[linux] branch wheezy-security updated (5fb40dc -> d8cef48)
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Wed Dec 28 20:44:02 UTC 2016
This is an automated email from the git hooks/post-receive script.
benh pushed a change to branch wheezy-security
in repository linux.
from 5fb40dc [rt] Update to 3.2.83-rt121 (no functional change)
new ad38f0b Fix CVE-2012-6704 and avoid CVE-2016-9793
new 895207c sg: Fix double-free when drives detach during SG_IO (CVE-2015-8962)
new 31069ba perf: Fix race in swevent hash (CVE-2015-8963)
new afbffdb Fix CVE-2015-8964 and a related bug in gigaset
new 694302d block: fix use-after-free in sys_ioprio_get() (CVE-2016-7911)
new 830f2dc HID: core: prevent out-of-bound readings (CVE-2016-7915)
new 9022b9a net: ping: check minimum size on ICMP header length (CVE-2016-8399)
new 119fcc0 packet: fix race condition in packet_set_ring (CVE-2016-8655)
new 29cdcf0 sctp: validate chunk len before actually using it (CVE-2016-9555)
new d8cef48 sg_write()/bsg_write() is not fit to be called under KERNEL_DS (CVE-2016-9576)
The 10 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 13 +++
...lock-fix-use-after-free-in-sys_ioprio_get.patch | 120 +++++++++++++++++++++
.../hid-core-prevent-out-of-bound-readings.patch | 43 ++++++++
...t-reset-tty-receive_room-when-attaching-s.patch | 47 ++++++++
...signed-overflows-for-so_-snd-rcv-bufforce.patch | 45 ++++++++
.../all/net-cleanups-in-sock_setsockopt.patch | 96 +++++++++++++++++
...-check-minimum-size-on-icmp-header-length.patch | 68 ++++++++++++
...ket-fix-race-condition-in-packet_set_ring.patch | 88 +++++++++++++++
.../bugfix/all/perf-fix-race-in-swevent-hash.patch | 92 ++++++++++++++++
...lidate-chunk-len-before-actually-using-it.patch | 54 ++++++++++
...uble-free-when-drives-detach-during-sg_io.patch | 66 ++++++++++++
...g_write-is-not-fit-to-be-called-under-ker.patch | 42 ++++++++
...-ldisc-drivers-from-re-using-stale-tty-fi.patch | 75 +++++++++++++
debian/patches/series | 12 +++
14 files changed, 861 insertions(+)
create mode 100644 debian/patches/bugfix/all/block-fix-use-after-free-in-sys_ioprio_get.patch
create mode 100644 debian/patches/bugfix/all/hid-core-prevent-out-of-bound-readings.patch
create mode 100644 debian/patches/bugfix/all/isdn-gigaset-reset-tty-receive_room-when-attaching-s.patch
create mode 100644 debian/patches/bugfix/all/net-avoid-signed-overflows-for-so_-snd-rcv-bufforce.patch
create mode 100644 debian/patches/bugfix/all/net-cleanups-in-sock_setsockopt.patch
create mode 100644 debian/patches/bugfix/all/net-ping-check-minimum-size-on-icmp-header-length.patch
create mode 100644 debian/patches/bugfix/all/packet-fix-race-condition-in-packet_set_ring.patch
create mode 100644 debian/patches/bugfix/all/perf-fix-race-in-swevent-hash.patch
create mode 100644 debian/patches/bugfix/all/sctp-validate-chunk-len-before-actually-using-it.patch
create mode 100644 debian/patches/bugfix/all/sg-fix-double-free-when-drives-detach-during-sg_io.patch
create mode 100644 debian/patches/bugfix/all/sg_write-bsg_write-is-not-fit-to-be-called-under-ker.patch
create mode 100644 debian/patches/bugfix/all/tty-prevent-ldisc-drivers-from-re-using-stale-tty-fi.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list