[kernel] r11444 - people/waldi/xen-extra/linux-2.6.18-xen-3/debian

[Bastian Blank]

Author: waldi
Date: Thu May 22 14:08:13 2008
New Revision: 11444

Log:
* debian: Update to 2.6.18.dfsg.1-18etch4.
* debian/changelog: Update.
* debian/rules.real.update: Fix.


Modified:
   people/waldi/xen-extra/linux-2.6.18-xen-3/debian/   (props changed)
   people/waldi/xen-extra/linux-2.6.18-xen-3/debian/changelog
   people/waldi/xen-extra/linux-2.6.18-xen-3/debian/rules.real.update

Modified: people/waldi/xen-extra/linux-2.6.18-xen-3/debian/changelog
==============================================================================
--- people/waldi/xen-extra/linux-2.6.18-xen-3/debian/changelog	(original)
+++ people/waldi/xen-extra/linux-2.6.18-xen-3/debian/changelog	Thu May 22 14:08:13 2008
@@ -1,9 +1,48 @@
-linux-2.6.18-xen-3 (2.6.18.dfsg.1-18etch1+xen.1) kernel-waldi-xen-extra; urgency=low
+linux-2.6.18-xen-3 (2.6.18.dfsg.1-18etch4+xen.1) kernel-waldi-xen-extra; urgency=low
 
   * Update Xen patch to 3.1 branch, 3.1.1 release.
 
  -- Bastian Blank <waldi at debian.org>  Mon, 11 Feb 2008 01:43:25 +0100
 
+linux-2.6 (2.6.18.dfsg.1-18etch4) stable-security; urgency=high
+
+  * bugfix/fcntl_setlk-close-race.patch
+    [SECURITY] Fix an SMP race to prevent reordering of flock updates
+    and accesses to the descriptor table on close().
+    See CVE-2008-1669
+
+ -- dann frazier <dannf at debian.org>  Wed, 07 May 2008 15:56:31 -0600
+
+linux-2.6 (2.6.18.dfsg.1-18etch3) stable-security; urgency=high
+
+  * Wrap added code in bugfix/dnotify-race-avoid-abi-change.patch in
+    #ifndef __GENKSYMS__ to avoid ABI change
+  * Revert ABI change introduced in 2.6.18.dfsg.1-18etch2
+
+ -- dann frazier <dannf at debian.org>  Wed, 23 Apr 2008 21:34:26 -0600
+
+linux-2.6 (2.6.18.dfsg.1-18etch2) stable-security; urgency=high
+
+  * bugfix/powerpc-chrp-null-deref.patch
+    [SECURITY][powerpc] Fix NULL pointer dereference if get_property
+    fails on the subarchitecture
+    See CVE-2007-6694
+  * bugfix/mmap-VM_DONTEXPAND.patch
+    [SECURITY] Add VM_DONTEXPAND to vm_flags in drivers that register
+    a fault handler but do not bounds check the offset argument
+    See CVE-2008-0007
+  * bugfix/RLIMIT_CPU-earlier-checking.patch
+    [SECURITY] Move check for an RLIMIT_CPU with a value of 0 earlier
+    to prevent a user escape (closes: #419706)
+    See CVE-2008-1294
+  * bugfix/dnotify-race.patch
+    [SECURITY] Fix a race in the directory notify
+    See CVE-2008-1375
+    This patch changes the ABI
+  * Bump ABI to 7.
+
+ -- dann frazier <dannf at debian.org>  Fri, 11 Apr 2008 23:51:42 -0600
+
 linux-2.6 (2.6.18.dfsg.1-18etch1) stable-security; urgency=high
 
   * bugfix/vmsplice-security.patch

Modified: people/waldi/xen-extra/linux-2.6.18-xen-3/debian/rules.real.update
==============================================================================
--- people/waldi/xen-extra/linux-2.6.18-xen-3/debian/rules.real.update	(original)
+++ people/waldi/xen-extra/linux-2.6.18-xen-3/debian/rules.real.update	Thu May 22 14:08:13 2008
@@ -15,6 +15,6 @@
 $(STAMPS_DIR)/source_$(ARCH)_$(FEATURESET): $(STAMPS_DIR)/source
 	rm -rf '$(DIR)'
 	cp -al '$(SOURCE_DIR)' '$(DIR)'
-	cd '$(DIR)'; python '$(CURDIR)/debian/bin/patch.apply' --overwrite-home='$(CURDIR)/debian/patches-update' -a $(ARCH) -f $(FEATURESET)
+	cd '$(DIR)'; python '$(CURDIR)/debian/bin/patch.apply' --overwrite-home='$(CURDIR)/debian/patches-update' -a $(ARCH) -s $(FEATURESET)
 	touch '$@'