[linux] 01/01: Merge tag 'debian/3.16.7-ckt11-1+deb8u4' into wheezy-backports
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Sun Sep 27 11:24:43 UTC 2015
This is an automated email from the git hooks/post-receive script.
benh pushed a commit to branch wheezy-backports
in repository linux.
commit 27cc5dcb68c3730ca5d0724e53d000a280bc5aaa
Merge: 23ce984 7a15f4d
Author: Ben Hutchings <ben at decadent.org.uk>
Date: Tue Sep 22 16:39:14 2015 +0200
Merge tag 'debian/3.16.7-ckt11-1+deb8u4' into wheezy-backports
debian/changelog | 28 ++++++
...ache-handle-escaped-paths-in-prepend_path.patch | 58 ++++++++++++
...rconf-validate-new-MTU-before-applying-it.patch | 61 ++++++++++++
...open-coded-terminate_walk-in-follow_dotdo.patch | 66 +++++++++++++
...the-underlying-transport-exists-before-cr.patch | 74 +++++++++++++++
...r-and-handle-paths-that-are-unreachable-f.patch | 103 +++++++++++++++++++++
.../vhost-actually-track-log-eventfd-file.patch | 28 ++++++
.../all/virtio-net-drop-netif_f_fraglist.patch | 36 +++++++
.../features/all/aufs3/aufs3-mmap-fix-races.patch | 50 ++++++++++
debian/patches/series | 8 ++
10 files changed, 512 insertions(+)
diff --cc debian/changelog
index 51b7185,a334bc1..d0f386f
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,19 +1,43 @@@
++linux (3.16.7-ckt11-1+deb8u4~bpo70+1) wheezy-backports; urgency=medium
++
++ * Rebuild for wheezy:
++ - Disable architectures that weren't part of wheezy
++ - Use gcc-4.6 for all architectures
++ - Change ABI number to 0.bpo.4
++ - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
++ - linux-image: Depend on initramfs-tools without any alternatives, so
++ that neither apt nor aptitude will automatically switch to dracut
++
++ -- Ben Hutchings <ben at decadent.org.uk> Tue, 22 Sep 2015 16:27:45 +0200
++
+ linux (3.16.7-ckt11-1+deb8u4) jessie-security; urgency=medium
+
+ * ipv6: addrconf: validate new MTU before applying it (CVE-2015-0272)
+ * virtio-net: drop NETIF_F_FRAGLIST (CVE-2015-5156)
+ * vhost: actually track log eventfd file (CVE-2015-6252)
+ * aufs3: mmap: Fix races in madvise_remove() and sys_msync() (Closes: #796036)
+ * RDS: verify the underlying transport exists before creating a connection
+ (CVE-2015-6937)
+ * vfs: Fix possible escape from mount namespace (CVE-2015-2925):
+ - namei: lift (open-coded) terminate_walk() in follow_dotdot_rcu() into
+ callers
+ - dcache: Handle escaped paths in prepend_path
+ - vfs: Test for and handle paths that are unreachable from their mnt_root
+
+ -- Ben Hutchings <ben at decadent.org.uk> Sat, 19 Sep 2015 15:07:53 +0200
+
+linux (3.16.7-ckt11-1+deb8u3~bpo70+1) wheezy-backports; urgency=high
+
+ * Rebuild for wheezy:
+ - Disable architectures that weren't part of wheezy
+ - Use gcc-4.6 for all architectures
+ - Change ABI number to 0.bpo.4
+ - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
+ - linux-image: Depend on initramfs-tools without any alternatives, so
+ that neither apt nor aptitude will automatically switch to dracut
+
+ -- Ben Hutchings <ben at decadent.org.uk> Sat, 08 Aug 2015 21:01:58 +0200
+
linux (3.16.7-ckt11-1+deb8u3) jessie-security; urgency=high
* path_openat(): fix double fput() (CVE-2015-5706)
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list