm/cwcuPqZpw7H0fA7LvyCibg/7yERJYv7i1U
BIy8s29NCpVVRhDhY9Nl5t0WLGQT4Rg9JW6iKNRDq2y91etahSxzOBxB2B3k04Ys
9vFPpuKq5QAskCBGEucinYYKTy7/ciIXsaSij2m/G7/ly/Qaqt0pIgjqi4QhuJs3
yWidIm1aBvE4MHXH8WQkg1aF20vfdGXz3CZNT6BWFn/6hNesS+tEQpF/nYLBqnfS
2GghqeWO1+xzxlXWNZU/SD0JhkB6gAeZ+4MP7eYz8BAtpUz7H/zZfZNsOBWb6YJY
Pc8AjqG6mBd/1B2O8yXUda/j/xazEtg0c7uxQjyOEqh2nPeHn9FVLuJsSP74wxdx
zjGmOjJzKUmhBGxLdJZAFL5N7YbLR+qNQfV2UGz4+zVIJge9R7HwWwR9+Um8AHq0
qrnjRf6iAla1phYlgHnPx4r6A9kactDuFsNMfUN8nsUrV+KX15k+dt02CpFSWw0B
lXGPf2MNXTEp+CsuAVBAWFP55JCOwD6yYoLfEfErXvchc7qqIKHgmIrLSyexro7O
F1+HBfu6t1M4tRz0xNu8sGL4uzsjockMW8RL1HFgboUluMgTFPQ=
=k/sj
-----END PGP SIGNATURE-----
Merge tag 'debian/4.9.25-1'
Drop the added patches, which are already in 4.11.
CONFIG_NFP_NETVF is replaced by CONFIG_NFP in 4.11.
2017-05-02 19:57:00 +01:00
7ba1afb386
nfsd: stricter decoding of write-like NFSv2/v3 ops (CVE-2017-7895)
2017-04-29 22:02:50 +02:00
7961205000
nfsd4: minor NFSv2/v3 write decoding cleanup
2017-04-29 21:59:48 +02:00
0e77dea5fc
nfsd: check for oversized NFSv2/v3 arguments (CVE-2017-7645)
2017-04-29 21:52:43 +02:00
4c666bd4da
Update to 4.9.25
2017-04-27 20:19:04 +02:00
6771be1138
macsec: dynamically allocate space for sglist
2017-04-27 07:42:13 +02:00
7b2acecada
macsec: avoid heap overflow in skb_to_sgvec (CVE-2017-7477)
2017-04-27 06:43:38 +02:00
7bf90ad750
KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyrings (CVE-2017-7472)
2017-04-22 02:26:48 +01:00
89402402c8
KEYS: Disallow keyrings beginning with '.' to be joined as session keyrings (CVE-2016-9604)
2017-04-22 02:25:04 +01:00
9c5f88b1f6
Update to 4.9.24
...
Drop most of our bug fix patches, which were included in it.
Adjust context in a couple of rt patches that have textual conflicts.
2017-04-22 00:59:32 +01:00
85c3a1be4d
Note Lukas Wunner's forward-porting work in patches
2017-04-20 00:48:59 +01:00
40f397ca1a
Drop another patch redundant with upstream changes
2017-04-20 00:16:12 +01:00
f26f2a520d
Update to 4.11-rc6
...
Remove merged patches and rebase remaining patches.
A portion of the secureboot patches have been upstreamed, but were
changed substantially during review, primarily to avoid code
duplication among arches. I've stripped the patches of the merged
bits and rebased the remainder.
Signed-off-by: Lukas Wunner <lukas@wunner.de>
[bwh: Undo some incorrect context changes in
bugfix/all/firmware-remove-redundant-log-messages-from-drivers.patch]
2017-04-20 00:15:17 +01:00
aa2adea45f
Update Origin and description for various patches now applied/merged upstream
2017-04-18 04:18:56 +01:00
790885d6d8
Add Forwarded header and update description for several patches
2017-04-18 04:15:47 +01:00
8701ef58ba
Replace "[media] dvb-usb: Don't use stack for reset either" with upstream fix
2017-04-18 01:16:50 +01:00
3f62574711
crypto: ahash - Fix EINPROGRESS notification callback (CVE-2017-7618)
2017-04-16 23:25:12 +01:00
31945f628c
Update to 4.9.22
...
Drop patches applied upstream.
2017-04-16 21:47:05 +01:00
1d5fde10d8
mm/mempolicy.c: fix error handling in set_mempolicy and mbind (CVE-2017-7616)
2017-04-16 07:59:50 +02:00
263f51b136
cpupower: Fix turbo frequency reporting for pre-Sandy Bridge cores ( Closes : #859978 )
2017-04-11 02:57:43 +01:00
5547db97a6
fscrypt: remove broken support for detecting keyring key revocation (CVE-2017-7374)
2017-04-08 09:36:53 +02:00
43f7156d3a
ping: implement proper locking (CVE-2017-2671)
2017-04-08 09:18:35 +02:00
Salvatore Bonaccorso
Romain Perier
Ben Hutchings
Geoff Levand
Bastian Blank
Vagrant Cascadian
Uwe Kleine-König
Lukas Wunner