4456cb3bc3
[x86] Input: i8042 - skip selftest on ASUS laptops
2016-10-28 20:16:42 +01:00
d9f03c486b
netfilter: xt_NFLOG: fix unexpected truncated packet ( Closes : #841261 )
2016-10-28 20:16:09 +01:00
f86bc88075
[x86] boot/smp: Don't try to poke disabled/non-existent APIC
...
Closes : #841850
2016-10-26 09:17:48 +02:00
20ade9991b
[armhf] dts: imx53: add support for USB armory board ( Closes : #840137 )
2016-10-24 02:31:45 +01:00
68bef0cc04
Release linux (4.7.8-1).
...
-----BEGIN PGP SIGNATURE-----
iQKPBAABCgB5BQJYB7RuXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ0NjQ0NDA5ODA4QzE3MUUwNTUzMURERUUw
NTRDQjhGMzEzNDNDRjQ0EhxjYXJuaWxAZGViaWFuLm9yZwAKCRAFTLjzE0PPRKbv
EACPw/ltBkYlQohcTxO+Jwg6Pj9J2UAcuQeDBsRLxOONLEcfChUtB6YbWnjpP4n7
PBjFl1oXFlRL2AIp8yJJDNyLRApNHaIJ5Rw15OU0XBZi61iFkMhvZHtFUJI0VifU
40otIo4/IAgWfYjcIl445m13bS21XzaYkT5hDmKihp1975gBP51LyVXtMPvYC2HO
2grpj37HbDEhKfXSxPDG++ID20VrHOyKVNnfyzg9lOe0oNRT36j5i1QJtqQPekh1
gWx98W/QqVpmeyRV1xvFjit2AzjwrIyp8H22wlN5IOG0HXitOrEA0AiQi1pjcMM0
3O6wRmWTiOoiMiCQEQ+O+92U+uALTG0ssq/9rubAW70CieiQLKmQBZiSoY3JVDfl
AojNP89QIx273w2aGQpZUY/RJnFWFy3fdh+c8wuLbTGkV3cCwXTd1VpNvi1EVKKK
SjFytKI3AGLAihXiThbICSiynqsRKdh7ypWzoCF5OxdURk9/HXSOYpk0Ieuqze+R
niLpETsVpfZCSHjjlG/7oaPAdGEqTm1BZ8a36HmzuByGftARwZ0XqaSUMsbOJC+n
nZrljSt1migRNKcONPuAvVucOjtI6Bj52Azdq2KutQiKZt1Kie9jLSA32/VNT6u5
xCRtMNQnatFCUqdJm5pI0pnUgdpL9nykbggY/g0uPBJfEg==
=6RXa
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.8-1'
2016-10-23 04:43:12 +01:00
c5c7172244
mm: remove gup_flags FOLL_WRITE games from __get_user_pages() (CVE-2016-5195)
2016-10-19 17:56:02 +02:00
82d68fe753
KEYS: Fix short sprintf buffer in /proc/keys show function (CVE-2016-7042)
2016-10-13 22:50:12 +02:00
ae695bc66b
scsi: arcmsr: Buffer overflow in arcmsr_iop_message_xfer() (CVE-2016-7425)
2016-10-13 00:24:49 +01:00
efccbd4eb2
posix_acl: Clear SGID bit when setting file permissions (CVE-2016-7097)
2016-10-13 00:23:11 +01:00
c27b72f255
net: add recursion limit to GRO (CVE-2016-7039)
2016-10-13 00:17:03 +01:00
6429254d8f
Release linux (4.7.6-1).
...
-----BEGIN PGP SIGNATURE-----
iQIcBAABCgAGBQJX9/r9AAoJEOe/yOyVhhEJaFIQANHw/AYqMiP/0fnT8TRl1ISq
1jK7KhHKs4h7O+f4r/D31FLUAC+YVhpAqw4aHCiTwg9fjVULLcxaX91AAtpdliGm
NhWPT7/p8S6SiLTZtVxEb8MAzNqTnN4UdoBMdetWvHYSD/zq5U/BSWCTmm5pOu+X
E6mzwHdkgzUF/Wnt3bmmSmU415BG4nW6xIroYfH3DDSoj1pkxSW9BUhIv2L5mY25
emjFyXMqYRKJ93CBbCewNy0sLiL1V94P0r8HIdo2JDQg1QecYnYtV0AC/2kZODhm
9l3OyB6Dp20y5ib+t6/+4WqvmXl6XrvvjZMtHXsyv44gC1j7e0ChrXbsYk//4Lpo
FgQ8IYaNLskPEXyjzNHhwt61i0BIfZmKSJ17ldkgofAmt+Wa1926jFih5twFu5fj
pMkkxlJUZU7QKxEtuhC7bSOzRzoXjb+xx21Zgenhc89GamagRAKncFbRlJ6K+4pS
SMVlnXuLC0MHlUnAxZQ/N7hdhS235UxSFBp3qyOrYDWmjxyXkItyRfd7SKeSk3Vx
ZikpGlvsvExvyzrjTdyLwBmlyj2I+XZxGxOT2pe4EYb1xxLXUTBAqU1Ycsd8XjC3
lUqTn3r29PYeXRYC9eUsJryLJjejdkTIssM5Y9hhoi9KjMnLptRS7tJAeCO+C8QF
Qyhb3De7DCWrkcl8YSJI
=fl9b
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.6-1'
2016-10-07 21:04:15 +01:00
ec2dc97fc9
mm: memcontrol: use special workqueue for creating per-memcg caches
2016-10-07 00:59:09 +01:00
a16ba74627
grsecurity: Delete empty stub Kconfig and Makefile
...
Whatever features we get from Grsecurity in future are almost certain
to come via KSPP, so these aren't going to be useful.
2016-10-05 22:26:02 +01:00
6573a2a7c7
security,perf: Replace GRKERNSEC_PERF_HARDEN patch with the version submitted upstream
...
This hasn't been *accepted* upstream, but maybe some day? It has gone
into AOSP.
2016-10-05 22:23:08 +01:00
78f97bb258
Add of_mdio fixes to make device tree fixed-link definitions work properly
2016-10-02 16:26:16 +01:00
b2480a3dfe
Release linux (4.7.5-1).
...
-----BEGIN PGP SIGNATURE-----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=PYYu
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.5-1'
Drop ABI maintenance patches.
2016-09-26 02:16:56 +01:00
7a0f81fe53
ext4: Fix checksum validation for inodes with small i_extra_isize
...
Closes : #838544 , regression in 4.7.4
2016-09-25 22:00:56 +01:00
bdec0fe8f0
Update to 4.7.5
2016-09-25 03:05:35 +01:00
1f0935b411
Regroup ABI maintenance patches
2016-09-25 01:33:49 +01:00
b37c595561
Release linux (4.7.4-2).
...
-----BEGIN PGP SIGNATURE-----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=s0s4
-----END PGP SIGNATURE-----
Merge tag 'debian/4.7.4-2'
- Drop ABI references and ABI maintenance patches
- Fix Kconfig symbols for omapdss sub-drivers, which were renamed for 4.8
2016-09-22 01:17:51 +01:00
5a8adae35b
[arm64] Revert "arm64: Define AT_VECTOR_SIZE_ARCH for ARCH_DLINFO" (fixes FTBFS)
2016-09-19 18:10:01 +01:00
2d327101d1
[arm64] mm: Limit TASK_SIZE_64 for compatibility
2016-09-16 16:40:35 +01:00
ab1157972f
[powerpcspe] xmon: Don't use ld on 32-bit ( Closes : #836741 )
2016-09-12 20:38:54 +01:00
63e9d321c9
mm, oom: prevent premature OOM killer invocation for high order request
...
Fixes a regression in 4.7 and someone already asked for this.
2016-09-09 20:49:48 +01:00
5f7e2d6a98
i8042: Revert ABI break in 4.7.3
2016-09-09 02:26:58 +01:00
7dd9d01ac5
Update to 4.7.3
2016-09-07 22:07:27 +01:00
95a7eda177
Update to 4.8-rc5
2016-09-07 21:27:44 +01:00
7d47a94178
[arm64] Remove patches in 4.8-rc1
2016-08-28 13:30:32 -07:00
1222968771
Update to 4.8-rc3
2016-08-28 19:52:50 +01:00
2c76695c24
aacraid: Check size values after double-fetch from user (CVE-2016-6480)
2016-08-27 23:17:17 +01:00
0db6147b7d
tcp: fix use after free in tcp_xmit_retransmit_queue() (CVE-2016-6828)
2016-08-27 23:14:24 +01:00
0a8dfe2ccc
[arm64] Add support for securelevel and Secure Boot
...
Closes : #831827 , thanks to Linn Crosetto
2016-08-27 22:17:30 +01:00
6ab7944873
kbuild: Do not export variable name with hyphen ( Closes : #833561 )
2016-08-26 01:43:33 +01:00
68c8135d73
Add hppa/parisc bug fixesfrom Helge Deller
2016-08-25 18:30:06 +01:00
2fddcf7c7f
usbip: Use the locally-installed <linux/usbip.h>
...
Some years back I patched the #include of <linux/usbip.h> to include
the current, uninstalled version through a relative path because the
system-installed version will normally be outdated. We're about to
start copying the source to avoid writing autotools crap into the
source directory, which breaks this relative path.
Since we now install the UAPI headers under debian/build at the start
of the tools build, drop the patch and add that directory to the
include path.
2016-08-25 01:28:48 +01:00
7a54b56ad5
Merge branch 'sid'
...
Drop rt patchset updates as they don't apply to 4.7.
Drop various other patches already in 4.7.
Fold the remaining Debian changes in the open changelog entry for 4.6.7-1
into the open changelog entry here.
2016-08-24 20:43:19 +01:00
f445dbb9d9
Update to 4.7.2
...
Note the CVE IDs and Debian bugs fixed.
Drop the patches that have gone upstream.
2016-08-24 20:40:14 +01:00
a7280813ac
Update to 4.6.7
2016-08-16 11:13:39 +02:00
d42cdc5bfe
audit: fix a double fetch in audit_log_single_execve_arg() (CVE-2016-6136)
2016-08-12 16:27:20 +01:00
8bc5e687b1
[powerpc*] KVM: Book3S HV: Save/restore TM state in H_CEDE (CVE-2016-5412)
2016-08-12 16:25:34 +01:00
d62992a05c
Drop ABI maintenance patches since we're bumping the ABI number
2016-08-12 16:22:46 +01:00
7184d7bfd9
tcp: make challenge acks less predictable (CVE-2016-5696)
2016-08-12 06:52:28 +02:00
457d8bb6bd
Update to 4.6.6
2016-08-11 16:29:28 +02:00
c0e269c0cd
libata: LITE-ON CX1-JB256-HP needs lower max_sectors
...
Closes : #830971
2016-08-05 15:40:08 +02:00
02b2135a4b
Add USB support for NVIDIA Jetson TX1 Developer Kit
...
Add patches from 4.8-rc1 required for USB support on the NVIDIA Jetson
TX1 Developer Kit.
2016-08-02 15:54:01 -07:00
c2a8f662b5
vfs: ioctl: prevent double-fetch in dedupe ioctl (CVE-2016-6516)
2016-08-02 06:47:28 +02:00
f8edc4357a
Fix perf to be able to find debug info based on build-id.
2016-07-31 22:35:09 +02:00
e8c1b8e306
Update to 4.6.5
...
Drop patches applied upstream.
There are some ABI changes still to be resolved.
2016-07-31 01:50:59 +01:00
0ddaf6aed3
cgroups: Enable memory controller by default
2016-07-29 12:23:32 +01:00
4e86887dda
Update to 4.7-rc7
2016-07-14 10:50:31 +01:00
bd2f2b2ea4
bridge: Fix ABI change in 4.6.4
2016-07-14 00:33:32 +01:00
f000506362
apparmor: fix oops, validate buffer size in apparmor_setprocattr() (CVE-2016-6187)
2016-07-13 20:30:05 +02:00
1a1a829223
Update to 4.6.4
2016-07-13 17:57:14 +02:00
38ec618a21
fanotify: Enable FANOTIFY_ACCESS_PERMISSIONS ( Closes : #690737 )
...
Various free and proprietary AV products use this feature and users
apparently want it. But punting access checks to userland seems like
an easy way to deadlock the system, and there will be nothing we can
do about that. So warn and taint the kernel if this feature is
actually used.
2016-07-13 01:53:59 +01:00
0818af71cc
Cherry pick patches for rtc-s35390a from next
...
This fixes shutting down some QNAP NAS devices after being waked up by
the rtc.
2016-07-12 21:44:39 +02:00
ade54804a1
[powerpc*] tm: Always reclaim in start_thread() for exec() class syscalls (CVE-2016-5828)
2016-07-03 16:33:29 +02:00
aab434acde
[x86] Fix incompatiblity between kaslr and hibernation
...
* [amd64] power: Fix crash whan the hibernation code passes control to the
image kernel
* [x86] KASLR, power: Remove x86 hibernation restrictions
2016-07-02 19:29:28 +02:00
3c35987b05
HID: hiddev: validate num_values for HIDIOCGUSAGES, HIDIOCSUSAGES commands (CVE-2016-5829)
2016-06-30 14:53:31 +02:00
419d6356df
Update to 4.6.3
2016-06-27 00:58:54 +02:00
12183bf924
nfsd: check permissions when setting ACLs (CVE-2016-XXXX)
2016-06-25 00:56:15 +02:00
9fd7bbdf1a
netfilter: x_tables: Add fixes for CVE-2016-4997, CVE-2016-4998
...
...and probably other issues never assigned an ID.
2016-06-25 00:19:29 +02:00
f5f99415a2
percpu: Fix synchronization with chunk destruction (CVE-2016-4794)
2016-06-25 00:19:08 +02:00
b782c52536
KEYS: potential uninitialized variable (CVE-2016-4470)
2016-06-25 00:18:47 +02:00
eb1373a157
Update to 4.7-rc4
2016-06-20 13:40:09 +01:00
a808d3112b
Release linux (4.6.2-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAABCgAGBQJXYbBEAAoJEAVMuPMTQ89EM8wP/3llI8Jr6Q+2ktVOqYQ7U0JT
+UEzEuKlVS+3/SjFZv8dAqpM018OJDIiccgzjvuny6MSYHiH//yWG4lC8O2WikBA
RhfbUsNWFImEkwhY8wD1cjuF0QIXNtR7qOKdCPX5wQUiG469WF4F4l3lgWoo01ub
hYXNsGebIjZTQE6KWGm97pvSRNFPT18DulANGpe9m804y2Xs+dQn6dVHKaSYT0BF
labA6C+hCmbMos3gEYNzjbmU9fxYpS98pXq7uc04ryBj3UjGoBlmxeip9yrIiC0I
oZr8kAxz5PCRSqPnhZqE51WO6eLaWIrEGGTnb6sOtbHYsTrNu8iHpWXVCkB8/2GL
LYhOJn3AyqJE4yb69EKSWL7cbVEqyVJHkGntGhTm+tKJP0QmnKlhQY47aViPt4Fc
IXQvUOeG94GROooRTNLp9/3N2di4p4YPNv2QgM5lUJjySWUMCNzw/MjpYfvuIHrp
bowSN5EYDpO6WqcZZVHogM9hJ2Aq+zWYkfK4f38r4T4+g0T8IQ8qMCY/o/LV7uod
KUbQ7SIHK7uAMT9BpJuslCwvwhKdf/9y/bcuOkB2alfR52uApdDkL04uD5jIbjaL
fElOyQPmJPNe0zxP6yZp4G3/JbMhWdX+qc77+GWkj27mBqnBEZKBHjCmU/6Vfv2Y
VolsoZ6sfxJ1pxlUcWPt
=li3O
-----END PGP SIGNATURE-----
Merge tag 'debian/4.6.2-1'
2016-06-18 12:59:57 +01:00
9edbacb8a5
MIPS: libgcc: Fix ABI change in 4.6.2
2016-06-17 01:50:50 +01:00
966488336f
[mips*] Fix ABI change in 4.6.2
2016-06-16 12:37:35 +01:00
ece80cbbec
liblockdep: Add all the patches submitted upstream; drop one that's obsolete
...
(cherry picked from commit 9d20ab14dd77ffa306f6eb70c447c73f69077773)
2016-06-14 23:27:41 +01:00
95cba203d5
rds: fix an infoleak in rds_inc_info_copy (CVE-2016-5244)
2016-06-11 07:26:02 +02:00
01be9139c0
tipc: fix an infoleak in tipc_nl_compat_link_dump (CVE-2016-5243)
2016-06-11 07:18:28 +02:00
91d6f22ed8
Stack overflow via ecryptfs and /proc/$pid/environ (CVE-2016-1583)
...
proc: prevent stacking filesystems on top
ecryptfs: forbid opening files without mmap handler
sched: panic on corrupted stack end
2016-06-11 07:11:08 +02:00
ff5804f208
cpupower: Bump soname version and rename library package accordingly
2016-06-10 14:47:48 +01:00
906f7b1351
Update to 4.7-rc2
...
[rt] Disable until it is updated for 4.7 or later
2016-06-10 14:47:48 +01:00
1537ff1314
Update to 4.6.2
2016-06-09 17:44:47 +01:00
4e2a281abe
Update to 4.6.1
2016-06-05 14:30:35 +01:00
7569482f9b
Merge branch 'sid'
2016-06-05 14:16:31 +01:00
a8fb2b9fbe
mtd: Disable slram and phram when securelevel is enabled
2016-06-03 01:15:37 +01:00
6976b08b12
Release linux (4.5.5-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=gSlx
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.5-1'
2016-05-29 22:33:26 +01:00
1edaa5dd82
Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing"
...
This was reverted upstream in 4.5.5 due to a regression but we have a fix for
the regression (probably).
2016-05-29 22:20:52 +01:00
46e3b9492a
dwc3-exynos: Fix deferred probing storm
...
Closes : #823552 ; thanks to Steinar H. Gunderson
2016-05-29 22:05:54 +01:00
08942bb065
Add upstream fixes for various information leaks
2016-05-29 21:25:44 +01:00
5bec7a0097
[x86] kvm:vmx: more complete state update on APICv on/off (CVE-2016-4440)
2016-05-23 02:35:36 +01:00
327c921aa7
Update to 4.5.5
...
Drop changes that were applied upstream.
Fix/ignore ABI changes.
2016-05-23 02:34:41 +01:00
b88823f96b
Revert "stmmac: Fix 'eth0: No PHY found' regression" ( Closes : #823493 )
2016-05-23 00:59:46 +01:00
342ba3d57d
tipc: check nl sock before parsing nested attributes (CVE-2016-4951)
2016-05-21 16:53:08 +02:00
5ba72559a1
Re-apply "[media] videobuf2-v4l2: Verify planes array in buffer dequeueing"
...
This was reverted upstream in 4.6 due to a regression but we have a fix for
the regression (probably).
2016-05-16 20:06:26 +01:00
eaafcf8a39
Release linux (4.5.4-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=oSkt
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.4-1'
2016-05-16 20:00:43 +01:00
0c5a10d4c1
Update to 4.6
...
Rebase patch series.
2016-05-16 19:49:24 +01:00
be1c8b16ab
KVM: MTRR: remove MSR 0x2f8 (CVE-2016-3713)
2016-05-16 13:47:07 +02:00
48902f4f1a
videobuf2-core: Fix crash after fixing CVE-2016-4568
2016-05-16 03:33:38 +01:00
3eae053b85
uapi glibc compat: fix compile errors when glibc net/if.h included before linux/if.h
...
Closes : #822393
2016-05-16 03:23:55 +01:00
efbab1e4bf
Add various upstream fixes with known or probable security impact
2016-05-16 03:23:35 +01:00
88ec3673ad
net: fix infoleak in llc (CVE-2016-4485)
2016-05-15 20:04:29 +02:00
de9a44e36f
KEYS: Fix ASN.1 indefinite length object parsing (CVE-2016-0758)
2016-05-14 05:18:04 +02:00
4a8b374466
[mips*/octeon] Add support for byte swapped initramfs to handle u-boot and kernel running with a different endianness.
2016-05-13 18:54:45 +02:00
1275559aac
[arm,x86] Fix memory corruption in KVM with THP enabled.
2016-05-12 23:52:30 +02:00
2c6d72a09e
Update to 4.5.4
2016-05-12 21:22:09 +02:00
b101f08c76
[mips*] Fix PR_SET_FPMODE issues with multi-threaded programs.
2016-05-11 00:17:22 +02:00
b92b4d15f0
Update to 4.6-rc7
2016-05-08 23:56:51 +01:00
be31f1ecd5
Release linux (4.5.3-2).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=jVBT
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.3-2'
Drop the ABI reference files and patches.
Rebase patches added on the sid branch.
2016-05-08 21:47:32 +01:00
4ebee8024b
[powerpc*] Fix sstep compile on powerpcspe
...
Closes : #823526 ; thanks to Lennart Sorensen
2016-05-08 12:08:04 +01:00
231812b47f
Re-group the patch series
2016-05-07 19:40:36 +01:00
8b31e1c0a6
Update to 4.5.3
...
Drop changes which were included or superceded upstream.
Fix ABI changes.
2016-05-07 19:40:36 +01:00
405645d788
Add bpf security fixes
2016-05-05 23:13:51 +01:00
ae6831e8b6
Update to 4.6-rc6
2016-05-05 22:17:45 +01:00
5416c1a1e3
Revert "sp5100_tco: fix the device check for SB800 and later chipsets"
...
Probably fixes #822651 , #823146
2016-05-02 21:25:40 +02:00
fc5b920758
Release linux (4.5.2-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=BJL3
-----END PGP SIGNATURE-----
Merge tag 'debian/4.5.2-1'
2016-04-29 02:25:02 +02:00
d345dad8c9
Input: gtco - fix crash on detecting device without endpoints (CVE-2016-2187)
2016-04-28 17:21:17 +02:00
127b7cf9a4
Re-group the patch series
2016-04-28 17:17:53 +02:00
d251b99807
memcg: remove lru_add_drain_all() invocation from mem_cgroup_move_charge()
...
Closes : #822084
2016-04-28 16:24:28 +02:00
9321f394c6
[sparc] Implement and wire up hotplug and modalias_show for vio
...
Thanks to Adrian Glaubitz; closes : #815977
2016-04-28 00:09:05 +02:00
dff5585589
module: Invalidate signatures on force-loaded modules
2016-04-23 20:48:33 +02:00
2d9dcd6be6
atl2: Disable unimplemented scatter/gather feature (CVE-2016-2117)
2016-04-22 08:10:30 +01:00
b20f5e22b0
[armel/marvell] dts: kirkwood: fix SD slot default configuration for OpenRD ( Closes : #811351 )
2016-04-22 08:06:49 +01:00
fe835b64b1
Update to 4.5.2
...
As this includes changes to header_ops and dentry_operations, bump
the ABI number to 2.
2016-04-22 08:05:48 +01:00
c5cec59895
[mips*] Emulate unaligned LDXC1 and SDXC1 instructions.
2016-04-22 00:01:29 +02:00
9c63adf133
[x86] USB: usbip: fix potential out-of-bounds write (CVE-2016-3955)
2016-04-19 16:30:27 +02:00
92f972094e
[x86] xen: suppress hugetlbfs in PV guests (CVE-2016-3961)
2016-04-14 20:57:52 +02:00
f4701f7d70
Update to 4.6-rc3
...
Refresh or drop *many* patches.
aufs: Update support patches to aufs4.x-rcN-20160328
2016-04-14 15:00:19 +01:00
c37887e538
Re-group the patch series
2016-04-13 23:31:28 +01:00
a8c2d3c699
nbd: Create size change events for userspace ( Closes : #812487 )
2016-04-13 23:23:32 +01:00
1d7f287b7a
[x86] ACPI / processor: Request native thermal interrupt handling via _OSC ( Closes : #817016 , #819336 )
2016-04-13 23:06:17 +01:00
df965c4112
fs: Add MODULE_SOFTDEP declarations for hard-coded crypto drivers ( Closes : #819725 )
2016-04-13 22:17:00 +01:00
aac56d9572
[x86] mm/32: Enable full randomization on i386 and X86_32 (CVE-2016-3672)
2016-04-13 21:26:06 +01:00
e01d7b854c
ipv4: Don't do expensive useless work during inetdev destroy (CVE-2016-3156)
2016-04-13 21:24:19 +01:00
d0292c6f67
netfilter: x_tables: Fix parsing of IPT_SO_SET_REPLACE blobs (CVE-2016-3134)
2016-04-13 21:11:40 +01:00
68c5c5997c
Merge remote-tracking branch 'alioth/sid'
...
Merge open changelog entry for 4.4.6-2 into our open changelog entry.
Refresh the new patches.
2016-04-13 20:52:01 +01:00
6e05e68d7a
Update to 4.5.1
2016-04-13 20:49:29 +01:00
5c3489a433
[armel/marvell] Add DT support for "Buffalo/Revogear Kurobox Pro"
2016-04-08 08:33:27 +09:00
119c44d06d
Merge branch 'benh/secure-boot'
2016-04-05 13:59:42 +01:00
24993989ff
[mips*/octeon] Backport Octeon III CN7xxx interface detection from 4.7 queue.
2016-04-04 22:51:21 +02:00
7836b549be
[mips*/octeon] Backport OCTEON SATA controller support from 4.6-rc1. Enable AHCI_OCTEON.
2016-04-04 22:51:11 +02:00
76de9f06e0
scripts: Fix X.509 PEM support in sign-file
...
DER format works but it's easier if we can use PEM everywhere.
2016-04-04 19:28:26 +01:00
7321950826
Add Matthew Garrett's securelevel patchset in preparation for Secure Boot support
2016-04-03 04:31:52 +01:00
ea7af96b4d
Merge branch 'benh/merge-linux-tools'
...
The primary reason not to build userland tools from src:linux was that
it allowed building with a minimal cross-toolchain and without the
target's glibc development files. In particular, the CI system at
kernel-archive.buildserver.net used such minimal cross-toolchains.
It is been a long time since kernel-archive.buildserver.net was
running, so the original reason for the separation no longer exists.
If we implement CI using similarly limited toolchains again, we can use
a build-profile to exclude userland builds, as these are now well
supported.
This merges the full history of both source packages together,
including in debian/changelog (which looks rather weird). The binary
packages resulting from this merge appear to be functionally the same,
though I can't be certain there's no regression.
2016-04-02 15:13:23 +01:00
b1e9b11e7a
[armel/marvell] Add DT support for "Synology DS112" and "Zyxel NSA320"
...
Thanks to Heinrich Schuchardt.
(Closes : #819393 )
2016-03-31 00:30:03 +09:00
d3da98fed6
Cherry-pick ZONE_DEVICE changes from linux-next
2016-03-25 13:45:59 +00:00
f24971b257
Rename and regroup patches from linux-tools
...
Move patches specific to Debian packaging under debian/, and bug fixes that
could go upstream belong under bugfix/. Put them in two separate groups in
the series.
2016-03-21 03:14:46 +00:00
a5f7516c0c
Merge linux-tools source package into linux ( Closes : #550379 , #573483 , #816500 )
...
* Drop redundant gitignore.patch from linux-tools
* Rename linux-tools' debian/templates/control.main.in to
debian/templates/control.tools.in
* Combine changelogs, putting all entries for each upstream release
cycle in chronological order
* Combine rules and gencontrol.py code
2016-03-21 01:32:16 +00:00
fd89731014
linux-perf: Fix use of uninitialized variables
2016-03-20 21:20:16 +00:00
4fe6a76379
Release linux-tools (4.4.6-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=sw9T
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4.6-1'
Move debian/build/tools/power/cpupower/Makefile to
debian/rules.d/tools/power/cpupower/Makefile where it belongs now.
2016-03-20 20:07:25 +00:00
96559e9c4c
Build tools from power/cpupower
...
They'll eventually replace cpufrequtils and libcpufreq{0,-dev} so the
structure of the packages is the same.
2016-03-20 15:49:21 +00:00
8c0226951b
Update to 4.4.6
2016-03-20 15:40:05 +00:00
5c1a796192
[x86] vmxnet3: fix lock imbalance in vmxnet3_tq_xmit() (regression in 4.5)
2016-03-20 11:38:22 +00:00
42fd34bcd1
Release linux (4.4.6-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=5Nfc
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4.6-1'
2016-03-20 01:15:39 +00:00
962c3c4a6f
[x86] iopl/64: properly context-switch IOPL on Xen PV (CVE-2016-3157)
2016-03-17 18:21:13 +01:00
37886b6ea3
netfilter: x_tables: check for size overflow (CVE-2016-3135)
2016-03-17 01:15:05 +00:00
67517892da
Update to 4.4.6
2016-03-17 01:04:39 +00:00
35ecf69e71
Revert "drm/radeon/pm: adjust display configuration after powerstate"
...
Reported to cause a regression on some older hardware.
2016-03-16 04:09:45 +00:00
328762c833
[amd64] Fix more regressions due to "efi: Build our own page table structure"
...
- efi: Fix boot crash by always mapping boot service regions into new EFI
page tables (Closes : #815125 )
- mm/pat: Fix boot crash when 1GB pages are not supported by cpu
Although I don't have confirmation from Norbert Preining for #815125 , it
does look like these fix all the remaining regressions.
2016-03-14 23:45:22 +00:00
20994ffba4
Fix ABI changes in 4.4.5
2016-03-14 23:33:23 +00:00
1e5b912113
Update to 4.5
2016-03-14 11:51:52 +00:00
f0dae39dd6
[x86] drm/i915: Fix oops caused by fbdev initialization failure
2016-03-12 12:13:53 +00:00
f909b077b6
[powerpc*] Revert "powerpc: Simplify module TOC handling"
...
It is not needed to fix #808043 and causes a regression on ppc64el.
See http://thread.gmane.org/gmane.linux.kernel.stable/166201/focus=166415
2016-03-09 02:14:30 +00:00
acdae5bf41
Release linux (4.4.4-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=g/x1
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4.4-1'
Drop changes to the ABI reference and ignore list.
Drop most of the new patches as they're already upstream.
Drop the -rt featureset update.
2016-03-07 22:19:34 +00:00
80ba0eaab8
[powerpc*] Fix module linking to work with binutils 2.26 ( Closes : #808043 )
...
Cherry-picked these two patches from upstream:
- Simplify module TOC handling
- Fix dedotify for binutils >= 2.26
2016-03-07 15:37:29 +00:00
d2894c9e58
Revert "drm/radeon: call hpd_irq_event on resume"
...
It is reported to cause regressions (crash/hang) on some systems.
2016-03-07 07:58:04 +00:00
ab1abc27cc
Fix/ignore module ABI changes in 4.4.4 as appropriate
2016-03-06 03:26:49 +00:00
9f9bdca061
uas: Fix high-order alloc
2016-03-05 18:44:05 +00:00
13ca0a257b
Update to 4.4.4
...
Drop patches included in it.
2016-03-04 14:42:26 +01:00
62226211b4
Update to 4.5-rc6
2016-03-02 14:33:44 +00:00
4db36a2b1c
genirq: Validate action before dereferencing it in handle_irq_event_percpu()
2016-03-01 20:15:44 +01:00
385f5a4548
[armfh] dts: Add DTB for Novena, patches from Vagrant Cascadian
...
(Closes : #815324 )
2016-02-28 19:02:09 +00:00
bcf60af755
Update to 4.4.3
...
Drop several patches that are included in it.
2016-02-28 07:57:17 +01:00
dbe11b4d3b
[x86] KVM: fix conversion of addresses to linear in 32-bit protected mode.
2016-02-26 09:29:37 +01:00
54248be7f5
[armel] dts: Add various device-tree fixes and improvements for Buffalo Linkstation devices.
2016-02-24 18:30:56 +09:00
5810ec7828
unix: correctly track in-flight fds in sending process user_struct
...
Fixes a regression caused by the previous partial fix for CVE-2013-4312.
Ignore ABI changes as we never build unix sockets as a module and
nothing OOT should use the scm functions.
2016-02-24 01:47:32 +00:00
837fc752ad
[armhf] dts: imx6dlq-wandboard-revb1: use unique model id ( Closes : #813881 )
2016-02-24 07:59:05 +09:00
c31998793f
tools/build: Remove bpf() run-time check at build time
2016-02-21 16:45:41 +00:00
eb215f16de
Release linux-tools (4.4-3).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIVAwUAVsnSzee/yOyVhhEJAQp6HQ//YtPneFvZF7XJoJMsl8cqEWM1NKw85YJy
R6zWvohaMRxvKxmessZAgSSXLRfyJB6aob5XafbRwSwGSc99AZYOKqYhf8Qz8nx+
STXGEjGB/mzlJvswz79BGxUN32lVvoV1V3YzHpWRveBClYTiefenj6RmJdVlECnv
cyRRKxhHumkueKtBfTISvsh+jTBu7aZtXh/GV7aLDSlhzzSGCzLZWmtKiKOKH+xX
ta49mLV1kWLJHfBaJg23a5YiIFmKi4+n1EX7T7H9ivgMbIDXKrGPQ7oC1hza1ZrF
xZjS5HHUjlRylwextlzIYKK7kkm3JROWjSWJyxzFGHNH4UC8kKmChovrq93q3Cuu
3rHz5/nuuLsoxjpyk1U97mPGzGpfB+LES45GZq6E8/LejrFVX/HkX9tD92mJB1yt
oBAskRVRKVIHgf9fG3XD8ACBEf8n6Y1gBwJ2DVXY8tacMRTEBe99BN5DCsojjm9X
BZFPlATDhB+ZMFBpmUTYa3pMIs5Pat2to6F6MRTNWNiSn1tbDJj3LrY/yQQJGwUw
I+SYgnQm8vvhjfN64kAu/AgYz5WFv1vk6YvcTKrXuJv2vuMvcV7SqoBSHQgCcHVU
N/H1e5XHBN4KMY9EsSyawLV6Q+Libo5SGDcrzoA80BE5sXwiCbQ5zx2sp17LRJeC
YD67dnle7s0=
=6e+I
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4-3'
Move check-hyperv.c under debian/rules.d.
2016-02-21 16:29:48 +00:00
38cac73239
Update patches to upstream versions
2016-02-21 15:30:51 +00:00
c9699a3466
Release linux (4.4.2-3).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Htrh
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4.2-3'
2016-02-21 13:17:07 +00:00
aae9cf4b6f
Update to 4.5-rc5
2016-02-21 04:12:42 +00:00
88d259a75c
[x86] efi-bgrt: Fix kernel panic when mapping BGRT data ( Closes : #815125 )
...
Plus the following fix-up.
2016-02-20 23:25:05 +00:00
416a13b622
[powerpc] mm: Fix HAVE_ARCH_SOFT_DIRTY dependencies (fixes FTBFS)
...
Drop the previous attempted fix, which didn't work.
2016-02-20 17:29:49 +00:00
6b46662b94
swapops.h: Add #include to fix build failure on powerpc
2016-02-20 04:31:41 +00:00
b0a0319c86
Build fixdep under debian/build and clean it up properly
...
Mattia Dongili noted that it's currently built under tools/build
(upstream bug). Build it under the current output directory
(which means we build it multiple times) and clean all copies.
2016-02-19 01:17:12 +00:00
d97f0b3ee8
[alpha,sh4] Attempt to fix build failures
2016-02-18 23:40:09 +00:00
c232b093cb
[armel,armhf] net: mv643xx_eth: fix packet corruption with TSO and tiny unaligned packets.
...
This looks like it fixes #814681 .
2016-02-18 16:45:54 +00:00
32be752344
lockdep: Add missing macros
2016-02-18 04:14:17 +00:00
c536b8098a
Update to 4.5-rc4
...
Drop/refresh patches as appropriate.
2016-02-18 03:24:24 +00:00
cdcc46b5c4
Release linux (4.4.2-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIVAwUAVsT0Jue/yOyVhhEJAQo96w/+IZBasj9Vf3KovHNaOXaW1rZL6GRVNzpB
OSNqINfAEtvOR8RuwAcA/zgHy7NNDS9CkDQgjGdJKIhdXXem7mG7Oo3iEwb5osL7
HhUPmeTmXqsa5C6GWzNtERrtX6N8XtBV3inR8iSS46XOm+RHq5UnffqZB35DqUbq
G0h5hiZSXXIXbn0MYJWSPAekAmTXdcevGUoe8bIBD+wH/X4oPINmQLkH6PL5iK7B
KHbf7dJ+JnmbsKJdBpfZvPoa6B1a9FL3HLKkOQjmYF0YjIzZe14JHnvjZNULBmj9
eqmwpfPxAmR5XQgUBu1TPx37FB/nJdMUjZQNz01k0Ybv3l6lKocc7YwX3kViitqe
CiWqbq7LPwN1QNGI6Sf7UB/1XjWJPzWsYoZ0AjDH3ihIPrxmYCdjJstFXr0W3qEG
4e3pJv8gqHxP5SSmE5PQQcS8uiisHmADHZc7C02mxWGDLpqb3gmtgrGqQRFjkk55
tpn8jz2fGGt5VQkhpSBE8wWG4fHRFwiLaAsCVv9jE36pLNq5M9U9VnilCPeoTkti
JcDfPYBjma6RVADIU6tkNnjxJcHFXAqEb5Jn0Wq89GGaS1egAlch4K/XYS+OnIH9
m2Fg4P+TdMePDYxh40tNTIwwHcHLffNfe9K+Ien/DmffuQ87Jk4hfKPW/ZXDO3jO
qdrmLXK2BEg=
=syys
-----END PGP SIGNATURE-----
Merge tag 'debian/4.4.2-1'
Drop rt featureset changes.
Drop patches that are already in 4.5-rc4.
Keep the ABI version at 'trunk'.
2016-02-17 22:45:34 +00:00
edd433b85f
Update to 4.4.2
...
Drop patches included in it.
Refresh rt patches with textual conflicts.
2016-02-17 21:19:37 +00:00
96504c2870
IFF_NO_QUEUE: Fix for drivers not calling ether_setup() (regression in 4.3)
2016-02-17 18:00:31 +00:00
5427214b64
[i386/686-pae] PCI: Set pci=nobios by default
2016-02-16 02:51:44 +00:00
fcd5547ba0
[i386/686-pae] mm: Fix types used in pgprot cacheability flags translations
2016-02-16 02:04:23 +00:00
5b76884dc2
[amd64] efi: Build our own page table structure
...
This avoids adding W+X pages to the default page table, which is not
only bad for security but also now triggers a warning on boot.
2016-02-16 02:03:55 +00:00
4b4fa14653
Update to 4.5-rc4
...
Drop many, many patches which went upstream. Refresh others for
filename or context changes, and for removal of radeon UMS support.
[rt] Disable until it is updated for 4.5 or later
aufs: Update support patches to aufs4.x-rcN-20160215
2016-02-15 17:37:08 +00:00
b84086545e
ALSA: usb-audio: avoid freeing umidi object twice (CVE-2016-XXXX)
2016-02-14 04:55:59 +00:00
29ef5032ac
bpf: fix branch offset adjustment on backjumps after patching ctx expansion
...
CVE ID to be assigned.
2016-02-14 04:54:45 +00:00
3c25ed439a
af_unix: Don't set err in unix_stream_read_generic unless there was an error
...
This fixes a regression in 4.4, also introduced in 4.3.4 and various
other stable updates.
2016-02-13 00:56:13 +00:00
2d5f78b62a
Revert "workqueue: make sure delayed work run in local cpu"
...
This caused a regression in 4.3
2016-02-13 00:30:07 +00:00
83fd76229d
af_unix: Guard against other == sk in unix_dgram_sendmsg (regression in 4.2.6-2)
2016-02-13 00:23:18 +00:00
1c28b9c3ed
fs/hugetlbfs/inode.c: fix bugs in hugetlb_vmtruncate_list() (CVE-2016-0617)
...
Fixes a regression in 4.3.
2016-02-12 23:43:07 +00:00
95ece6ebc6
iw_cxgb3: Fix incorrectly returning error on success (CVE-2015-8812)
2016-02-12 23:34:37 +00:00
7f810117b9
[armel] Replace kirkwood and orion5x flavours with a 'marvell' flavour
...
Apply upstream patches from 4.5-rc1 to enable inclusion of orion5x in a
multiplatform build.
Merge configurations as well as possible.
2016-02-07 18:14:32 +00:00
43671fd62b
Re-group fixes in the patch series
2016-02-07 18:08:27 +00:00
536da2762d
Drop ABI fix, not needed in experimental
2016-02-07 18:05:13 +00:00
6c26fa513e
Release linux (4.3.5-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=cqNy
-----END PGP SIGNATURE-----
Merge tag 'debian/4.3.5-1'
2016-02-07 05:28:43 +00:00
af8b80ce07
Fix yet another ABI change due to CVE-2013-4312 mitigation
2016-02-06 23:25:11 +00:00
0df8f2e3e7
hwrng: n2 - Attach on T5/M5, T7/M7 SPARC CPUs ( Closes : #809815 )
2016-02-06 21:25:49 +00:00
ef736f8440
pipe: limit the per-user amount of pages allocated in pipes (CVE-2013-4312)
2016-02-04 20:34:11 +00:00
3180443250
rt2x00: fix monitor mode regression (regression in 4.2)
2016-02-01 17:16:15 +00:00
1ba618c3d3
Update to 4.4.1
2016-02-01 10:59:35 +00:00
ba1393105a
Update to 4.3.5
...
Drop several patches that are included in it.
Fix/ignore various ABI changes.
2016-02-01 10:27:12 +00:00
20ed8bdbac
x86/mm: Add barriers and document switch_mm()-vs-flush synchronization (CVE-2016-2069)
...
Plus a follow-up fix to the comments.
2016-01-29 03:42:16 +00:00
237b83662e
[mips*] Backport math emulation fix from 4.5.
2016-01-27 22:33:18 +01:00
b1fa3fac88
netfilter: nf_nat_redirect: add missing NULL pointer check (CVE-2015-8787)
2016-01-27 19:25:20 +01:00
76c256b5b8
SCSI: fix crashes in sd and sr runtime PM ( Closes : #801925 )
2016-01-27 01:32:15 +00:00
cdfc3b2f30
tcp: fix zero cwnd in tcp_cwnd_reduction (CVE-2016-2070)
2016-01-26 09:00:04 +01:00
024851fa3a
fuse: break infinite loop in fuse_fill_write_pages()
...
This doesn't have a CVE ID yet.
2016-01-23 22:57:21 +00:00
9b355e6846
Update to 4.3.4
2016-01-23 12:11:55 +00:00
68515dfcb9
linux-perf: Fix FTBFS with gcc 6 (used on hppa, sparc64)
2016-01-19 22:11:16 +00:00
72a63706a0
Re-group fixes in the patch series
2016-01-19 13:50:23 +00:00
7aef5117c3
Release linux (4.3.3-6).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=vF8G
-----END PGP SIGNATURE-----
Merge tag 'debian/4.3.3-6'
2016-01-19 13:44:04 +00:00
e9490659aa
KEYS: Fix keyring ref leak in join_session_keyring() (CVE-2016-0728)
2016-01-19 00:41:25 +00:00
ea4dea20ad
linux-perf: Fix reading of build-id from vDSO
2016-01-19 00:18:11 +00:00
e90dec2a0e
bcache: Add upstream fixes marked for stable
...
- fix a livelock when we cause a huge number of cache misses
- Add a cond_resched() call to gc
- clear BCACHE_DEV_UNLINK_DONE flag when attaching a backing device
- fix a leak in bch_cached_dev_run()
- unregister reboot notifier if bcache fails to unregister device
- allows use of register in udev to avoid "device_busy" error.
- prevent crash on changing writeback_running
- Change refill_dirty() to always scan entire disk if necessary
As requested in
https://lists.debian.org/debian-backports/2016/01/msg00067.html
2016-01-17 21:59:33 +00:00
a9736a8ea4
Revert "block/sd: Fix device-imposed transfer length limits"
...
This introduces an ABI change and it's not obvious how to work around that.
2016-01-17 16:40:35 +00:00
18b52b0baa
unix: Fix ABI change for CVE-2013-4312
2016-01-17 16:39:58 +00:00
f335c0cfcc
unix: properly account for FDs passed over unix sockets (CVE-2013-4312)
2016-01-17 09:27:47 +01:00
10211ef4c3
[x86] drm/vmwgfx: Fix a width / pitch mismatch on framebuffer updates
2016-01-16 04:04:53 +00:00
74cadf39f7
block/sd: Fix device-imposed transfer length limits ( Closes : #805252 )
2016-01-16 03:50:08 +00:00
18e70e2c53
Add some security fixes
2016-01-14 23:39:40 +00:00
d2547e3561
xen/gntdev: Grant maps should not be subject to NUMA balancing ( Closes : #810472 )
2016-01-08 19:32:35 +00:00
0f11ea7f19
Update to 4.4-rc8
2016-01-04 01:57:00 +00:00
4689e6426d
Regroup patches in series
2016-01-02 19:20:40 +00:00
e2abaa403e
Merge tag 'debian/4.3.3-3'
...
Drop the ABI reference and ignored symbols.
Drop most of the patches, as they're already upstream.
2016-01-02 19:18:54 +00:00
e148000b24
ptrace: Fix ABI change for priv-esc fix
2016-01-02 16:27:28 +00:00
eafb4c30fd
Revert "xhci: don't finish a TD if we get a short transfer event mid TD"
...
Closes : #808602 , #808953 , regression in 4.3-rc7
2016-01-02 03:09:56 +00:00
50c5af2358
[armhf] crypto: sun4i-ss - add missing statesize ( Closes : #808625 )
2016-01-01 19:46:24 +00:00
50263628e4
[x86] drm/i915: Don't compare has_drrs strictly in pipe config ( Closes : #808720 )
2016-01-01 19:24:50 +00:00
45e2ecad07
drm/nouveau/pmu: do not assume a PMU is present ( Closes : #809481 )
2016-01-01 18:41:43 +00:00
abab5c2745
[x86] kvm: Reload pit counters for all channels when restoring state (CVE-2015-7513)
2015-12-31 15:49:59 +01:00
e57c91d886
KEYS: Fix race between read and revoke (CVE-2015-7550)
2015-12-31 02:53:31 +00:00
6642f73533
[armhf] Add support for BCM2836 and Raspberry Pi 2
...
- Patches for BCM283x drivers taken from linux-next
- A few more changes requested for 4.5:
http://thread.gmane.org/gmane.linux.kernel/2115942
- Enable all the drivers
- Add SD and USB controller drivers to udebs
2015-12-30 04:18:26 +00:00
a52be96b10
Regroup patches in series
2015-12-27 14:11:18 +00:00
3fac5cf03c
ptrace: being capable wrt a process requires mapped uids/gids
2015-12-27 06:19:08 +00:00
7b6f99cec5
[xen] pciback: Fix state validation in MSI control operations (CVE-2015-8551, CVE-2015-8852, XSA-157)
2015-12-27 05:54:06 +00:00
94b974ce0f
[xen] Fix race conditions in back-end drivers (CVE-2015-8550, XSA-155)
2015-12-27 05:49:13 +00:00
1ff79b037c
bluetooth: Validate socket address length in sco_sock_bind() (CVE-2015-8575)
2015-12-27 04:26:45 +00:00
e9708970a6
pptp: verify sockaddr_len in pptp_bind() and pptp_connect() (CVE-2015-8569)
2015-12-27 04:26:45 +00:00
5db0f0e307
block: ensure to split after potentially bouncing a bio ( Closes : #809082 )
2015-12-27 04:26:45 +00:00
d6b9e3f082
ovl: fix permission checking for setattr (CVE-2015-8660)
2015-12-24 06:42:25 +01:00
0aaf811548
Update to 4.4-rc6
2015-12-21 11:13:30 +00:00
fc3ff0606d
mm: Fix missing #include in <linux/mmdebug.h> (fixes FTBFS on arm64)
2015-12-19 20:32:14 +00:00
ee4980cb32
[armhf,sparc64] Force ZONE_DMA to be enabled, reversing ABI change in 4.3.3 (fixes FTBFS)
2015-12-17 17:59:24 +00:00
70157abb7d
Release linux (4.3.3-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=AlwC
-----END PGP SIGNATURE-----
Merge tag 'debian/4.3.3-1'
Drop the ABI reference and ignored symbols.
Drop most of the patches, as they're already upstream.
2015-12-16 17:15:08 +00:00
ca0bbf698b
tipc: Fix kfree_skb() of uninitialised pointer (regression in 4.3.3)
2015-12-15 21:25:16 +00:00
8fd06d9868
vrf: Fix broken backport of "vrf: fix double free and memory corruption on register_netdevice failure" in 4.3.3
2015-12-15 17:44:38 +00:00
Ben Hutchings
Salvatore Bonaccorso
Martin Michlmayr
Uwe Kleine-König
Aurelien Jarno
Roger Shimizu
Mattia Dongili
Ian Campbell