[linux] branch jessie updated (572f863 -> 48428f5)
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Tue Feb 28 09:57:31 UTC 2017
This is an automated email from the git hooks/post-receive script.
carnil pushed a change to branch jessie
in repository linux.
from 572f863 Fix patch grouping in series
adds b8d361a Add fix for CVE-2015-1350
adds 76cee5f [arm64] perf: reject groups spanning multiple HW PMUs (CVE-2015-8955)
adds b983d3f Add fix for CVE-2016-5412
adds 432e92a posix_acl: Clear SGID bit when setting file permissions (CVE-2016-7097)
adds 21e9b27 block: fix use-after-free in seq file (CVE-2016-7910)
adds e78f20c block: fix use-after-free in sys_ioprio_get() (CVE-2016-7911)
adds 4fae4ce firewire: net: guard against rx buffer overflows (CVE-2016-8633)
adds 0f6c24a brcmfmac: avoid potential stack overflow in brcmf_cfg80211_start_ap() (CVE-2016-8658)
adds 7f5c484 vfio/pci: Fix integer overflows, bitmask check (CVE-2016-9083, CVE-2016-9084)
adds 3784b224 Merge tag 'debian/3.16.39-1' into jessie-security
adds 651fe4f perf: Fix event->ctx locking (CVE-2016-6786)
adds d5b00cd perf/core: Fix concurrent sys_perf_event_open() vs. 'move_group' race (CVE-2017-6001)
adds ea39f04 Add missing CVE id for CVE-2016-6787
adds 74ee201 dccp: fix freeing skb too early for IPV6_RECVPKTINFO (CVE-2017-6074)
adds e305395 sctp: avoid BUG_ON on sctp_wait_for_sndbuf (CVE-2017-5986)
adds 41ab2a2 Fix reference leak in "perf/core: Fix concurrent sys_perf_event_open() ..."
adds 4013919 perf: Do not double free
adds 62b920d fbdev: color map copying bounds checking (CVE-2016-8405)
adds 6e49ff2 sysctl: Drop reference added by grab_header in proc_sys_readdir (CVE-2016-919)
adds c448fa9 [x86] KVM: fix emulation of "MOV SS, null selector" (CVE-2017-2583)
adds e8540d0 [x86] KVM: Introduce segmented_write_std (CVE-2017-2584)
adds 4acd7cd selinux: fix off-by-one in setprocattr (CVE-2017-2618)
adds 1fecc8f USB: serial: kl5kusb105: fix line-state error handling (CVE-2017-5549)
adds 8fb318b tmpfs: clear S_ISGID when setting posix ACLs (CVE-2017-5551)
adds de45963 ip6_gre: fix ip6gre_err() invalid reads (CVE-2017-5897)
adds ee1e373 Fix typo in CVE id for CVE-2016-9191
adds 5b57e23 [x86] kvm: fix page struct leak in handle_vmon (CVE-2017-2596)
adds 1abe2f0 ipv4: keep skb->dst around in presence of IP options (CVE-2017-5970)
adds 32dd1ef Fix missing #include in "ip6_gre: fix ip6gre_err() invalid reads"
adds 36bf801 Revert "sctp: avoid BUG_ON on sctp_wait_for_sndbuf (CVE-2017-5986)"
adds 5d73ae1 Prepare to release linux (3.16.39-1+deb8u1).
new 48428f5 Merge tag 'debian/3.16.39-1+deb8u1' into jessie
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 24 +
...reeing-skb-too-early-for-IPV6_RECVPKTINFO.patch | 47 ++
.../fbdev-color-map-copying-bounds-checking.patch | 80 ++++
.../all/ip6_gre-fix-ip6gre_err-invalid-reads.patch | 98 ++++
...-skb-dst-around-in-presence-of-ip-options.patch | 43 ++
.../bugfix/all/perf-Fix-event-ctx-locking.patch | 501 +++++++++++++++++++++
...ix-concurrent-sys_perf_event_open-vs.-mov.patch | 152 +++++++
.../bugfix/all/perf-do-not-double-free.patch | 47 ++
.../selinux-fix-off-by-one-in-setprocattr.patch | 61 +++
...-added-by-grab_header-in-proc_sys_readdir.patch | 83 ++++
...pfs-clear-s_isgid-when-setting-posix-acls.patch | 41 ++
...-kl5kusb105-fix-line-state-error-handling.patch | 37 ++
.../kvm-fix-page-struct-leak-in-handle_vmon.patch | 40 ++
...x86-fix-emulation-of-mov-ss-null-selector.patch | 104 +++++
.../kvm-x86-introduce-segmented_write_std.patch | 59 +++
debian/patches/series | 14 +
16 files changed, 1431 insertions(+)
create mode 100644 debian/patches/bugfix/all/dccp-fix-freeing-skb-too-early-for-IPV6_RECVPKTINFO.patch
create mode 100644 debian/patches/bugfix/all/fbdev-color-map-copying-bounds-checking.patch
create mode 100644 debian/patches/bugfix/all/ip6_gre-fix-ip6gre_err-invalid-reads.patch
create mode 100644 debian/patches/bugfix/all/ipv4-keep-skb-dst-around-in-presence-of-ip-options.patch
create mode 100644 debian/patches/bugfix/all/perf-Fix-event-ctx-locking.patch
create mode 100644 debian/patches/bugfix/all/perf-core-Fix-concurrent-sys_perf_event_open-vs.-mov.patch
create mode 100644 debian/patches/bugfix/all/perf-do-not-double-free.patch
create mode 100644 debian/patches/bugfix/all/selinux-fix-off-by-one-in-setprocattr.patch
create mode 100644 debian/patches/bugfix/all/sysctl-drop-reference-added-by-grab_header-in-proc_sys_readdir.patch
create mode 100644 debian/patches/bugfix/all/tmpfs-clear-s_isgid-when-setting-posix-acls.patch
create mode 100644 debian/patches/bugfix/all/usb-serial-kl5kusb105-fix-line-state-error-handling.patch
create mode 100644 debian/patches/bugfix/x86/kvm-fix-page-struct-leak-in-handle_vmon.patch
create mode 100644 debian/patches/bugfix/x86/kvm-x86-fix-emulation-of-mov-ss-null-selector.patch
create mode 100644 debian/patches/bugfix/x86/kvm-x86-introduce-segmented_write_std.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list