[linux] branch stretch-security updated (91c6faa -> 7e7c3ca)

debian-kernel at lists.debian.org debian-kernel at lists.debian.org
Mon Sep 18 03:01:29 UTC 2017 

This is an automated email from the git hooks/post-receive script.

benh pushed a change to branch stretch-security
in repository linux.

      from  91c6faa   udp: consistently apply ufo or fragmentation (CVE-2017-1000112)
       new  7e7c3ca   Add various security fixes

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Summary of changes:
 debian/changelog                                   |  19 ++
 ...roperly-check-l2cap-config-option-output-.patch | 353 +++++++++++++++++++++
 ...-platform-fix-race-condition-with-driver_.patch |  59 ++++
 ...-the-required-netlink-attributes-presence.patch |  36 +++
 ...-t-write-vnet-header-beyond-end-of-buffer.patch |  68 ++++
 .../sanitize-move_pages-permission-checks.patch    |  71 +++++
 ...-iscsi_if_rx-doesn-t-parse-nlmsg-properly.patch |  55 ++++
 ...xxx-fix-an-integer-overflow-in-sysfs-code.patch |  58 ++++
 ...-out-of-bounds-reads-from-address-storage.patch | 184 +++++++++++
 ...alize-rcv_mss-to-tcp_min_mss-instead-of-0.patch |  35 ++
 ...-aty-do-not-leak-uninitialized-padding-in.patch |  30 ++
 .../bugfix/all/xen-fix-bio-vec-merging.patch       |  59 ++++
 ...REALTIME_INODE-should-be-false-if-no-rt-d.patch |  67 ++++
 ...don-t-allow-l2-to-access-the-hardware-cr8.patch |  34 ++
 ...vmx-do-not-bug-on-out-of-bounds-guest-irq.patch |  52 +++
 debian/patches/series                              |  14 +
 16 files changed, 1194 insertions(+)
 create mode 100644 debian/patches/bugfix/all/bluetooth-properly-check-l2cap-config-option-output-.patch
 create mode 100644 debian/patches/bugfix/all/driver-core-platform-fix-race-condition-with-driver_.patch
 create mode 100644 debian/patches/bugfix/all/nl80211-check-for-the-required-netlink-attributes-presence.patch
 create mode 100644 debian/patches/bugfix/all/packet-don-t-write-vnet-header-beyond-end-of-buffer.patch
 create mode 100644 debian/patches/bugfix/all/sanitize-move_pages-permission-checks.patch
 create mode 100644 debian/patches/bugfix/all/scsi-fix-the-issue-that-iscsi_if_rx-doesn-t-parse-nlmsg-properly.patch
 create mode 100644 debian/patches/bugfix/all/scsi-qla2xxx-fix-an-integer-overflow-in-sysfs-code.patch
 create mode 100644 debian/patches/bugfix/all/sctp-Avoid-out-of-bounds-reads-from-address-storage.patch
 create mode 100644 debian/patches/bugfix/all/tcp-initialize-rcv_mss-to-tcp_min_mss-instead-of-0.patch
 create mode 100644 debian/patches/bugfix/all/video-fbdev-aty-do-not-leak-uninitialized-padding-in.patch
 create mode 100644 debian/patches/bugfix/all/xen-fix-bio-vec-merging.patch
 create mode 100644 debian/patches/bugfix/all/xfs-XFS_IS_REALTIME_INODE-should-be-false-if-no-rt-d.patch
 create mode 100644 debian/patches/bugfix/x86/kvm-nvmx-don-t-allow-l2-to-access-the-hardware-cr8.patch
 create mode 100644 debian/patches/bugfix/x86/kvm-vmx-do-not-bug-on-out-of-bounds-guest-irq.patch

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git

More information about the Kernel-svn-changes mailing list