[linux] 01/01: Merge tag 'debian/3.16.7-ckt11-1+deb8u4' into wheezy-backports

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Sun Sep 27 11:24:43 UTC 2015


This is an automated email from the git hooks/post-receive script.

benh pushed a commit to branch wheezy-backports
in repository linux.

commit 27cc5dcb68c3730ca5d0724e53d000a280bc5aaa
Merge: 23ce984 7a15f4d
Author: Ben Hutchings <ben at decadent.org.uk>
Date:   Tue Sep 22 16:39:14 2015 +0200

    Merge tag 'debian/3.16.7-ckt11-1+deb8u4' into wheezy-backports

 debian/changelog                                   |  28 ++++++
 ...ache-handle-escaped-paths-in-prepend_path.patch |  58 ++++++++++++
 ...rconf-validate-new-MTU-before-applying-it.patch |  61 ++++++++++++
 ...open-coded-terminate_walk-in-follow_dotdo.patch |  66 +++++++++++++
 ...the-underlying-transport-exists-before-cr.patch |  74 +++++++++++++++
 ...r-and-handle-paths-that-are-unreachable-f.patch | 103 +++++++++++++++++++++
 .../vhost-actually-track-log-eventfd-file.patch    |  28 ++++++
 .../all/virtio-net-drop-netif_f_fraglist.patch     |  36 +++++++
 .../features/all/aufs3/aufs3-mmap-fix-races.patch  |  50 ++++++++++
 debian/patches/series                              |   8 ++
 10 files changed, 512 insertions(+)

diff --cc debian/changelog
index 51b7185,a334bc1..d0f386f
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,19 +1,43 @@@
++linux (3.16.7-ckt11-1+deb8u4~bpo70+1) wheezy-backports; urgency=medium
++
++  * Rebuild for wheezy:
++    - Disable architectures that weren't part of wheezy
++    - Use gcc-4.6 for all architectures
++    - Change ABI number to 0.bpo.4
++    - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
++    - linux-image: Depend on initramfs-tools without any alternatives, so
++      that neither apt nor aptitude will automatically switch to dracut
++
++ -- Ben Hutchings <ben at decadent.org.uk>  Tue, 22 Sep 2015 16:27:45 +0200
++
+ linux (3.16.7-ckt11-1+deb8u4) jessie-security; urgency=medium
+ 
+   * ipv6: addrconf: validate new MTU before applying it (CVE-2015-0272)
+   * virtio-net: drop NETIF_F_FRAGLIST (CVE-2015-5156)
+   * vhost: actually track log eventfd file (CVE-2015-6252)
+   * aufs3: mmap: Fix races in madvise_remove() and sys_msync() (Closes: #796036)
+   * RDS: verify the underlying transport exists before creating a connection
+     (CVE-2015-6937)
+   * vfs: Fix possible escape from mount namespace (CVE-2015-2925):
+     - namei: lift (open-coded) terminate_walk() in follow_dotdot_rcu() into
+       callers
+     - dcache: Handle escaped paths in prepend_path
+     - vfs: Test for and handle paths that are unreachable from their mnt_root
+ 
+  -- Ben Hutchings <ben at decadent.org.uk>  Sat, 19 Sep 2015 15:07:53 +0200
+ 
 +linux (3.16.7-ckt11-1+deb8u3~bpo70+1) wheezy-backports; urgency=high
 +
 +  * Rebuild for wheezy:
 +    - Disable architectures that weren't part of wheezy
 +    - Use gcc-4.6 for all architectures
 +    - Change ABI number to 0.bpo.4
 +    - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
 +    - linux-image: Depend on initramfs-tools without any alternatives, so
 +      that neither apt nor aptitude will automatically switch to dracut
 +
 + -- Ben Hutchings <ben at decadent.org.uk>  Sat, 08 Aug 2015 21:01:58 +0200
 +
  linux (3.16.7-ckt11-1+deb8u3) jessie-security; urgency=high
  
    * path_openat(): fix double fput() (CVE-2015-5706)

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git



More information about the Kernel-svn-changes mailing list