[linux] branch stretch-security updated (7aaeb81 -> 2e52ae7)
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Wed Jul 26 21:37:26 UTC 2017
This is an automated email from the git hooks/post-receive script.
carnil pushed a change to branch stretch-security
in repository linux.
from 7aaeb81 brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx() (CVE-2017-7541)
new e3ef297 ipv6: avoid overflow of offset in ip6_find_1stfragopt (CVE-2017-7542)
new 81326d3 [x86] drm/vmwgfx: Make sure backup_handle is always valid (CVE-2017-9605)
new 882fc3b drm/virtio: don't leak bo on drm_gem_object_init failure (CVE-2017-10810)
new 6fa619c xen-blkback: don't leak stack data via response ring (CVE-2017-10911)
new 162d277 mqueue: fix a use-after-free in sys_mq_notify() (CVE-2017-11176)
new 2e52ae7 fs/exec.c: account for argv/envp pointers (CVE-2017-1000365)
The 6 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 6 +
...don-t-leak-bo-on-drm_gem_object_init-fail.patch | 35 ++++++
.../fs-exec.c-account-for-argv-envp-pointers.patch | 90 ++++++++++++++
...overflow-of-offset-in-ip6_find_1stfragopt.patch | 55 +++++++++
...eue-fix-a-use-after-free-in-sys_mq_notify.patch | 50 ++++++++
...k-don-t-leak-stack-data-via-response-ring.patch | 130 +++++++++++++++++++++
...x-Make-sure-backup_handle-is-always-valid.patch | 60 ++++++++++
debian/patches/series | 6 +
8 files changed, 432 insertions(+)
create mode 100644 debian/patches/bugfix/all/drm-virtio-don-t-leak-bo-on-drm_gem_object_init-fail.patch
create mode 100644 debian/patches/bugfix/all/fs-exec.c-account-for-argv-envp-pointers.patch
create mode 100644 debian/patches/bugfix/all/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch
create mode 100644 debian/patches/bugfix/all/mqueue-fix-a-use-after-free-in-sys_mq_notify.patch
create mode 100644 debian/patches/bugfix/all/xen-blkback-don-t-leak-stack-data-via-response-ring.patch
create mode 100644 debian/patches/bugfix/x86/drm-vmwgfx-Make-sure-backup_handle-is-always-valid.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list