[linux] 01/01: Merge tag 'debian/3.16.39-1+deb8u1' into jessie
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Tue Feb 28 09:57:31 UTC 2017
This is an automated email from the git hooks/post-receive script.
carnil pushed a commit to branch jessie
in repository linux.
commit 48428f5fc830a5eff443e2d38ed4cdcd69ed1f45
Merge: 572f863 5d73ae1
Author: Salvatore Bonaccorso <carnil at debian.org>
Date: Tue Feb 28 10:54:55 2017 +0100
Merge tag 'debian/3.16.39-1+deb8u1' into jessie
Release linux (3.16.39-1+deb8u1).
debian/changelog | 24 +
...reeing-skb-too-early-for-IPV6_RECVPKTINFO.patch | 47 ++
.../fbdev-color-map-copying-bounds-checking.patch | 80 ++++
.../all/ip6_gre-fix-ip6gre_err-invalid-reads.patch | 98 ++++
...-skb-dst-around-in-presence-of-ip-options.patch | 43 ++
.../bugfix/all/perf-Fix-event-ctx-locking.patch | 501 +++++++++++++++++++++
...ix-concurrent-sys_perf_event_open-vs.-mov.patch | 152 +++++++
.../bugfix/all/perf-do-not-double-free.patch | 47 ++
.../selinux-fix-off-by-one-in-setprocattr.patch | 61 +++
...-added-by-grab_header-in-proc_sys_readdir.patch | 83 ++++
...pfs-clear-s_isgid-when-setting-posix-acls.patch | 41 ++
...-kl5kusb105-fix-line-state-error-handling.patch | 37 ++
.../kvm-fix-page-struct-leak-in-handle_vmon.patch | 40 ++
...x86-fix-emulation-of-mov-ss-null-selector.patch | 104 +++++
.../kvm-x86-introduce-segmented_write_std.patch | 59 +++
debian/patches/series | 14 +
16 files changed, 1431 insertions(+)
diff --cc debian/changelog
index 2cc7b41,af26780..ff22c3b
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,9 -1,27 +1,33 @@@
+linux (3.16.39-2) UNRELEASED; urgency=medium
+
+ * locking/mutex: Don't assume TASK_RUNNING (Closes: #841171)
+
+ -- Ben Hutchings <ben at decadent.org.uk> Sun, 01 Jan 2017 22:44:31 +0000
+
+ linux (3.16.39-1+deb8u1) jessie-security; urgency=high
+
+ [ Salvatore Bonaccorso ]
+ * perf: Fix event->ctx locking (CVE-2016-6786 CVE-2016-6787)
+ * perf/core: Fix concurrent sys_perf_event_open() vs. 'move_group' race
+ (CVE-2017-6001)
+ * dccp: fix freeing skb too early for IPV6_RECVPKTINFO (CVE-2017-6074)
+
+ [ Ben Hutchings ]
+ * perf: Do not double free (dependency of fix for CVE-2017-6001)
+ * fbdev: color map copying bounds checking (CVE-2016-8405)
+ * sysctl: Drop reference added by grab_header in proc_sys_readdir
+ (CVE-2016-9191)
+ * [x86] KVM: fix emulation of "MOV SS, null selector" (CVE-2017-2583)
+ * [x86] KVM: Introduce segmented_write_std (CVE-2017-2584)
+ * selinux: fix off-by-one in setprocattr (CVE-2017-2618)
+ * USB: serial: kl5kusb105: fix line-state error handling (CVE-2017-5549)
+ * tmpfs: clear S_ISGID when setting posix ACLs (CVE-2017-5551)
+ * ip6_gre: fix ip6gre_err() invalid reads (CVE-2017-5897)
+ * [x86] kvm: fix page struct leak in handle_vmon (CVE-2017-2596)
+ * ipv4: keep skb->dst around in presence of IP options (CVE-2017-5970)
+
+ -- Ben Hutchings <ben at decadent.org.uk> Wed, 22 Feb 2017 02:43:36 +0000
+
linux (3.16.39-1) jessie; urgency=medium
* New upstream stable update:
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list