[linux] branch jessie-security updated (bf419af -> dea1bd7)

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Fri Jul 28 08:16:08 UTC 2017 

This is an automated email from the git hooks/post-receive script.

carnil pushed a change to branch jessie-security
in repository linux.

      from  bf419af   brcmfmac: fix possible buffer overflow in brcmf_cfg80211_mgmt_tx() (CVE-2017-7541)
       new  04ae6a3   ipv6: avoid overflow of offset in ip6_find_1stfragopt (CVE-2017-7542)
       new  d06d090   [x86] mm: Tighten x86 /dev/mem with zeroing reads (CVE-2017-7889)
       new  066bfdf   [x86] drm/vmwgfx: Make sure backup_handle is always valid (CVE-2017-9605)
       new  f95e900   xen-blkback: don't leak stack data via response ring (CVE-2017-10911)
       new  88a396d   mqueue: fix a use-after-free in sys_mq_notify() (CVE-2017-11176)
       new  4a57f5b   char: lp: fix possible integer overflow in lp_setup() (CVE-2017-1000363)
       new  dea1bd7   fs/exec.c: account for argv/envp pointers (CVE-2017-1000365)

The 7 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Summary of changes:
 debian/changelog                                   |   7 +
 ...fix-possible-integer-overflow-in-lp_setup.patch |  39 ++++
 .../fs-exec.c-account-for-argv-envp-pointers.patch |  91 +++++++++
 ...overflow-of-offset-in-ip6_find_1stfragopt.patch |  55 ++++++
 ...eue-fix-a-use-after-free-in-sys_mq_notify.patch |  50 +++++
 ...k-don-t-leak-stack-data-via-response-ring.patch | 130 +++++++++++++
 ...x-Make-sure-backup_handle-is-always-valid.patch |  48 +++++
 ...mm-Tighten-x86-dev-mem-with-zeroing-reads.patch | 212 +++++++++++++++++++++
 debian/patches/series                              |   7 +
 9 files changed, 639 insertions(+)
 create mode 100644 debian/patches/bugfix/all/char-lp-fix-possible-integer-overflow-in-lp_setup.patch
 create mode 100644 debian/patches/bugfix/all/fs-exec.c-account-for-argv-envp-pointers.patch
 create mode 100644 debian/patches/bugfix/all/ipv6-avoid-overflow-of-offset-in-ip6_find_1stfragopt.patch
 create mode 100644 debian/patches/bugfix/all/mqueue-fix-a-use-after-free-in-sys_mq_notify.patch
 create mode 100644 debian/patches/bugfix/all/xen-blkback-don-t-leak-stack-data-via-response-ring.patch
 create mode 100644 debian/patches/bugfix/x86/drm-vmwgfx-Make-sure-backup_handle-is-always-valid.patch
 create mode 100644 debian/patches/bugfix/x86/mm-Tighten-x86-dev-mem-with-zeroing-reads.patch

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git

More information about the Kernel-svn-changes mailing list