[linux] 02/03: Merge tag 'debian/4.13.4-2'
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Sun Oct 15 23:10:49 UTC 2017
This is an automated email from the git hooks/post-receive script.
benh pushed a commit to branch master
in repository linux.
commit 146583d59c7ada67e097ee01c02b546047e4d912
Merge: a557046 0c548c1
Author: Ben Hutchings <ben at decadent.org.uk>
Date: Mon Oct 16 00:09:19 2017 +0100
Merge tag 'debian/4.13.4-2'
Release linux (4.13.4-2).
debian/changelog | 22 ++++
debian/config/arm64/config | 5 +
debian/config/armhf/config | 5 +
...seq-Fix-use-after-free-at-creating-a-port.patch | 141 +++++++++++++++++++++
...-Use-emergency-stack-for-kernel-TM-Bad-Th.patch | 79 ++++++++++++
...tm-Fix-illegal-TM-state-in-signal-handler.patch | 62 +++++++++
.../all/waitid-Add-missing-access_ok-checks.patch | 47 +++++++
...MU-always-terminate-page-walks-at-level-1.patch | 83 ++++++++++++
...date-last_nonleaf_level-when-initializing.patch | 34 +++++
debian/patches/series | 6 +
10 files changed, 484 insertions(+)
diff --cc debian/changelog
index f6805d2,d041e9a..80b6044
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,42 -1,25 +1,64 @@@
+linux (4.14~rc4-1~exp1) UNRELEASED; urgency=medium
+
+ * New upstream release candidate
+
+ [ Ben Hutchings ]
+ * Update kconfig for 4.14:
+ - [alpha] fbdev: Re-enable FRAMEBUFFER_CONSOLE as built-in
+ - [armel] fbdev: Explicitly disable FRAMEBUFFER_CONSOLE, as it can no
+ longer be a module
+ - [arm64] Re-enable MMC_QCOM_DML
+ - Change RC_CORE back to being a module
+ - power/supply: Enable BATTERY_BQ27XXX and BATTERY_BQ27XXX_HDQ as modules,
+ replacing W1_SLAVE_BQ27000
+ * net: Disable IRDA, which will soon be deleted upstream
+ * [mips*] Increase RELOCATION_TABLE_SIZE to 0x00110000 for all flavours
+ (fixes FTBFS)
+ * i40e: Build for 64-bit targets only (fixes FTBFS on hppa)
+
+ [ John Paul Adrian Glaubitz ]
+ * [m68k] udeb: Build ata-modules package, include libata
+ * [m68k] udeb: Add ide-cd_mod to cdrom-core-modules
+ * [m68k] udeb: Build ide-core-modules package, include ide-core
+ * [m68k] udeb: Build ide-modules package, include ide-gd_mod
+ * [m68k] udeb: Move old IDE drivers from pata-modules to ide-modules:
+ - buddha, falconide, gayle, macide, q40ide
+ * [m68k] udeb: Add missing SCSI drivers to scsi-modules:
+ - a2091, a3000, a4000t, bvme6000_scsi, gvp11, mvme16x_scsi, zorro7xx
+
+ -- Ben Hutchings <ben at decadent.org.uk> Wed, 04 Oct 2017 01:44:24 +0100
+
+linux (4.14~rc3-1~exp1) experimental; urgency=medium
+
+ * New upstream release candidate
+
+ [ Ben Hutchings ]
+ * aufs: Update support patchset to aufs4.x-rcN-20171002
+
+ -- Ben Hutchings <ben at decadent.org.uk> Mon, 02 Oct 2017 04:47:08 +0100
+
+ linux (4.13.4-2) unstable; urgency=medium
+
+ [ Ben Hutchings ]
+ * [armhf,arm64] thermal: Enable BCM2835_THERMAL as module (Closes: #877699)
+
+ [ Salvatore Bonaccorso ]
+ * brcmfmac: add length check in brcmf_cfg80211_escan_handler()
+ (CVE-2017-0786)
+ * [powerpc*] Use emergency stack for kernel TM Bad Thing program
+ (CVE-2017-1000255)
+ * [powerpc*] Fix illegal TM state in signal handler
+ * mac80211: fix deadlock in driver-managed RX BA session start.
+ Thanks to Eric Côté (Closes: #878092)
+ * KEYS: prevent KEYCTL_READ on negative key (CVE-2017-12192)
+ * waitid(): Add missing access_ok() checks (CVE-2017-5123)
+ * ALSA: seq: Fix use-after-free at creating a port (CVE-2017-15265)
+ * [x86] KVM: nVMX: update last_nonleaf_level when initializing nested EPT
+ (CVE-2017-12188)
+ * [x86] KVM: MMU: always terminate page walks at level 1 (CVE-2017-12188)
+
+ -- Salvatore Bonaccorso <carnil at debian.org> Sun, 15 Oct 2017 08:57:36 +0200
+
linux (4.13.4-1) unstable; urgency=medium
* New upstream stable update:
diff --cc debian/patches/series
index 8938ee6,408d183..5710099
--- a/debian/patches/series
+++ b/debian/patches/series
@@@ -112,8 -114,23 +112,14 @@@ features/all/lockdown/arm64-add-kernel-
# Security fixes
debian/i386-686-pae-pci-set-pci-nobios-by-default.patch
-bugfix/all/nl80211-check-for-the-required-netlink-attributes-presence.patch
-bugfix/x86/kvm-nvmx-don-t-allow-l2-to-access-the-hardware-cr8.patch
-bugfix/all/video-fbdev-aty-do-not-leak-uninitialized-padding-in.patch
-bugfix/all/scsi-fix-the-issue-that-iscsi_if_rx-doesn-t-parse-nlmsg-properly.patch
-bugfix/x86/kvm-vmx-do-not-bug-on-out-of-bounds-guest-irq.patch
-bugfix/all/fix-infoleak-in-waitid-2.patch
-bugfix/all/brcmfmac-add-length-check-in-brcmf_cfg80211_escan_ha.patch
+ bugfix/all/powerpc-64s-Use-emergency-stack-for-kernel-TM-Bad-Th.patch
+ bugfix/all/powerpc-tm-Fix-illegal-TM-state-in-signal-handler.patch
-bugfix/all/KEYS-prevent-KEYCTL_READ-on-negative-key.patch
+ bugfix/all/waitid-Add-missing-access_ok-checks.patch
+ bugfix/all/ALSA-seq-Fix-use-after-free-at-creating-a-port.patch
+ bugfix/x86/KVM-nVMX-update-last_nonleaf_level-when-initializing.patch
+ bugfix/x86/KVM-MMU-always-terminate-page-walks-at-level-1.patch
# Fix exported symbol versions
-bugfix/alpha/alpha-restore-symbol-versions-for-symbols-exported-f.patch
bugfix/all/module-disable-matching-missing-version-crc.patch
# ABI maintenance
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list