Ben Hutchings
387dbb7803
[rt] Update to 4.8-rt1 and re-enable
2016-10-11 19:58:48 +01:00
Ben Hutchings
6429254d8f
Release linux (4.7.6-1).
...
-----BEGIN PGP SIGNATURE-----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=fl9b
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.6-1'
2016-10-07 21:04:15 +01:00
Ben Hutchings
ec2dc97fc9
mm: memcontrol: use special workqueue for creating per-memcg caches
2016-10-07 00:59:09 +01:00
Ben Hutchings
a16ba74627
grsecurity: Delete empty stub Kconfig and Makefile
...
Whatever features we get from Grsecurity in future are almost certain
to come via KSPP, so these aren't going to be useful.
2016-10-05 22:26:02 +01:00
Ben Hutchings
6573a2a7c7
security,perf: Replace GRKERNSEC_PERF_HARDEN patch with the version submitted upstream
...
This hasn't been *accepted* upstream, but maybe some day? It has gone
into AOSP.
2016-10-05 22:23:08 +01:00
Ben Hutchings
78f97bb258
Add of_mdio fixes to make device tree fixed-link definitions work properly
2016-10-02 16:26:16 +01:00
Ben Hutchings
0fadb11944
Update to 4.7.6
2016-10-02 02:46:17 +01:00
Ben Hutchings
b2480a3dfe
Release linux (4.7.5-1).
...
-----BEGIN PGP SIGNATURE-----
iQIcBAABCgAGBQJX6HXOAAoJEOe/yOyVhhEJA68QAJSLxpMHBbl9474Q/SPonncf
S7NXiYZQuo7STq0uHUVxtOTpVKRc/7y793tdtpI3Ec6nZqilS+4uKq1QNAh7kj6n
JwilTLkfbjRS4+VqEEHJtVfK/bjijEep943W+uv3foMXPzbJulgRNrf54nUOFA2n
WY1ZfL6Dp+tvys49UrK+3lsuY/ZCLzpck3m0rScGYgalfnZo00ttPto29YZjVXrp
7RZset950hvEvL7cD7GXi2pqoEcvV3AISOABgKU0U6VitS1E8wJHW1pDZvHgZDKO
55lAdyyEsAE96J1RzKwPjyHTKDmr1v6AiqNxwviLndwoLflYHUbsZBx0H9pRE0Gi
45IDQELGFToJ/4dDNijk3oyOsQaV06f0gYv+FqGnN33IWxrlz9oQ3PSWB6qA9dr5
vBGG1tzoYFdManBwZvH5smD25Ckc3TK2UzMqJA1BIjRpCoajxfmZWcgfPH8Z9gwJ
5giCQkEKCbbwAXmRwVCYDFp5t0DlnyiY0/IizunHUxFapl9B6SNRFPhJVbUCNV07
/yzsRU+TcNnV1oGQE9+uWTIelUQmc5cvMiaIlW7fifrqPAKCCnk2imYI1Tx1jsVl
VqLo1Jalt+iZGKsEt6I3ST6LX1k/QFkz7BmJ4Yz+NdwwN6/Jq5rufFxLWGdIYPdI
N4PnNBVMK0ooLqbaatRO
=PYYu
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.5-1'
Drop ABI maintenance patches.
2016-09-26 02:16:56 +01:00
Ben Hutchings
7a0f81fe53
ext4: Fix checksum validation for inodes with small i_extra_isize
...
Closes : #838544 , regression in 4.7.4
2016-09-25 22:00:56 +01:00
Ben Hutchings
bdec0fe8f0
Update to 4.7.5
2016-09-25 03:05:35 +01:00
Ben Hutchings
1f0935b411
Regroup ABI maintenance patches
2016-09-25 01:33:49 +01:00
Ben Hutchings
b37c595561
Release linux (4.7.4-2).
...
-----BEGIN PGP SIGNATURE-----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=s0s4
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.4-2'
- Drop ABI references and ABI maintenance patches
- Fix Kconfig symbols for omapdss sub-drivers, which were renamed for 4.8
2016-09-22 01:17:51 +01:00
Ben Hutchings
5a8adae35b
[arm64] Revert "arm64: Define AT_VECTOR_SIZE_ARCH for ARCH_DLINFO" (fixes FTBFS)
2016-09-19 18:10:01 +01:00
Ben Hutchings
2d327101d1
[arm64] mm: Limit TASK_SIZE_64 for compatibility
2016-09-16 16:40:35 +01:00
Ben Hutchings
ab1157972f
[powerpcspe] xmon: Don't use ld on 32-bit ( Closes : #836741 )
2016-09-12 20:38:54 +01:00
Ben Hutchings
63e9d321c9
mm, oom: prevent premature OOM killer invocation for high order request
...
Fixes a regression in 4.7 and someone already asked for this.
2016-09-09 20:49:48 +01:00
Ben Hutchings
5f7e2d6a98
i8042: Revert ABI break in 4.7.3
2016-09-09 02:26:58 +01:00
Ben Hutchings
7dd9d01ac5
Update to 4.7.3
2016-09-07 22:07:27 +01:00
Ben Hutchings
95a7eda177
Update to 4.8-rc5
2016-09-07 21:27:44 +01:00
Ben Hutchings
a0fdc8e585
[arm64] Add cpu_to_fdt32() when setting Secure Boot flag in FDT
2016-09-03 18:35:05 +01:00
Ben Hutchings
507f588e72
drivers/net/phy/marvell: Fix mis-applied patch causing build failure
...
We patch out some of the code here by inserting #if 0...#endif. When
I last rebased, one of the #endifs ended up much too far down.
2016-09-03 13:00:10 +01:00
Martin Michlmayr
7d47a94178
[arm64] Remove patches in 4.8-rc1
2016-08-28 13:30:32 -07:00
Ben Hutchings
1222968771
Update to 4.8-rc3
2016-08-28 19:52:50 +01:00
Ben Hutchings
47ba702e2c
liblockdep: Move dummy definition of prandom_u32() to fix missing declaration
2016-08-28 15:03:02 +01:00
Ben Hutchings
2c76695c24
aacraid: Check size values after double-fetch from user (CVE-2016-6480)
2016-08-27 23:17:17 +01:00
Ben Hutchings
0db6147b7d
tcp: fix use after free in tcp_xmit_retransmit_queue() (CVE-2016-6828)
2016-08-27 23:14:24 +01:00
Ben Hutchings
0a8dfe2ccc
[arm64] Add support for securelevel and Secure Boot
...
Closes : #831827 , thanks to Linn Crosetto
2016-08-27 22:17:30 +01:00
Ben Hutchings
6ab7944873
kbuild: Do not export variable name with hyphen ( Closes : #833561 )
2016-08-26 01:43:33 +01:00
Ben Hutchings
5c0b3b2b37
aufs: Update support patches to aufs4.7-20160822 ( Closes : #834764 )
2016-08-26 00:06:54 +01:00
Ben Hutchings
68c8135d73
Add hppa/parisc bug fixesfrom Helge Deller
2016-08-25 18:30:06 +01:00
Ben Hutchings
2fddcf7c7f
usbip: Use the locally-installed <linux/usbip.h>
...
Some years back I patched the #include of <linux/usbip.h> to include
the current, uninstalled version through a relative path because the
system-installed version will normally be outdated. We're about to
start copying the source to avoid writing autotools crap into the
source directory, which breaks this relative path.
Since we now install the UAPI headers under debian/build at the start
of the tools build, drop the patch and add that directory to the
include path.
2016-08-25 01:28:48 +01:00
Ben Hutchings
7a54b56ad5
Merge branch 'sid'
...
Drop rt patchset updates as they don't apply to 4.7.
Drop various other patches already in 4.7.
Fold the remaining Debian changes in the open changelog entry for 4.6.7-1
into the open changelog entry here.
2016-08-24 20:43:19 +01:00
Ben Hutchings
f445dbb9d9
Update to 4.7.2
...
Note the CVE IDs and Debian bugs fixed.
Drop the patches that have gone upstream.
2016-08-24 20:40:14 +01:00
Salvatore Bonaccorso
a8f98e5162
[rt] Refresh 4.6.5-rt10 patchset for rebase to 4.6.7
2016-08-16 12:46:56 +02:00
Salvatore Bonaccorso
a7280813ac
Update to 4.6.7
2016-08-16 11:13:39 +02:00
Ben Hutchings
d42cdc5bfe
audit: fix a double fetch in audit_log_single_execve_arg() (CVE-2016-6136)
2016-08-12 16:27:20 +01:00
Ben Hutchings
8bc5e687b1
[powerpc*] KVM: Book3S HV: Save/restore TM state in H_CEDE (CVE-2016-5412)
2016-08-12 16:25:34 +01:00
Ben Hutchings
d62992a05c
Drop ABI maintenance patches since we're bumping the ABI number
2016-08-12 16:22:46 +01:00
Salvatore Bonaccorso
7184d7bfd9
tcp: make challenge acks less predictable (CVE-2016-5696)
2016-08-12 06:52:28 +02:00
Uwe Kleine-König
a9d7770fa3
[rt] fix conflicts between v4.6.6 and v4.6.5-rt10
2016-08-11 22:13:58 +02:00
Uwe Kleine-König
aad68942e4
[rt] Update to 4.6.5-rt10
2016-08-11 21:43:53 +02:00
Uwe Kleine-König
75ae5b06cf
rt/genpatch.py: make it work with a git repository again
2016-08-11 21:43:22 +02:00
Salvatore Bonaccorso
457d8bb6bd
Update to 4.6.6
2016-08-11 16:29:28 +02:00
Salvatore Bonaccorso
c0e269c0cd
libata: LITE-ON CX1-JB256-HP needs lower max_sectors
...
Closes : #830971
2016-08-05 15:40:08 +02:00
Martin Michlmayr
02b2135a4b
Add USB support for NVIDIA Jetson TX1 Developer Kit
...
Add patches from 4.8-rc1 required for USB support on the NVIDIA Jetson
TX1 Developer Kit.
2016-08-02 15:54:01 -07:00
Salvatore Bonaccorso
c2a8f662b5
vfs: ioctl: prevent double-fetch in dedupe ioctl (CVE-2016-6516)
2016-08-02 06:47:28 +02:00
Uwe Kleine-König
f8edc4357a
Fix perf to be able to find debug info based on build-id.
2016-07-31 22:35:09 +02:00
Ben Hutchings
e8c1b8e306
Update to 4.6.5
...
Drop patches applied upstream.
There are some ABI changes still to be resolved.
2016-07-31 01:50:59 +01:00
Ben Hutchings
0ddaf6aed3
cgroups: Enable memory controller by default
2016-07-29 12:23:32 +01:00
Ben Hutchings
4e86887dda
Update to 4.7-rc7
2016-07-14 10:50:31 +01:00
Ben Hutchings
b19064d381
[rt] Update to 4.6.4-rt6 (no functional change)
2016-07-14 00:40:00 +01:00
Ben Hutchings
bd2f2b2ea4
bridge: Fix ABI change in 4.6.4
2016-07-14 00:33:32 +01:00
Salvatore Bonaccorso
f000506362
apparmor: fix oops, validate buffer size in apparmor_setprocattr() (CVE-2016-6187)
2016-07-13 20:30:05 +02:00
Salvatore Bonaccorso
1a1a829223
Update to 4.6.4
2016-07-13 17:57:14 +02:00
Ben Hutchings
38ec618a21
fanotify: Enable FANOTIFY_ACCESS_PERMISSIONS ( Closes : #690737 )
...
Various free and proprietary AV products use this feature and users
apparently want it. But punting access checks to userland seems like
an easy way to deadlock the system, and there will be nothing we can
do about that. So warn and taint the kernel if this feature is
actually used.
2016-07-13 01:53:59 +01:00
Uwe Kleine-König
0818af71cc
Cherry pick patches for rtc-s35390a from next
...
This fixes shutting down some QNAP NAS devices after being waked up by
the rtc.
2016-07-12 21:44:39 +02:00
Ben Hutchings
227bd93ded
Release linux (4.6.3-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=uSZq
-----END PGP SIGNATURE-----
Merge tag 'debian/4.6.3-1'
Drop patches included upstream.
Drop ABI maintenance changes.
2016-07-06 22:08:50 +02:00
Ben Hutchings
ade54804a1
[powerpc*] tm: Always reclaim in start_thread() for exec() class syscalls (CVE-2016-5828)
2016-07-03 16:33:29 +02:00
Ben Hutchings
aab434acde
[x86] Fix incompatiblity between kaslr and hibernation
...
* [amd64] power: Fix crash whan the hibernation code passes control to the
image kernel
* [x86] KASLR, power: Remove x86 hibernation restrictions
2016-07-02 19:29:28 +02:00
Salvatore Bonaccorso
3c35987b05
HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands (CVE-2016-5829)
2016-06-30 14:53:31 +02:00
Ben Hutchings
419d6356df
Update to 4.6.3
2016-06-27 00:58:54 +02:00
Ben Hutchings
12183bf924
nfsd: check permissions when setting ACLs (CVE-2016-XXXX)
2016-06-25 00:56:15 +02:00
Ben Hutchings
9fd7bbdf1a
netfilter: x_tables: Add fixes for CVE-2016-4997, CVE-2016-4998
...
...and probably other issues never assigned an ID.
2016-06-25 00:19:29 +02:00
Ben Hutchings
f5f99415a2
percpu: Fix synchronization with chunk destruction (CVE-2016-4794)
2016-06-25 00:19:08 +02:00
Ben Hutchings
b782c52536
KEYS: potential uninitialized variable (CVE-2016-4470)
2016-06-25 00:18:47 +02:00
Ben Hutchings
eb1373a157
Update to 4.7-rc4
2016-06-20 13:40:09 +01:00
Ben Hutchings
b9ef626a40
[rt] Update to 4.6.2-rt5
2016-06-19 22:11:38 +01:00
Ben Hutchings
8313db8a43
Add Forwarded URL for cpupower soversion bump
2016-06-18 13:00:14 +01:00
Ben Hutchings
a808d3112b
Release linux (4.6.2-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAABCgAGBQJXYbBEAAoJEAVMuPMTQ89EM8wP/3llI8Jr6Q+2ktVOqYQ7U0JT
+UEzEuKlVS+3/SjFZv8dAqpM018OJDIiccgzjvuny6MSYHiH//yWG4lC8O2WikBA
RhfbUsNWFImEkwhY8wD1cjuF0QIXNtR7qOKdCPX5wQUiG469WF4F4l3lgWoo01ub
hYXNsGebIjZTQE6KWGm97pvSRNFPT18DulANGpe9m804y2Xs+dQn6dVHKaSYT0BF
labA6C+hCmbMos3gEYNzjbmU9fxYpS98pXq7uc04ryBj3UjGoBlmxeip9yrIiC0I
oZr8kAxz5PCRSqPnhZqE51WO6eLaWIrEGGTnb6sOtbHYsTrNu8iHpWXVCkB8/2GL
LYhOJn3AyqJE4yb69EKSWL7cbVEqyVJHkGntGhTm+tKJP0QmnKlhQY47aViPt4Fc
IXQvUOeG94GROooRTNLp9/3N2di4p4YPNv2QgM5lUJjySWUMCNzw/MjpYfvuIHrp
bowSN5EYDpO6WqcZZVHogM9hJ2Aq+zWYkfK4f38r4T4+g0T8IQ8qMCY/o/LV7uod
KUbQ7SIHK7uAMT9BpJuslCwvwhKdf/9y/bcuOkB2alfR52uApdDkL04uD5jIbjaL
fElOyQPmJPNe0zxP6yZp4G3/JbMhWdX+qc77+GWkj27mBqnBEZKBHjCmU/6Vfv2Y
VolsoZ6sfxJ1pxlUcWPt
=li3O
-----END PGP SIGNATURE-----
Merge tag 'debian/4.6.2-1'
2016-06-18 12:59:57 +01:00
Ben Hutchings
9edbacb8a5
MIPS: libgcc: Fix ABI change in 4.6.2
2016-06-17 01:50:50 +01:00
Ben Hutchings
966488336f
[mips*] Fix ABI change in 4.6.2
2016-06-16 12:37:35 +01:00
Ben Hutchings
ece80cbbec
liblockdep: Add all the patches submitted upstream; drop one that's obsolete
...
(cherry picked from commit 9d20ab14dd77ffa306f6eb70c447c73f69077773)
2016-06-14 23:27:41 +01:00
Salvatore Bonaccorso
95cba203d5
rds: fix an infoleak in rds_inc_info_copy (CVE-2016-5244)
2016-06-11 07:26:02 +02:00
Salvatore Bonaccorso
01be9139c0
tipc: fix an infoleak in tipc_nl_compat_link_dump (CVE-2016-5243)
2016-06-11 07:18:28 +02:00
Salvatore Bonaccorso
91d6f22ed8
Stack overflow via ecryptfs and /proc/$pid/environ (CVE-2016-1583)
...
proc: prevent stacking filesystems on top
ecryptfs: forbid opening files without mmap handler
sched: panic on corrupted stack end
2016-06-11 07:11:08 +02:00
Ben Hutchings
ff5804f208
cpupower: Bump soname version and rename library package accordingly
2016-06-10 14:47:48 +01:00
Ben Hutchings
906f7b1351
Update to 4.7-rc2
...
[rt] Disable until it is updated for 4.7 or later
2016-06-10 14:47:48 +01:00
Ben Hutchings
1537ff1314
Update to 4.6.2
2016-06-09 17:44:47 +01:00
Ben Hutchings
cb9d6a9756
[rt] Update to 4.6.1-rt3
2016-06-05 19:23:39 +01:00
Ben Hutchings
27d73ecf49
debian/patches/features/all/rt/genpatch.py: Use stable URLs in patch Origin headers
...
Previously each tarball would be uploaded to .../rt/<upstream-version>/
and then later moved to .../rt/<upstream-version>/older/. Now they are
appearing in .../older/ immediately so we can construct stable URLs
under there.
2016-06-05 18:33:18 +01:00
Ben Hutchings
964980804a
debian/patches/features/all/rt/genpatch.py: Use upstream tarball directly
2016-06-05 18:33:11 +01:00
Ben Hutchings
07db14c867
debian/patches/features/all/rt/genpatch.py: Fix mapping of -rt version to upstream version
...
Specifically, allow for a -rcN suffix on the upstream version.
2016-06-05 18:31:38 +01:00
Ben Hutchings
0724abc432
debian/patches/features/all/rt/genpatch.py: Use Python 3
2016-06-05 17:41:39 +01:00
Ben Hutchings
4e2a281abe
Update to 4.6.1
2016-06-05 14:30:35 +01:00
Ben Hutchings
7569482f9b
Merge branch 'sid'
2016-06-05 14:16:31 +01:00
Ben Hutchings
a8fb2b9fbe
mtd: Disable slram and phram when securelevel is enabled
2016-06-03 01:15:37 +01:00
Ben Hutchings
6976b08b12
Release linux (4.5.5-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=gSlx
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.5-1'
2016-05-29 22:33:26 +01:00
Ben Hutchings
1edaa5dd82
Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing"
...
This was reverted upstream in 4.5.5 due to a regression but we have a fix for
the regression (probably).
2016-05-29 22:20:52 +01:00
Ben Hutchings
46e3b9492a
dwc3-exynos: Fix deferred probing storm
...
Closes : #823552 ; thanks to Steinar H. Gunderson
2016-05-29 22:05:54 +01:00
Ben Hutchings
08942bb065
Add upstream fixes for various information leaks
2016-05-29 21:25:44 +01:00
Ben Hutchings
5bec7a0097
[x86] kvm:vmx: more complete state update on APICv on/off (CVE-2016-4440)
2016-05-23 02:35:36 +01:00
Ben Hutchings
327c921aa7
Update to 4.5.5
...
Drop changes that were applied upstream.
Fix/ignore ABI changes.
2016-05-23 02:34:41 +01:00
Ben Hutchings
b88823f96b
Revert "stmmac: Fix 'eth0: No PHY found' regression" ( Closes : #823493 )
2016-05-23 00:59:46 +01:00
Ben Hutchings
3cbe9e18c1
aufs: Update support patches to aufs4.5-20160523
...
- mmap: Fix use-after-free in remap_file_pages(2)
2016-05-23 00:47:15 +01:00
Ben Hutchings
e42a61b7e0
aufs: Update support patches to aufs4.6-20160523
...
- mmap: Fix use-after-free in remap_file_pages(2)
2016-05-23 00:45:08 +01:00
Salvatore Bonaccorso
342ba3d57d
tipc: check nl sock before parsing nested attributes (CVE-2016-4951)
2016-05-21 16:53:08 +02:00
Aurelien Jarno
d961748cbb
Update patches URL now that they are in Linus tree
2016-05-20 11:23:49 +02:00
Ben Hutchings
871f1c46dc
[rt] Update to 4.6-rc7-rt1 and re-enable
2016-05-17 23:47:48 +01:00
Ben Hutchings
a65b751ecf
Add Forwarded/Origin headers to patches as appropriate
2016-05-17 14:44:47 +01:00
Ben Hutchings
5ba72559a1
Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing"
...
This was reverted upstream in 4.6 due to a regression but we have a fix for
the regression (probably).
2016-05-16 20:06:26 +01:00
Ben Hutchings
eaafcf8a39
Release linux (4.5.4-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=oSkt
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.4-1'
2016-05-16 20:00:43 +01:00
Ben Hutchings
0c5a10d4c1
Update to 4.6
...
Rebase patch series.
2016-05-16 19:49:24 +01:00
Salvatore Bonaccorso
be1c8b16ab
KVM: MTRR: remove MSR 0x2f8 (CVE-2016-3713)
2016-05-16 13:47:07 +02:00
Ben Hutchings
48902f4f1a
videobuf2-core: Fix crash after fixing CVE-2016-4568
2016-05-16 03:33:38 +01:00
Ben Hutchings
3eae053b85
uapi glibc compat: fix compile errors when glibc net/if.h included before linux/if.h
...
Closes : #822393
2016-05-16 03:23:55 +01:00
Ben Hutchings
efbab1e4bf
Add various upstream fixes with known or probable security impact
2016-05-16 03:23:35 +01:00
Salvatore Bonaccorso
2365caa1f9
Further cleanup patch headers for net-fix-infoleak-in-llc.patch
2016-05-15 21:58:27 +02:00
Salvatore Bonaccorso
c67a821486
Use correct patch header for via git format-patch-for-debian
2016-05-15 20:09:17 +02:00
Salvatore Bonaccorso
88ec3673ad
net: fix infoleak in llc (CVE-2016-4485)
2016-05-15 20:04:29 +02:00
Salvatore Bonaccorso
de9a44e36f
KEYS: Fix ASN.1 indefinite length object parsing (CVE-2016-0758)
2016-05-14 05:18:04 +02:00
Aurelien Jarno
4a8b374466
[mips*/octeon] Add support for byte swapped initramfs to handle u-boot and kernel running with a different endianness.
2016-05-13 18:54:45 +02:00
Aurelien Jarno
1275559aac
[arm,x86] Fix memory corruption in KVM with THP enabled.
2016-05-12 23:52:30 +02:00
Salvatore Bonaccorso
2c6d72a09e
Update to 4.5.4
2016-05-12 21:22:09 +02:00
Aurelien Jarno
b101f08c76
[mips*] Fix PR_SET_FPMODE issues with multi-threaded programs.
2016-05-11 00:17:22 +02:00
Ben Hutchings
b92b4d15f0
Update to 4.6-rc7
2016-05-08 23:56:51 +01:00
Ben Hutchings
be31f1ecd5
Release linux (4.5.3-2).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=jVBT
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.3-2'
Drop the ABI reference files and patches.
Rebase patches added on the sid branch.
2016-05-08 21:47:32 +01:00
Ben Hutchings
4ebee8024b
[powerpc*] Fix sstep compile on powerpcspe
...
Closes : #823526 ; thanks to Lennart Sorensen
2016-05-08 12:08:04 +01:00
Ben Hutchings
231812b47f
Re-group the patch series
2016-05-07 19:40:36 +01:00
Ben Hutchings
8b31e1c0a6
Update to 4.5.3
...
Drop changes which were included or superceded upstream.
Fix ABI changes.
2016-05-07 19:40:36 +01:00
Ben Hutchings
405645d788
Add bpf security fixes
2016-05-05 23:13:51 +01:00
Ben Hutchings
ae6831e8b6
Update to 4.6-rc6
2016-05-05 22:17:45 +01:00
Ben Hutchings
5416c1a1e3
Revert "sp5100_tco: fix the device check for SB800 and later chipsets"
...
Probably fixes #822651 , #823146
2016-05-02 21:25:40 +02:00
Ben Hutchings
fc5b920758
Release linux (4.5.2-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=BJL3
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.2-1'
2016-04-29 02:25:02 +02:00
Ben Hutchings
d345dad8c9
Input: gtco - fix crash on detecting device without endpoints (CVE-2016-2187)
2016-04-28 17:21:17 +02:00
Ben Hutchings
127b7cf9a4
Re-group the patch series
2016-04-28 17:17:53 +02:00
Ben Hutchings
32586f7a95
tools/build: Fix bpf(2) feature test (fixes FTBFS on alpha, sh4; closes : #822364 )
2016-04-28 16:27:44 +02:00
Ben Hutchings
d251b99807
memcg: remove lru_add_drain_all() invocation from mem_cgroup_move_charge()
...
Closes : #822084
2016-04-28 16:24:28 +02:00
Ben Hutchings
9321f394c6
[sparc] Implement and wire up hotplug and modalias_show for vio
...
Thanks to Adrian Glaubitz; closes : #815977
2016-04-28 00:09:05 +02:00
Ben Hutchings
f69db0a093
Update to 4.6-rc5
2016-04-27 23:50:01 +02:00
Ben Hutchings
dff5585589
module: Invalidate signatures on force-loaded modules
2016-04-23 20:48:33 +02:00
Ben Hutchings
2d9dcd6be6
atl2: Disable unimplemented scatter/gather feature (CVE-2016-2117)
2016-04-22 08:10:30 +01:00
Ben Hutchings
b20f5e22b0
[armel/marvell] dts: kirkwood: fix SD slot default configuration for OpenRD ( Closes : #811351 )
2016-04-22 08:06:49 +01:00
Ben Hutchings
fe835b64b1
Update to 4.5.2
...
As this includes changes to header_ops and dentry_operations, bump
the ABI number to 2.
2016-04-22 08:05:48 +01:00
Aurelien Jarno
c5cec59895
[mips*] Emulate unaligned LDXC1 and SDXC1 instructions.
2016-04-22 00:01:29 +02:00
Salvatore Bonaccorso
9c63adf133
[x86] USB: usbip: fix potential out-of-bounds write (CVE-2016-3955)
2016-04-19 16:30:27 +02:00
Ben Hutchings
690df616c2
fs: Consolidate softdep declarations in each module
2016-04-14 20:40:33 +01:00
Salvatore Bonaccorso
92f972094e
[x86] xen: suppress hugetlbfs in PV guests (CVE-2016-3961)
2016-04-14 20:57:52 +02:00
Ben Hutchings
5539892a39
[x86] Fix visiblity of x32_enabled in x32 conditional syscall patch
...
Since it's now used in arch/x86/entry/common.c, move the declaration
to <asm/syscall.h>.
2016-04-14 18:29:18 +01:00
Ben Hutchings
f4701f7d70
Update to 4.6-rc3
...
Refresh or drop *many* patches.
aufs: Update support patches to aufs4.x-rcN-20160328
2016-04-14 15:00:19 +01:00
Ben Hutchings
e49fde3f56
fs: Add '#include <linux/module.h>' where necessary in the crypto softdep patch
2016-04-14 00:35:10 +01:00
Ben Hutchings
c37887e538
Re-group the patch series
2016-04-13 23:31:28 +01:00
Ben Hutchings
a8c2d3c699
nbd: Create size change events for userspace ( Closes : #812487 )
2016-04-13 23:23:32 +01:00
Ben Hutchings
1d7f287b7a
[x86] ACPI / processor: Request native thermal interrupt handling via _OSC ( Closes : #817016 , #819336 )
2016-04-13 23:06:17 +01:00
Ben Hutchings
a6c63dfcf4
aufs: Update support patches to aufs4.5-20160328 ( Closes : #819748 )
2016-04-13 22:21:26 +01:00
Ben Hutchings
df965c4112
fs: Add MODULE_SOFTDEP declarations for hard-coded crypto drivers ( Closes : #819725 )
2016-04-13 22:17:00 +01:00
Ben Hutchings
aac56d9572
[x86] mm/32: Enable full randomization on i386 and X86_32 (CVE-2016-3672)
2016-04-13 21:26:06 +01:00
Ben Hutchings
e01d7b854c
ipv4: Don't do expensive useless work during inetdev destroy (CVE-2016-3156)
2016-04-13 21:24:19 +01:00
Ben Hutchings
d0292c6f67
netfilter: x_tables: Fix parsing of IPT_SO_SET_REPLACE blobs (CVE-2016-3134)
2016-04-13 21:11:40 +01:00
Ben Hutchings
68c5c5997c
Merge remote-tracking branch 'alioth/sid'
...
Merge open changelog entry for 4.4.6-2 into our open changelog entry.
Refresh the new patches.
2016-04-13 20:52:01 +01:00
Ben Hutchings
6e05e68d7a
Update to 4.5.1
2016-04-13 20:49:29 +01:00