[kernel] r22825 - in dists/trunk/linux: . debian debian/patches debian/patches/bugfix/x86
Ben Hutchings
benh at moszumanska.debian.org
Sat Jul 11 16:50:09 UTC 2015
Author: benh
Date: Sat Jul 11 16:50:09 2015
New Revision: 22825
Log:
Merge changes from sid up to 4.0.8-1
Added:
dists/trunk/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch
- copied unchanged from r22822, dists/sid/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch
Modified:
dists/trunk/linux/ (props changed)
dists/trunk/linux/debian/changelog
dists/trunk/linux/debian/patches/series
Modified: dists/trunk/linux/debian/changelog
==============================================================================
--- dists/trunk/linux/debian/changelog Sat Jul 11 16:48:41 2015 (r22824)
+++ dists/trunk/linux/debian/changelog Sat Jul 11 16:50:09 2015 (r22825)
@@ -38,6 +38,73 @@
-- Ben Hutchings <ben at decadent.org.uk> Tue, 07 Jul 2015 09:15:45 +0100
+linux (4.0.8-1) unstable; urgency=medium
+
+ * New upstream stable update:
+ https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.0.8
+ - netfilter: nft_rbtree: fix locking
+ - [armhf] clk-imx6q: refine sata's parent
+ - KVM: nSVM: Check for NRIPS support before updating control field
+ - [sparc*] Use GFP_ATOMIC in ldc_alloc_exp_dring() as it can be called in
+ softirq context
+ - bridge: fix multicast router rlist endless loop
+ - net: igb: fix the start time for periodic output signals
+ - net: don't wait for order-3 page allocation
+ - sctp: fix ASCONF list handling (CVE-2015-3212)
+ - bridge: fix br_stp_set_bridge_priority race conditions
+ - packet: read num_members once in packet_rcv_fanout()
+ - packet: avoid out of bounds read in round robin fanout
+ - neigh: do not modify unlinked entries
+ - tcp: Do not call tcp_fastopen_reset_cipher from interrupt context
+ - ip: report the original address of ICMP messages
+ - net/mlx4_en: Release TX QP when destroying TX ring
+ - net/mlx4_en: Wake TX queues only when there's enough room
+ - net/mlx4_en: Fix wrong csum complete report when rxvlan offload is
+ disabled
+ - mlx4: Disable HA for SRIOV PF RoCE devices
+ - net: phy: fix phy link up when limiting speed via device tree
+ - bnx2x: fix lockdep splat
+ - sctp: Fix race between OOTB responce and route removal
+ - [armhf] net: mvneta: introduce compatible string "marvell, armada-xp-neta"
+ - [armhf] mvebu: update Ethernet compatible string for Armada XP
+ - [armhf] net: mvneta: disable IP checksum with jumbo frames for Armada 370
+ - usb: gadget: f_fs: fix check in read operation
+ - usb: gadget: f_fs: add extra check before unregister_gadget_item
+ - crypto: talitos - avoid memleak in talitos_alg_alloc()
+ - Revert "crypto: talitos - convert to use be16_add_cpu()"
+ - [armhf/armmp-lpae] iommu/arm-smmu: Fix broken ATOS check
+ - [x86] iommu/amd: Handle large pages correctly in free_pagetable
+ - mmc: sdhci: fix low memory corruption
+ - [x86] intel_pstate: set BYT MSR with wrmsrl_on_cpu()
+ - selinux: fix setting of security labels on NFS
+ - [armhf] KVM: force execution of HCPTR access on VM exit
+ - [armhf] kvm: psci: fix handling of unimplemented functions
+ - [armhf] tegra20: Store CPU "resettable" status in IRAM
+ - [powerpc*] tick/idle: Do not register idle states with
+ CPUIDLE_FLAG_TIMER_STOP set in periodic mode
+ - [powerpc*] perf: Fix book3s kernel to userspace backtraces
+ - [x86] PCI: Use host bridge _CRS info on systems with >32 bit addressing
+ - [x86] PCI: Use host bridge _CRS info on Foxconn K8M890-8237A
+ - [s390x] KVM: fix external call injection without sigp interpretation
+ - [s390x] kdump: fix REGSET_VX_LOW vector register ELF notes
+ - [s390x] KVM: virtio-ccw: don't overwrite config space values
+ - [x86] KVM: properly restore LVT0
+ - [x86] KVM: make vapics_in_nmi_mode atomic
+ - fs: Fix S_NOSEC handling
+ - fs/ufs: revert "ufs: fix deadlocks introduced by sb mutex merge"
+ - fs/ufs: restore s_lock mutex
+ - vfs: Remove incorrect debugging WARN in prepend_path
+ - vfs: Ignore unlocked mounts in fs_fully_visible
+ - ufs: Fix warning from unlock_new_inode()
+ - ufs: Fix possible deadlock when looking up directories
+ - fs/ufs: restore s_lock mutex_init()
+
+ [ Ben Hutchings ]
+ * [ppc64el] Ignore ABI changes due to disabling HIBERNATION (fixes FTBFS)
+ * [x86] kvm: fix kvm_apic_has_events to check for NULL pointer (CVE-2015-4692)
+
+ -- Ben Hutchings <ben at decadent.org.uk> Sat, 11 Jul 2015 04:58:05 +0100
+
linux (4.0.7-1) unstable; urgency=medium
* New upstream stable update:
Copied: dists/trunk/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch (from r22822, dists/sid/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch)
==============================================================================
--- /dev/null 00:00:00 1970 (empty, because file is newly added)
+++ dists/trunk/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch Sat Jul 11 16:50:09 2015 (r22825, copy of r22822, dists/sid/linux/debian/patches/bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch)
@@ -0,0 +1,24 @@
+From: Paolo Bonzini <pbonzini at redhat.com>
+Date: Sat, 30 May 2015 14:31:24 +0200
+Subject: kvm: x86: fix kvm_apic_has_events to check for NULL pointer
+Origin: https://git.kernel.org/linus/ce40cd3fc7fa40a6119e5fe6c0f2bc0eb4541009
+
+Malicious (or egregiously buggy) userspace can trigger it, but it
+should never happen in normal operation.
+
+Signed-off-by: Paolo Bonzini <pbonzini at redhat.com>
+---
+ arch/x86/kvm/lapic.h | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+--- a/arch/x86/kvm/lapic.h
++++ b/arch/x86/kvm/lapic.h
+@@ -165,7 +165,7 @@ static inline u16 apic_logical_id(struct
+
+ static inline bool kvm_apic_has_events(struct kvm_vcpu *vcpu)
+ {
+- return vcpu->arch.apic->pending_events;
++ return kvm_vcpu_has_lapic(vcpu) && vcpu->arch.apic->pending_events;
+ }
+
+ bool kvm_apic_pending_eoi(struct kvm_vcpu *vcpu, int vector);
Modified: dists/trunk/linux/debian/patches/series
==============================================================================
--- dists/trunk/linux/debian/patches/series Sat Jul 11 16:48:41 2015 (r22824)
+++ dists/trunk/linux/debian/patches/series Sat Jul 11 16:50:09 2015 (r22825)
@@ -78,3 +78,5 @@
# Miscellaneous features
features/all/efi-autoload-efi-pstore.patch
+
+bugfix/x86/kvm-x86-fix-kvm_apic_has_events-to-check-for-null-po.patch
More information about the Kernel-svn-changes
mailing list