debian-packaging
/
linux
8
0
Fork 0
Code Releases Activity
12,027 Commits 2 Branches 0 Tags 493 MiB
Commit Graph

3611 Commits

Author SHA1 Message Date
Ben Hutchings 387dbb7803 [rt] Update to 4.8-rt1 and re-enable 2016-10-11 19:58:48 +01:00
Ben Hutchings 6429254d8f Release linux (4.7.6-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIcBAABCgAGBQJX9/r9AAoJEOe/yOyVhhEJaFIQANHw/AYqMiP/0fnT8TRl1ISq
 1jK7KhHKs4h7O+f4r/D31FLUAC+YVhpAqw4aHCiTwg9fjVULLcxaX91AAtpdliGm
 NhWPT7/p8S6SiLTZtVxEb8MAzNqTnN4UdoBMdetWvHYSD/zq5U/BSWCTmm5pOu+X
 E6mzwHdkgzUF/Wnt3bmmSmU415BG4nW6xIroYfH3DDSoj1pkxSW9BUhIv2L5mY25
 emjFyXMqYRKJ93CBbCewNy0sLiL1V94P0r8HIdo2JDQg1QecYnYtV0AC/2kZODhm
 9l3OyB6Dp20y5ib+t6/+4WqvmXl6XrvvjZMtHXsyv44gC1j7e0ChrXbsYk//4Lpo
 FgQ8IYaNLskPEXyjzNHhwt61i0BIfZmKSJ17ldkgofAmt+Wa1926jFih5twFu5fj
 pMkkxlJUZU7QKxEtuhC7bSOzRzoXjb+xx21Zgenhc89GamagRAKncFbRlJ6K+4pS
 SMVlnXuLC0MHlUnAxZQ/N7hdhS235UxSFBp3qyOrYDWmjxyXkItyRfd7SKeSk3Vx
 ZikpGlvsvExvyzrjTdyLwBmlyj2I+XZxGxOT2pe4EYb1xxLXUTBAqU1Ycsd8XjC3
 lUqTn3r29PYeXRYC9eUsJryLJjejdkTIssM5Y9hhoi9KjMnLptRS7tJAeCO+C8QF
 Qyhb3De7DCWrkcl8YSJI
 =fl9b
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.7.6-1'
 2016-10-07 21:04:15 +01:00
Ben Hutchings ec2dc97fc9 mm: memcontrol: use special workqueue for creating per-memcg caches 2016-10-07 00:59:09 +01:00
Ben Hutchings a16ba74627 grsecurity: Delete empty stub Kconfig and Makefile 
Whatever features we get from Grsecurity in future are almost certain
to come via KSPP, so these aren't going to be useful.
 2016-10-05 22:26:02 +01:00
Ben Hutchings 6573a2a7c7 security,perf: Replace GRKERNSEC_PERF_HARDEN patch with the version submitted upstream 
This hasn't been *accepted* upstream, but maybe some day?  It has gone
into AOSP.
 2016-10-05 22:23:08 +01:00
Ben Hutchings 78f97bb258 Add of_mdio fixes to make device tree fixed-link definitions work properly 2016-10-02 16:26:16 +01:00
Ben Hutchings 0fadb11944 Update to 4.7.6 2016-10-02 02:46:17 +01:00
Ben Hutchings b2480a3dfe Release linux (4.7.5-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIcBAABCgAGBQJX6HXOAAoJEOe/yOyVhhEJA68QAJSLxpMHBbl9474Q/SPonncf
 S7NXiYZQuo7STq0uHUVxtOTpVKRc/7y793tdtpI3Ec6nZqilS+4uKq1QNAh7kj6n
 JwilTLkfbjRS4+VqEEHJtVfK/bjijEep943W+uv3foMXPzbJulgRNrf54nUOFA2n
 WY1ZfL6Dp+tvys49UrK+3lsuY/ZCLzpck3m0rScGYgalfnZo00ttPto29YZjVXrp
 7RZset950hvEvL7cD7GXi2pqoEcvV3AISOABgKU0U6VitS1E8wJHW1pDZvHgZDKO
 55lAdyyEsAE96J1RzKwPjyHTKDmr1v6AiqNxwviLndwoLflYHUbsZBx0H9pRE0Gi
 45IDQELGFToJ/4dDNijk3oyOsQaV06f0gYv+FqGnN33IWxrlz9oQ3PSWB6qA9dr5
 vBGG1tzoYFdManBwZvH5smD25Ckc3TK2UzMqJA1BIjRpCoajxfmZWcgfPH8Z9gwJ
 5giCQkEKCbbwAXmRwVCYDFp5t0DlnyiY0/IizunHUxFapl9B6SNRFPhJVbUCNV07
 /yzsRU+TcNnV1oGQE9+uWTIelUQmc5cvMiaIlW7fifrqPAKCCnk2imYI1Tx1jsVl
 VqLo1Jalt+iZGKsEt6I3ST6LX1k/QFkz7BmJ4Yz+NdwwN6/Jq5rufFxLWGdIYPdI
 N4PnNBVMK0ooLqbaatRO
 =PYYu
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.7.5-1'

Drop ABI maintenance patches.
 2016-09-26 02:16:56 +01:00
Ben Hutchings 7a0f81fe53 ext4: Fix checksum validation for inodes with small i_extra_isize 
Closes: #838544, regression in 4.7.4
 2016-09-25 22:00:56 +01:00
Ben Hutchings bdec0fe8f0 Update to 4.7.5 2016-09-25 03:05:35 +01:00
Ben Hutchings 1f0935b411 Regroup ABI maintenance patches 2016-09-25 01:33:49 +01:00
Ben Hutchings b37c595561 Release linux (4.7.4-2). 
-----BEGIN PGP SIGNATURE-----
 
 iQIcBAABCgAGBQJX4HvgAAoJEOe/yOyVhhEJq9cP/j1XO1dNpOXxq0JZod66K1sl
 JIC4LPZ3i+kiAD0amMZiAexAuCpqCDjinjVr/pAhEoAa79983tFoY9yWjDCAW+9H
 0j7Torb5wQ76BlyXCjSoaztcQmzQ1YiCvjIzk4hCJCcvqdTuA1MMr7+AbXAgi3xE
 Es/G7ai+7SK5suEYgsbliM2ndFFMtIDqgpvDVDFNBDt61m2RXKxw7SQwyItIx+Hn
 n7Aq/P+LP7BjMSP6nW6EafF/RidbAwq4x+FKqzGyZhVQV7c3YFbh0EA7lVcTDhC7
 A1ZbdeUjiFhUKchRPa56qf+eAI8sBEeU3Ga1mhpkxL8RkFKwvWmmB2J0tBE7KHgw
 WCy+8nPxnLAq3eVIkOcB3MuvNdM9DvvtQ7X5NjXnBIfq06OX4y+C+udMpafmegTG
 5YB3FVppFQNGZcOxeF9hCQspHGvBsTGRYoK3hxzx4AY94E1cakl08oZte4dHYALz
 GvP/tjbLH5i/g9djVNGtfZCHKMZbDq2QhD60GNwFoN/ssX4Q/L3q4N+eyJD9KoQM
 Bu44v1ZY7M13F4t5JUomjU2e5mze3opxEB2C7vIoyJfaUvtAWX/mn8SysDGdT0OJ
 zd8ow6IntzcL+mqxrarOPMenSt2yqoQ6WdkYkpF5aCTj2GJyAkU7dUWfWdKWtLM7
 yjuIvqRAcVzMU9XuU8uf
 =s0s4
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.7.4-2'

- Drop ABI references and ABI maintenance patches
- Fix Kconfig symbols for omapdss sub-drivers, which were renamed for 4.8
 2016-09-22 01:17:51 +01:00
Ben Hutchings 5a8adae35b [arm64] Revert "arm64: Define AT_VECTOR_SIZE_ARCH for ARCH_DLINFO" (fixes FTBFS) 2016-09-19 18:10:01 +01:00
Ben Hutchings 2d327101d1 [arm64] mm: Limit TASK_SIZE_64 for compatibility 2016-09-16 16:40:35 +01:00
Ben Hutchings ab1157972f [powerpcspe] xmon: Don't use ld on 32-bit (Closes: #836741) 2016-09-12 20:38:54 +01:00
Ben Hutchings 63e9d321c9 mm, oom: prevent premature OOM killer invocation for high order request 
Fixes a regression in 4.7 and someone already asked for this.
 2016-09-09 20:49:48 +01:00
Ben Hutchings 5f7e2d6a98 i8042: Revert ABI break in 4.7.3 2016-09-09 02:26:58 +01:00
Ben Hutchings 7dd9d01ac5 Update to 4.7.3 2016-09-07 22:07:27 +01:00
Ben Hutchings 95a7eda177 Update to 4.8-rc5 2016-09-07 21:27:44 +01:00
Ben Hutchings a0fdc8e585 [arm64] Add cpu_to_fdt32() when setting Secure Boot flag in FDT 2016-09-03 18:35:05 +01:00
Ben Hutchings 507f588e72 drivers/net/phy/marvell: Fix mis-applied patch causing build failure 
We patch out some of the code here by inserting #if 0...#endif.  When
I last rebased, one of the #endifs ended up much too far down.
 2016-09-03 13:00:10 +01:00
Martin Michlmayr 7d47a94178 [arm64] Remove patches in 4.8-rc1 2016-08-28 13:30:32 -07:00
Ben Hutchings 1222968771 Update to 4.8-rc3 2016-08-28 19:52:50 +01:00
Ben Hutchings 47ba702e2c liblockdep: Move dummy definition of prandom_u32() to fix missing declaration 2016-08-28 15:03:02 +01:00
Ben Hutchings 2c76695c24 aacraid: Check size values after double-fetch from user (CVE-2016-6480) 2016-08-27 23:17:17 +01:00
Ben Hutchings 0db6147b7d tcp: fix use after free in tcp_xmit_retransmit_queue() (CVE-2016-6828) 2016-08-27 23:14:24 +01:00
Ben Hutchings 0a8dfe2ccc [arm64] Add support for securelevel and Secure Boot 
Closes: #831827, thanks to Linn Crosetto
 2016-08-27 22:17:30 +01:00
Ben Hutchings 6ab7944873 kbuild: Do not export variable name with hyphen (Closes: #833561) 2016-08-26 01:43:33 +01:00
Ben Hutchings 5c0b3b2b37 aufs: Update support patches to aufs4.7-20160822 (Closes: #834764) 2016-08-26 00:06:54 +01:00
Ben Hutchings 68c8135d73 Add hppa/parisc bug fixesfrom Helge Deller 2016-08-25 18:30:06 +01:00
Ben Hutchings 2fddcf7c7f usbip: Use the locally-installed <linux/usbip.h> 
Some years back I patched the #include of <linux/usbip.h> to include
the current, uninstalled version through a relative path because the
system-installed version will normally be outdated.  We're about to
start copying the source to avoid writing autotools crap into the
source directory, which breaks this relative path.

Since we now install the UAPI headers under debian/build at the start
of the tools build, drop the patch and add that directory to the
include path.
 2016-08-25 01:28:48 +01:00
Ben Hutchings 7a54b56ad5 Merge branch 'sid' 
Drop rt patchset updates as they don't apply to 4.7.

Drop various other patches already in 4.7.

Fold the remaining Debian changes in the open changelog entry for 4.6.7-1
into the open changelog entry here.
 2016-08-24 20:43:19 +01:00
Ben Hutchings f445dbb9d9 Update to 4.7.2 
Note the CVE IDs and Debian bugs fixed.

Drop the patches that have gone upstream.
 2016-08-24 20:40:14 +01:00
Salvatore Bonaccorso a8f98e5162 [rt] Refresh 4.6.5-rt10 patchset for rebase to 4.6.7 2016-08-16 12:46:56 +02:00
Salvatore Bonaccorso a7280813ac Update to 4.6.7 2016-08-16 11:13:39 +02:00
Ben Hutchings d42cdc5bfe audit: fix a double fetch in audit_log_single_execve_arg() (CVE-2016-6136) 2016-08-12 16:27:20 +01:00
Ben Hutchings 8bc5e687b1 [powerpc*] KVM: Book3S HV: Save/restore TM state in H_CEDE (CVE-2016-5412) 2016-08-12 16:25:34 +01:00
Ben Hutchings d62992a05c Drop ABI maintenance patches since we're bumping the ABI number 2016-08-12 16:22:46 +01:00
Salvatore Bonaccorso 7184d7bfd9 tcp: make challenge acks less predictable (CVE-2016-5696) 2016-08-12 06:52:28 +02:00
Uwe Kleine-König a9d7770fa3 [rt] fix conflicts between v4.6.6 and v4.6.5-rt10 2016-08-11 22:13:58 +02:00
Uwe Kleine-König aad68942e4 [rt] Update to 4.6.5-rt10 2016-08-11 21:43:53 +02:00
Uwe Kleine-König 75ae5b06cf rt/genpatch.py: make it work with a git repository again 2016-08-11 21:43:22 +02:00
Salvatore Bonaccorso 457d8bb6bd Update to 4.6.6 2016-08-11 16:29:28 +02:00
Salvatore Bonaccorso c0e269c0cd libata: LITE-ON CX1-JB256-HP needs lower max_sectors 
Closes: #830971
 2016-08-05 15:40:08 +02:00
Martin Michlmayr 02b2135a4b Add USB support for NVIDIA Jetson TX1 Developer Kit 
Add patches from 4.8-rc1 required for USB support on the NVIDIA Jetson
TX1 Developer Kit.
 2016-08-02 15:54:01 -07:00
Salvatore Bonaccorso c2a8f662b5 vfs: ioctl: prevent double-fetch in dedupe ioctl (CVE-2016-6516) 2016-08-02 06:47:28 +02:00
Uwe Kleine-König f8edc4357a Fix perf to be able to find debug info based on build-id. 2016-07-31 22:35:09 +02:00
Ben Hutchings e8c1b8e306 Update to 4.6.5 
Drop patches applied upstream.

There are some ABI changes still to be resolved.
 2016-07-31 01:50:59 +01:00
Ben Hutchings 0ddaf6aed3 cgroups: Enable memory controller by default 2016-07-29 12:23:32 +01:00
Ben Hutchings 4e86887dda Update to 4.7-rc7 2016-07-14 10:50:31 +01:00
Ben Hutchings b19064d381 [rt] Update to 4.6.4-rt6 (no functional change) 2016-07-14 00:40:00 +01:00
Ben Hutchings bd2f2b2ea4 bridge: Fix ABI change in 4.6.4 2016-07-14 00:33:32 +01:00
Salvatore Bonaccorso f000506362 apparmor: fix oops, validate buffer size in apparmor_setprocattr() (CVE-2016-6187) 2016-07-13 20:30:05 +02:00
Salvatore Bonaccorso 1a1a829223 Update to 4.6.4 2016-07-13 17:57:14 +02:00
Ben Hutchings 38ec618a21 fanotify: Enable FANOTIFY_ACCESS_PERMISSIONS (Closes: #690737) 
Various free and proprietary AV products use this feature and users
apparently want it.  But punting access checks to userland seems like
an easy way to deadlock the system, and there will be nothing we can
do about that.  So warn and taint the kernel if this feature is
actually used.
 2016-07-13 01:53:59 +01:00
Uwe Kleine-König 0818af71cc Cherry pick patches for rtc-s35390a from next 
This fixes shutting down some QNAP NAS devices after being waked up by
the rtc.
 2016-07-12 21:44:39 +02:00
Ben Hutchings 227bd93ded Release linux (4.6.3-1). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIVAwUAV3yLEue/yOyVhhEJAQrB2hAAg7HB6NkS0qupN5a/pjupxrtDzbWAoCKH
 uv3lbVe+y13lp5tMDB4ZeALxQf7/YHKqKF6ZUUvPx5oYyRtlE3qvqEVuwtd4CLmg
 81SIIJYLZKxom9snqoJz7kjf48B4iBiJv/LXJbDx1ulE9jS1C44crwR6gIa0Bv3x
 88OjmpSFrHafetM7TF+ZR27NapBnxlwvGpBay3fjjLl+WAUKawZd7dfZ/V5f964M
 2SmKkjBzUg2ULdRzwv83X2kf2PDuv7FrEeVexbeWvbnfea2yu0s/Y77EcQFFuAUY
 ffsIrEtO7yvPKLF2np070UG9maKyOa4T450CxrFsR1bL4EvJUjRClJias1XqePn4
 mAUVfzMKB3FPAYtn78wxo7QD2c4ymYL0MQU2IGVn1WQYf0zaCszvbMmAJjJY6PND
 mQlD0rtYYKHVde3fjuxb2gbji93L88b2kj9m74PpwIo44sGuzXiX4PJLYcJpcTnq
 WzckVD5j/Kmw5lH/q/zDhWt1QlA7+YfE9kYDT/LFc4Vo24eGLcFhJWuXy+ICMK2j
 4n5i5cnWOvpyYAJW7epu0VCKL8qj7DH70Eff8dNi6gfXwZCRTvJMpjpt4P99Q8k3
 coCvQR5KyiWVPKc/xBnTYadr2blWRgm+GcN27x2PykONlYNhjsxHh7Ea7faGBFEt
 kwdBl15bzSE=
 =uSZq
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.6.3-1'

Drop patches included upstream.

Drop ABI maintenance changes.
 2016-07-06 22:08:50 +02:00
Ben Hutchings ade54804a1 [powerpc*] tm: Always reclaim in start_thread() for exec() class syscalls (CVE-2016-5828) 2016-07-03 16:33:29 +02:00
Ben Hutchings aab434acde [x86] Fix incompatiblity between kaslr and hibernation 
* [amd64] power: Fix crash whan the hibernation code passes control to the
  image kernel
* [x86] KASLR, power: Remove x86 hibernation restrictions
 2016-07-02 19:29:28 +02:00
Salvatore Bonaccorso 3c35987b05 HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands (CVE-2016-5829) 2016-06-30 14:53:31 +02:00
Ben Hutchings 419d6356df Update to 4.6.3 2016-06-27 00:58:54 +02:00
Ben Hutchings 12183bf924 nfsd: check permissions when setting ACLs (CVE-2016-XXXX) 2016-06-25 00:56:15 +02:00
Ben Hutchings 9fd7bbdf1a netfilter: x_tables: Add fixes for CVE-2016-4997, CVE-2016-4998 
...and probably other issues never assigned an ID.
 2016-06-25 00:19:29 +02:00
Ben Hutchings f5f99415a2 percpu: Fix synchronization with chunk destruction (CVE-2016-4794) 2016-06-25 00:19:08 +02:00
Ben Hutchings b782c52536 KEYS: potential uninitialized variable (CVE-2016-4470) 2016-06-25 00:18:47 +02:00
Ben Hutchings eb1373a157 Update to 4.7-rc4 2016-06-20 13:40:09 +01:00
Ben Hutchings b9ef626a40 [rt] Update to 4.6.2-rt5 2016-06-19 22:11:38 +01:00
Ben Hutchings 8313db8a43 Add Forwarded URL for cpupower soversion bump 2016-06-18 13:00:14 +01:00
Ben Hutchings a808d3112b Release linux (4.6.2-1). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIcBAABCgAGBQJXYbBEAAoJEAVMuPMTQ89EM8wP/3llI8Jr6Q+2ktVOqYQ7U0JT
 +UEzEuKlVS+3/SjFZv8dAqpM018OJDIiccgzjvuny6MSYHiH//yWG4lC8O2WikBA
 RhfbUsNWFImEkwhY8wD1cjuF0QIXNtR7qOKdCPX5wQUiG469WF4F4l3lgWoo01ub
 hYXNsGebIjZTQE6KWGm97pvSRNFPT18DulANGpe9m804y2Xs+dQn6dVHKaSYT0BF
 labA6C+hCmbMos3gEYNzjbmU9fxYpS98pXq7uc04ryBj3UjGoBlmxeip9yrIiC0I
 oZr8kAxz5PCRSqPnhZqE51WO6eLaWIrEGGTnb6sOtbHYsTrNu8iHpWXVCkB8/2GL
 LYhOJn3AyqJE4yb69EKSWL7cbVEqyVJHkGntGhTm+tKJP0QmnKlhQY47aViPt4Fc
 IXQvUOeG94GROooRTNLp9/3N2di4p4YPNv2QgM5lUJjySWUMCNzw/MjpYfvuIHrp
 bowSN5EYDpO6WqcZZVHogM9hJ2Aq+zWYkfK4f38r4T4+g0T8IQ8qMCY/o/LV7uod
 KUbQ7SIHK7uAMT9BpJuslCwvwhKdf/9y/bcuOkB2alfR52uApdDkL04uD5jIbjaL
 fElOyQPmJPNe0zxP6yZp4G3/JbMhWdX+qc77+GWkj27mBqnBEZKBHjCmU/6Vfv2Y
 VolsoZ6sfxJ1pxlUcWPt
 =li3O
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.6.2-1'
 2016-06-18 12:59:57 +01:00
Ben Hutchings 9edbacb8a5 MIPS: libgcc: Fix ABI change in 4.6.2 2016-06-17 01:50:50 +01:00
Ben Hutchings 966488336f [mips*] Fix ABI change in 4.6.2 2016-06-16 12:37:35 +01:00
Ben Hutchings ece80cbbec liblockdep: Add all the patches submitted upstream; drop one that's obsolete 
(cherry picked from commit 9d20ab14dd77ffa306f6eb70c447c73f69077773)
 2016-06-14 23:27:41 +01:00
Salvatore Bonaccorso 95cba203d5 rds: fix an infoleak in rds_inc_info_copy (CVE-2016-5244) 2016-06-11 07:26:02 +02:00
Salvatore Bonaccorso 01be9139c0 tipc: fix an infoleak in tipc_nl_compat_link_dump (CVE-2016-5243) 2016-06-11 07:18:28 +02:00
Salvatore Bonaccorso 91d6f22ed8 Stack overflow via ecryptfs and /proc/$pid/environ (CVE-2016-1583) 
proc: prevent stacking filesystems on top

ecryptfs: forbid opening files without mmap handler

sched: panic on corrupted stack end
 2016-06-11 07:11:08 +02:00
Ben Hutchings ff5804f208 cpupower: Bump soname version and rename library package accordingly 2016-06-10 14:47:48 +01:00
Ben Hutchings 906f7b1351 Update to 4.7-rc2 
[rt] Disable until it is updated for 4.7 or later
 2016-06-10 14:47:48 +01:00
Ben Hutchings 1537ff1314 Update to 4.6.2 2016-06-09 17:44:47 +01:00
Ben Hutchings cb9d6a9756 [rt] Update to 4.6.1-rt3 2016-06-05 19:23:39 +01:00
Ben Hutchings 27d73ecf49 debian/patches/features/all/rt/genpatch.py: Use stable URLs in patch Origin headers 
Previously each tarball would be uploaded to .../rt/<upstream-version>/
and then later moved to .../rt/<upstream-version>/older/.  Now they are
appearing in .../older/ immediately so we can construct stable URLs
under there.
 2016-06-05 18:33:18 +01:00
Ben Hutchings 964980804a debian/patches/features/all/rt/genpatch.py: Use upstream tarball directly 2016-06-05 18:33:11 +01:00
Ben Hutchings 07db14c867 debian/patches/features/all/rt/genpatch.py: Fix mapping of -rt version to upstream version 
Specifically, allow for a -rcN suffix on the upstream version.
 2016-06-05 18:31:38 +01:00
Ben Hutchings 0724abc432 debian/patches/features/all/rt/genpatch.py: Use Python 3 2016-06-05 17:41:39 +01:00
Ben Hutchings 4e2a281abe Update to 4.6.1 2016-06-05 14:30:35 +01:00
Ben Hutchings 7569482f9b Merge branch 'sid' 2016-06-05 14:16:31 +01:00
Ben Hutchings a8fb2b9fbe mtd: Disable slram and phram when securelevel is enabled 2016-06-03 01:15:37 +01:00
Ben Hutchings 6976b08b12 Release linux (4.5.5-1). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIVAwUAV0te3Oe/yOyVhhEJAQodqBAAjpkEuBm2kSlQD1y8qeb/+1+CxJPcqIH1
 DHTyMpFHQvX5VT+vCX83WhiWncMz85z7f0wcElpNaZ/3ExOQzbmrIwsucgXRXVUS
 txKxHaQQv8uU1m8dgxqjOWP80+IT71H9rBcitfrRqyzLiEhC1mPOfvxjtGTOJWw+
 Lohie5WPMMsfrahQGw4srPMcpVRwVKuX5N+azgk6rg8VA7rxyxQaMZRg3rr+N7Aw
 btwVC5vyL8K5Be0LnveR/PdOosaUU6XzyT7kNT0fLSO9H4bWenielHaduSDI5iU4
 WcPRhymrHv0dBDvbyw8vkJMDd+/1x9gWk4/DHFQNw1miaUx87N+vKyC4rZ7Lqc2d
 4n/hpq3HjPBZqC07Q0mddeTy7OoN4obYSXTipIu9rWBsTJtcxxwSUVg86+xo03Zg
 bb0VoEudp9JZGBMLS8PjBJ66d+/p7Q47YnKV7ZwNKyLwRq4AMo65L7PeUJflNHvj
 UmJrOG/6AJ6bi+eXrWDbwAA8mrwdPPKu+QzBSQ9c6hm4CFmgkgWTH/oA2iPsp7AX
 iqcPgKp6XA8YLXpiDeCqvMV5cSkGD67cpIcgTB0CrH7KILXD61cP8QEl7eaWiBMW
 MW9IPDeEBEmEN3ST2tg1H7udEzzpEZXHg4NZ5gOZ7lMZphbILrapJYuUf3PDdZKL
 Ccz9YH5eSuE=
 =gSlx
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.5.5-1'
 2016-05-29 22:33:26 +01:00
Ben Hutchings 1edaa5dd82 Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing" 
This was reverted upstream in 4.5.5 due to a regression but we have a fix for
the regression (probably).
 2016-05-29 22:20:52 +01:00
Ben Hutchings 46e3b9492a dwc3-exynos: Fix deferred probing storm 
Closes: #823552; thanks to Steinar H. Gunderson
 2016-05-29 22:05:54 +01:00
Ben Hutchings 08942bb065 Add upstream fixes for various information leaks 2016-05-29 21:25:44 +01:00
Ben Hutchings 5bec7a0097 [x86] kvm:vmx: more complete state update on APICv on/off (CVE-2016-4440) 2016-05-23 02:35:36 +01:00
Ben Hutchings 327c921aa7 Update to 4.5.5 
Drop changes that were applied upstream.

Fix/ignore ABI changes.
 2016-05-23 02:34:41 +01:00
Ben Hutchings b88823f96b Revert "stmmac: Fix 'eth0: No PHY found' regression" (Closes: #823493) 2016-05-23 00:59:46 +01:00
Ben Hutchings 3cbe9e18c1 aufs: Update support patches to aufs4.5-20160523 
- mmap: Fix use-after-free in remap_file_pages(2)
 2016-05-23 00:47:15 +01:00
Ben Hutchings e42a61b7e0 aufs: Update support patches to aufs4.6-20160523 
- mmap: Fix use-after-free in remap_file_pages(2)
 2016-05-23 00:45:08 +01:00
Salvatore Bonaccorso 342ba3d57d tipc: check nl sock before parsing nested attributes (CVE-2016-4951) 2016-05-21 16:53:08 +02:00
Aurelien Jarno d961748cbb Update patches URL now that they are in Linus tree 2016-05-20 11:23:49 +02:00
Ben Hutchings 871f1c46dc [rt] Update to 4.6-rc7-rt1 and re-enable 2016-05-17 23:47:48 +01:00
Ben Hutchings a65b751ecf Add Forwarded/Origin headers to patches as appropriate 2016-05-17 14:44:47 +01:00
Ben Hutchings 5ba72559a1 Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing" 
This was reverted upstream in 4.6 due to a regression but we have a fix for
the regression (probably).
 2016-05-16 20:06:26 +01:00
Ben Hutchings eaafcf8a39 Release linux (4.5.4-1). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIVAwUAVzoWxue/yOyVhhEJAQrD5RAAnOQWbgH3JJ/48u366vvlvebkKdfgdUQw
 wyj+rfxCxWbb2i8iGh+gk4aN9FlNfmzUlPgA2esXJiCpjmZ+Ffj0aF8k7W4HkGPw
 /dX2tuBEj7NKQ6TLY1BK9rzs8DQKMRw7lQ7r+uLlt0o8MjKMJg0FaA1UteC09trB
 AXcSZdIeAtyPaMk1mBk3qcNsDMTIb/K3zk03sGy8HKwWgJJmHbcTm4/XWEzOOZUd
 HYInRPiK724qMoIG+BkI+oigvaXEvuxHKMfKWdryKHsIyvAu4l/1myeBk/xy65Cv
 /ga+NQQHJt8mfiWfleljKU9DC4wN/SQ5Nr9wzFC512TQfFVmu47BlIQPQWZ1oHjP
 FQom301HEFTKqZRTIqOU6IQ+TPSSHWPPvD8jmmRFXycasvDkP0t2RNuM3gbhwU3b
 9hui/YUlbzQUJOgWRitnRMk1jXtHLkQm8vRf7AIVXxT5+6u4EiZUvk6gNjg3Jz6h
 dHkkrgCWzZgYIdAvqa8OF2j2ejSQUcBW3yxpSnw0T9YOxo4IiF+Il/dxwSDSX5BI
 tBoNyzNH62yMOjGSQXcYOdr64KE1mjXpST+x1tRdU+n74ifP2CtA57o93WB6Gn5z
 wVAuVeGmEAbIl7EcHl5r6ZC58da5syTl0BZEbH9YM54eLlM+qyLOwM0vWAztuIa5
 ciXotUkDZrM=
 =oSkt
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.5.4-1'
 2016-05-16 20:00:43 +01:00
Ben Hutchings 0c5a10d4c1 Update to 4.6 
Rebase patch series.
 2016-05-16 19:49:24 +01:00
Salvatore Bonaccorso be1c8b16ab KVM: MTRR: remove MSR 0x2f8 (CVE-2016-3713) 2016-05-16 13:47:07 +02:00
Ben Hutchings 48902f4f1a videobuf2-core: Fix crash after fixing CVE-2016-4568 2016-05-16 03:33:38 +01:00
Ben Hutchings 3eae053b85 uapi glibc compat: fix compile errors when glibc net/if.h included before linux/if.h 
Closes: #822393
 2016-05-16 03:23:55 +01:00
Ben Hutchings efbab1e4bf Add various upstream fixes with known or probable security impact 2016-05-16 03:23:35 +01:00
Salvatore Bonaccorso 2365caa1f9 Further cleanup patch headers for net-fix-infoleak-in-llc.patch 2016-05-15 21:58:27 +02:00
Salvatore Bonaccorso c67a821486 Use correct patch header for via git format-patch-for-debian 2016-05-15 20:09:17 +02:00
Salvatore Bonaccorso 88ec3673ad net: fix infoleak in llc (CVE-2016-4485) 2016-05-15 20:04:29 +02:00
Salvatore Bonaccorso de9a44e36f KEYS: Fix ASN.1 indefinite length object parsing (CVE-2016-0758) 2016-05-14 05:18:04 +02:00
Aurelien Jarno 4a8b374466 [mips*/octeon] Add support for byte swapped initramfs to handle u-boot and kernel running with a different endianness. 2016-05-13 18:54:45 +02:00
Aurelien Jarno 1275559aac [arm,x86] Fix memory corruption in KVM with THP enabled. 2016-05-12 23:52:30 +02:00
Salvatore Bonaccorso 2c6d72a09e Update to 4.5.4 2016-05-12 21:22:09 +02:00
Aurelien Jarno b101f08c76 [mips*] Fix PR_SET_FPMODE issues with multi-threaded programs. 2016-05-11 00:17:22 +02:00
Ben Hutchings b92b4d15f0 Update to 4.6-rc7 2016-05-08 23:56:51 +01:00
Ben Hutchings be31f1ecd5 Release linux (4.5.3-2). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIVAwUAVy9ITOe/yOyVhhEJAQq2Tw/+IbJSVFZ3v7J7I6ZwZuJLmhnEpPyuE1Md
 OkJieChhe0wpnIFQD3fhHsKClXUzHORahq8O4qGd5BPb9ttYSr7Hm/SvPxQK91Cr
 mP857CZWNopLatVbKAzmQ3unFcpD/zbTGr2iC0IBmu4TJQBMr2tDejd2ndlq2psG
 YoaHSh1wHutenaF9iFQ2/H2V6ScM7DX9DMTOrqhFxaIkc7WaJSjpVoKCrYxRFQUX
 9ogMqxPRqTzsEBxS0PwO1vBTDx2OgwkmvnY0rOj1fpswgEfwvS4XO46EpiFx45Mc
 grzDW6jrKMKWpeH1JC1YLvOltR/nSx4vM3E5sbjSKJQv0F1oIoQuKyfRLOw9Oe3q
 4/7xqS5/aNJ9aaNPi4p7/L8JdGtkJEW26XczgXbKRlY4AfKvt7bPTztoe4KQOSDA
 roqmj7f782nJOerQxKScsE7HM6DpLViSoGhCyf0DNnqwQaUKDyaLhdu0LNA73wCx
 FMFQfZnDN8Yg0UP5BJouSoKprf4hL7CiQcMcfXqLj/QsNB8vCjfs6offKtZ7bckZ
 Si1L2proXY3esQ95Npd2HIKDo4gGajQ8Xkpkf9+6FZdhMLm/w17y9kppgVlcKQ/T
 q/emN0JEuzxMkvtZbmVMRzd0NI4tXzlBwOVcASMzI0ak5CLOPoWO0Cc/jOYg24H3
 yabrIvpcq0s=
 =jVBT
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.5.3-2'

Drop the ABI reference files and patches.

Rebase patches added on the sid branch.
 2016-05-08 21:47:32 +01:00
Ben Hutchings 4ebee8024b [powerpc*] Fix sstep compile on powerpcspe 
Closes: #823526; thanks to Lennart Sorensen
 2016-05-08 12:08:04 +01:00
Ben Hutchings 231812b47f Re-group the patch series 2016-05-07 19:40:36 +01:00
Ben Hutchings 8b31e1c0a6 Update to 4.5.3 
Drop changes which were included or superceded upstream.

Fix ABI changes.
 2016-05-07 19:40:36 +01:00
Ben Hutchings 405645d788 Add bpf security fixes 2016-05-05 23:13:51 +01:00
Ben Hutchings ae6831e8b6 Update to 4.6-rc6 2016-05-05 22:17:45 +01:00
Ben Hutchings 5416c1a1e3 Revert "sp5100_tco: fix the device check for SB800 and later chipsets" 
Probably fixes #822651, #823146
 2016-05-02 21:25:40 +02:00
Ben Hutchings fc5b920758 Release linux (4.5.2-1). 
-----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1
 
 iQIVAwUAVyKf7Oe/yOyVhhEJAQqAnQ//cXPxmlNgmpwl9YUWt7WWjMBr4fyShKp0
 0MIcV8O7G1Jaov8valxFnSp7/LEDkA5bkQFec39ZKR4jjnkATCY7LWhC35PDe7fK
 gSIu4+jhnAFMsedRcqlbugsnQAkZGfxPWvxBVqy7veBmMSEywnEs7XW/PVZBWLdX
 kBmTwqoE5aKnaEYa2HwT53zKZBO4zG3AqHJAnU71DLf20cIPXm/zYthxatQs8GYs
 AybmlejWWkZgpob6CSax8zoSvUuSJGIU63RaH4z8IT6I7C0imcAJ6qwqR5nKtkzb
 zDmG81mmxGT1JAxptIeaJQw9qAnygFWKrRxk/uERoFhpFXYiropCuP7bTG7DZgDc
 Nqec5PLt37Y6bV6eaKXpk/0IyvBdO5We+GUOTgf39v9HtDc6rKvHrTMtlr7DEKot
 9d+P9ybQlEwB61pe1HU9lGUKSjMAA6RKsa3qAWcZJQYLylrFVYPbnIsVk3EG6z5v
 0+F1rzTGPcB9iEUp1lKTOw+qk/13tKrLNvAX/Wz9RBpPUvNy2BBXNnEP8I5pCBV4
 C2iyQZAJuGtTHdH96LjVXq9vX78ohnRcOQVrimq8/X6HWrOSU0WYWWJkxcHl4D3d
 3Z6iOrrqWg95NIC/YH3iZHdKsq2KeHGsApZBBYitKCtCfkVchv7nfAb5rocc7u25
 LeOq7Rc/dIM=
 =BJL3
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.5.2-1'
 2016-04-29 02:25:02 +02:00
Ben Hutchings d345dad8c9 Input: gtco - fix crash on detecting device without endpoints (CVE-2016-2187) 2016-04-28 17:21:17 +02:00
Ben Hutchings 127b7cf9a4 Re-group the patch series 2016-04-28 17:17:53 +02:00
Ben Hutchings 32586f7a95 tools/build: Fix bpf(2) feature test (fixes FTBFS on alpha, sh4; closes: #822364) 2016-04-28 16:27:44 +02:00
Ben Hutchings d251b99807 memcg: remove lru_add_drain_all() invocation from mem_cgroup_move_charge() 
Closes: #822084
 2016-04-28 16:24:28 +02:00
Ben Hutchings 9321f394c6 [sparc] Implement and wire up hotplug and modalias_show for vio 
Thanks to Adrian Glaubitz; closes: #815977
 2016-04-28 00:09:05 +02:00
Ben Hutchings f69db0a093 Update to 4.6-rc5 2016-04-27 23:50:01 +02:00
Ben Hutchings dff5585589 module: Invalidate signatures on force-loaded modules 2016-04-23 20:48:33 +02:00
Ben Hutchings 2d9dcd6be6 atl2: Disable unimplemented scatter/gather feature (CVE-2016-2117) 2016-04-22 08:10:30 +01:00
Ben Hutchings b20f5e22b0 [armel/marvell] dts: kirkwood: fix SD slot default configuration for OpenRD (Closes: #811351) 2016-04-22 08:06:49 +01:00
Ben Hutchings fe835b64b1 Update to 4.5.2 
As this includes changes to header_ops and dentry_operations, bump
the ABI number to 2.
 2016-04-22 08:05:48 +01:00
Aurelien Jarno c5cec59895 [mips*] Emulate unaligned LDXC1 and SDXC1 instructions. 2016-04-22 00:01:29 +02:00
Salvatore Bonaccorso 9c63adf133 [x86] USB: usbip: fix potential out-of-bounds write (CVE-2016-3955) 2016-04-19 16:30:27 +02:00
Ben Hutchings 690df616c2 fs: Consolidate softdep declarations in each module 2016-04-14 20:40:33 +01:00
Salvatore Bonaccorso 92f972094e [x86] xen: suppress hugetlbfs in PV guests (CVE-2016-3961) 2016-04-14 20:57:52 +02:00
Ben Hutchings 5539892a39 [x86] Fix visiblity of x32_enabled in x32 conditional syscall patch 
Since it's now used in arch/x86/entry/common.c, move the declaration
to <asm/syscall.h>.
 2016-04-14 18:29:18 +01:00
Ben Hutchings f4701f7d70 Update to 4.6-rc3 
Refresh or drop *many* patches.

aufs: Update support patches to aufs4.x-rcN-20160328
 2016-04-14 15:00:19 +01:00
Ben Hutchings e49fde3f56 fs: Add '#include <linux/module.h>' where necessary in the crypto softdep patch 2016-04-14 00:35:10 +01:00
Ben Hutchings c37887e538 Re-group the patch series 2016-04-13 23:31:28 +01:00
Ben Hutchings a8c2d3c699 nbd: Create size change events for userspace (Closes: #812487) 2016-04-13 23:23:32 +01:00
Ben Hutchings 1d7f287b7a [x86] ACPI / processor: Request native thermal interrupt handling via _OSC (Closes: #817016, #819336) 2016-04-13 23:06:17 +01:00
Ben Hutchings a6c63dfcf4 aufs: Update support patches to aufs4.5-20160328 (Closes: #819748) 2016-04-13 22:21:26 +01:00
Ben Hutchings df965c4112 fs: Add MODULE_SOFTDEP declarations for hard-coded crypto drivers (Closes: #819725) 2016-04-13 22:17:00 +01:00
Ben Hutchings aac56d9572 [x86] mm/32: Enable full randomization on i386 and X86_32 (CVE-2016-3672) 2016-04-13 21:26:06 +01:00
Ben Hutchings e01d7b854c ipv4: Don't do expensive useless work during inetdev destroy (CVE-2016-3156) 2016-04-13 21:24:19 +01:00
Ben Hutchings d0292c6f67 netfilter: x_tables: Fix parsing of IPT_SO_SET_REPLACE blobs (CVE-2016-3134) 2016-04-13 21:11:40 +01:00
Ben Hutchings 68c5c5997c Merge remote-tracking branch 'alioth/sid' 
Merge open changelog entry for 4.4.6-2 into our open changelog entry.

Refresh the new patches.
 2016-04-13 20:52:01 +01:00
Ben Hutchings 6e05e68d7a Update to 4.5.1 2016-04-13 20:49:29 +01:00