[linux] 01/01: Merge tag 'debian/3.16.39-1+deb8u1' into jessie

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Tue Feb 28 09:57:31 UTC 2017 

This is an automated email from the git hooks/post-receive script.

carnil pushed a commit to branch jessie
in repository linux.

commit 48428f5fc830a5eff443e2d38ed4cdcd69ed1f45
Merge: 572f863 5d73ae1
Author: Salvatore Bonaccorso <carnil at debian.org>
Date:   Tue Feb 28 10:54:55 2017 +0100

    Merge tag 'debian/3.16.39-1+deb8u1' into jessie
    
    Release linux (3.16.39-1+deb8u1).

 debian/changelog                                   |  24 +
 ...reeing-skb-too-early-for-IPV6_RECVPKTINFO.patch |  47 ++
 .../fbdev-color-map-copying-bounds-checking.patch  |  80 ++++
 .../all/ip6_gre-fix-ip6gre_err-invalid-reads.patch |  98 ++++
 ...-skb-dst-around-in-presence-of-ip-options.patch |  43 ++
 .../bugfix/all/perf-Fix-event-ctx-locking.patch    | 501 +++++++++++++++++++++
 ...ix-concurrent-sys_perf_event_open-vs.-mov.patch | 152 +++++++
 .../bugfix/all/perf-do-not-double-free.patch       |  47 ++
 .../selinux-fix-off-by-one-in-setprocattr.patch    |  61 +++
 ...-added-by-grab_header-in-proc_sys_readdir.patch |  83 ++++
 ...pfs-clear-s_isgid-when-setting-posix-acls.patch |  41 ++
 ...-kl5kusb105-fix-line-state-error-handling.patch |  37 ++
 .../kvm-fix-page-struct-leak-in-handle_vmon.patch  |  40 ++
 ...x86-fix-emulation-of-mov-ss-null-selector.patch | 104 +++++
 .../kvm-x86-introduce-segmented_write_std.patch    |  59 +++
 debian/patches/series                              |  14 +
 16 files changed, 1431 insertions(+)

diff --cc debian/changelog
index 2cc7b41,af26780..ff22c3b
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,27 +1,33 @@@
 +linux (3.16.39-2) UNRELEASED; urgency=medium
 +
 +  * locking/mutex: Don't assume TASK_RUNNING (Closes: #841171)
 +
 + -- Ben Hutchings <ben at decadent.org.uk>  Sun, 01 Jan 2017 22:44:31 +0000
 +
+ linux (3.16.39-1+deb8u1) jessie-security; urgency=high
+ 
+   [ Salvatore Bonaccorso ]
+   * perf: Fix event->ctx locking (CVE-2016-6786 CVE-2016-6787)
+   * perf/core: Fix concurrent sys_perf_event_open() vs. 'move_group' race
+     (CVE-2017-6001)
+   * dccp: fix freeing skb too early for IPV6_RECVPKTINFO (CVE-2017-6074)
+ 
+   [ Ben Hutchings ]
+   * perf: Do not double free (dependency of fix for CVE-2017-6001)
+   * fbdev: color map copying bounds checking (CVE-2016-8405)
+   * sysctl: Drop reference added by grab_header in proc_sys_readdir
+     (CVE-2016-9191)
+   * [x86] KVM: fix emulation of "MOV SS, null selector" (CVE-2017-2583)
+   * [x86] KVM: Introduce segmented_write_std (CVE-2017-2584)
+   * selinux: fix off-by-one in setprocattr (CVE-2017-2618)
+   * USB: serial: kl5kusb105: fix line-state error handling (CVE-2017-5549)
+   * tmpfs: clear S_ISGID when setting posix ACLs (CVE-2017-5551)
+   * ip6_gre: fix ip6gre_err() invalid reads (CVE-2017-5897)
+   * [x86] kvm: fix page struct leak in handle_vmon (CVE-2017-2596)
+   * ipv4: keep skb->dst around in presence of IP options (CVE-2017-5970)
+ 
+  -- Ben Hutchings <ben at decadent.org.uk>  Wed, 22 Feb 2017 02:43:36 +0000
+ 
  linux (3.16.39-1) jessie; urgency=medium
  
    * New upstream stable update:

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git

More information about the Kernel-svn-changes mailing list