[linux] 01/01: Merge tag 'debian/3.16.7-ckt20-1+deb8u3' into wheezy-backports

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Tue Jan 19 23:38:28 UTC 2016 

This is an automated email from the git hooks/post-receive script.

benh pushed a commit to branch wheezy-backports
in repository linux.

commit 92064eed7ddc549e061695915f23cc29fca75fe7
Merge: 2d3b221 5c6e7b5
Author: Ben Hutchings <ben at decadent.org.uk>
Date:   Tue Jan 19 23:34:07 2016 +0000

    Merge tag 'debian/3.16.7-ckt20-1+deb8u3' into wheezy-backports

 debian/changelog                                   |  27 +++
 ...-keyring-ref-leak-in-join_session_keyring.patch |  75 ++++++++
 ...t-soft-lockup-when-sctp_accept-is-called-.patch | 190 +++++++++++++++++++++
 ...unsafe-ldisc-reference-via-ioctl-tiocgetd.patch |  63 +++++++
 ...ly-account-for-FDs-passed-over-unix-socke.patch | 129 ++++++++++++++
 ...sh-on-detecting-device-without-write_urbs.patch |  31 ++++
 ...unix-fix-abi-change-for-cve-2013-4312-fix.patch |  33 ++++
 debian/patches/series                              |   6 +
 8 files changed, 554 insertions(+)

diff --cc debian/changelog
index 79d13b3,606d35d..7c49351
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,18 +1,42 @@@
++linux (3.16.7-ckt20-1+deb8u3~bpo70+1) wheezy-backports; urgency=medium
++
++  * Rebuild for wheezy:
++    - Disable architectures that weren't part of wheezy
++    - Use gcc-4.6 for all architectures
++    - Change ABI number to 0.bpo.4
++    - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
++    - linux-image: Depend on initramfs-tools without any alternatives, so
++      that neither apt nor aptitude will automatically switch to dracut
++
++ -- Ben Hutchings <ben at decadent.org.uk>  Tue, 19 Jan 2016 23:33:46 +0000
++
+ linux (3.16.7-ckt20-1+deb8u3) jessie-security; urgency=high
+ 
+   [ Ben Hutchings ]
+   * usb: serial: visor: fix crash on detecting device without write_urbs
+     (CVE-2015-7566)
+   * sctp: Prevent soft lockup when sctp_accept() is called during a timeout event
+     (CVE-2015-8767)
+   * tty: Fix unsafe ldisc reference via ioctl(TIOCGETD) (CVE-2016-0723)
+ 
+   [ Salvatore Bonaccorso ]
+   * unix: properly account for FDs passed over unix sockets (CVE-2013-4312)
+   * KEYS: Fix keyring ref leak in join_session_keyring() (CVE-2016-0728)
+ 
+  -- Salvatore Bonaccorso <carnil at debian.org>  Sun, 17 Jan 2016 20:07:28 +0100
+ 
 +linux (3.16.7-ckt20-1+deb8u2~bpo70+1) wheezy-backports; urgency=medium
 +
 +  * Rebuild for wheezy:
 +    - Disable architectures that weren't part of wheezy
 +    - Use gcc-4.6 for all architectures
 +    - Change ABI number to 0.bpo.4
 +    - [arm] btrfs: Work around bug in gcc-4.6 (fixes FTBFS)
 +    - linux-image: Depend on initramfs-tools without any alternatives, so
 +      that neither apt nor aptitude will automatically switch to dracut
 +
 + -- Ben Hutchings <ben at decadent.org.uk>  Sun, 03 Jan 2016 02:19:19 +0000
 +
  linux (3.16.7-ckt20-1+deb8u2) jessie-security; urgency=medium
  
    * [xen] Fix race conditions in back-end drivers (CVE-2015-8550, XSA-155)

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git

More information about the Kernel-svn-changes mailing list