[linux] branch jessie-security updated (2473d35 -> 7f5c484)
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Thu Dec 1 00:23:46 UTC 2016
This is an automated email from the git hooks/post-receive script.
benh pushed a change to branch jessie-security
in repository linux.
from 2473d35 Prepare to release linux (3.16.36-1+deb8u2).
new b8d361a Add fix for CVE-2015-1350
new 76cee5f [arm64] perf: reject groups spanning multiple HW PMUs (CVE-2015-8955)
new b983d3f Add fix for CVE-2016-5412
new 432e92a posix_acl: Clear SGID bit when setting file permissions (CVE-2016-7097)
new 21e9b27 block: fix use-after-free in seq file (CVE-2016-7910)
new e78f20c block: fix use-after-free in sys_ioprio_get() (CVE-2016-7911)
new 4fae4ce firewire: net: guard against rx buffer overflows (CVE-2016-8633)
new 0f6c24a brcmfmac: avoid potential stack overflow in brcmf_cfg80211_start_ap() (CVE-2016-8658)
new 7f5c484 vfio/pci: Fix integer overflows, bitmask check (CVE-2016-9083, CVE-2016-9084)
The 9 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 22 +
.../all/block-fix-use-after-free-in-seq-file.patch | 107 ++++
...lock-fix-use-after-free-in-sys_ioprio_get.patch | 118 ++++
...stack-overflow-in-brcmf_cfg80211_start_ap.patch | 34 ++
...ire-net-guard-against-rx-buffer-overflows.patch | 126 ++++
...-avoid-premature-clearing-of-capabilities.patch | 72 +++
...entry-to-inode_change_ok-instead-of-inode.patch | 679 +++++++++++++++++++++
...-propagate-dentry-down-to-inode_change_ok.patch | 69 +++
...ar-sgid-bit-when-setting-file-permissions.patch | 379 ++++++++++++
...o-pci-fix-integer-overflows-bitmask-check.patch | 94 +++
...-propagate-dentry-down-to-inode_change_ok.patch | 211 +++++++
...f-reject-groups-spanning-multiple-hw-pmus.patch | 109 ++++
...l-out-tm-state-save-restore-into-separate.patch | 504 +++++++++++++++
...book3s-hv-save-restore-tm-state-in-h_cede.patch | 65 ++
.../fs-fix-abi-change-for-cve-2015-1350.patch | 126 ++++
debian/patches/series | 14 +
16 files changed, 2729 insertions(+)
create mode 100644 debian/patches/bugfix/all/block-fix-use-after-free-in-seq-file.patch
create mode 100644 debian/patches/bugfix/all/block-fix-use-after-free-in-sys_ioprio_get.patch
create mode 100644 debian/patches/bugfix/all/brcmfmac-avoid-potential-stack-overflow-in-brcmf_cfg80211_start_ap.patch
create mode 100644 debian/patches/bugfix/all/firewire-net-guard-against-rx-buffer-overflows.patch
create mode 100644 debian/patches/bugfix/all/fs-avoid-premature-clearing-of-capabilities.patch
create mode 100644 debian/patches/bugfix/all/fs-give-dentry-to-inode_change_ok-instead-of-inode.patch
create mode 100644 debian/patches/bugfix/all/fuse-propagate-dentry-down-to-inode_change_ok.patch
create mode 100644 debian/patches/bugfix/all/posix_acl-clear-sgid-bit-when-setting-file-permissions.patch
create mode 100644 debian/patches/bugfix/all/vfio-pci-fix-integer-overflows-bitmask-check.patch
create mode 100644 debian/patches/bugfix/all/xfs-propagate-dentry-down-to-inode_change_ok.patch
create mode 100644 debian/patches/bugfix/arm64/arm64-perf-reject-groups-spanning-multiple-hw-pmus.patch
create mode 100644 debian/patches/bugfix/powerpc/kvm-ppc-book3s-hv-pull-out-tm-state-save-restore-into-separate.patch
create mode 100644 debian/patches/bugfix/powerpc/kvm-ppc-book3s-hv-save-restore-tm-state-in-h_cede.patch
create mode 100644 debian/patches/debian/fs-fix-abi-change-for-cve-2015-1350.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list