[linux] branch wheezy-security updated (0a7434b -> d6803b1)
debian-kernel at lists.debian.org
debian-kernel at lists.debian.org
Wed Feb 14 20:31:14 UTC 2018
This is an automated email from the git hooks/post-receive script.
benh pushed a change to branch wheezy-security
in repository linux.
from 0a7434b proc: Fix ptrace mode in has_pid_permissions() (Closes: #887106)
new d6803b1 Update to 3.2.99
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.
Summary of changes:
debian/changelog | 149 +-
...permit-request_key-to-construct-a-new-key.patch | 8 +-
...nep-bnep_add_connection-should-verify-tha.patch | 28 -
...mtp-cmtp_add_connection-should-verify-tha.patch | 28 -
.../all/bluetooth-hidp-verify-l2cap-sockets.patch | 60 -
...-require-that-the-underlying-hash-algorit.patch | 148 --
...ypto-salsa20-fix-blkcipher_walk-API-usage.patch | 88 -
...cve-2017-8824-use-after-free-in-dccp-code.patch | 38 -
.../ipsec-fix-aborted-xfrm-policy-dump-crash.patch | 36 -
...ssing-permission-check-for-request_key-de.patch | 158 --
...dd-nokaiser-boot-option-using-alternative.patch | 610 -------
...iser-alloc_ldt_struct-use-get_zeroed_page.patch | 28 -
...sm-tlbflush.h-handle-nopge-at-lower-level.patch | 79 -
.../all/kpti/kaiser-disabled-on-xen-pv.patch | 48 -
...er_flush_tlb_on_return_to_user-check-pcid.patch | 83 -
.../all/kpti/kaiser-kernel-address-isolation.patch | 1909 --------------------
...ternative-instead-of-x86_cr3_pcid_noflush.patch | 108 --
.../kpti/kaiser-user_map-__kprobes_text-too.patch | 26 -
.../kpti/kpti-rename-to-page_table_isolation.patch | 275 ---
.../bugfix/all/kpti/kpti-report-when-enabled.patch | 44 -
...t-sched-core-fix-mmu_context.h-assumption.patch | 37 -
...h_mm_irqs_off-and-use-it-in-the-scheduler.patch | 73 -
...ask_exit-shouldn-t-use-switch_mm_irqs_off.patch | 41 -
.../x86-alternatives-add-instruction-padding.patch | 348 ----
.../x86-alternatives-cleanup-dprintk-macro.patch | 108 --
.../x86-alternatives-make-jmps-more-robust.patch | 257 ---
...ternatives-use-optimized-nops-for-padding.patch | 50 -
...mdline-parsing-for-options-with-arguments.patch | 174 --
...-carve-out-early-cmdline-parsing-function.patch | 131 --
...command-line-parsing-when-matching-at-end.patch | 119 --
...nd-line-parsing-when-partial-word-matches.patch | 100 -
...oot-pass-in-size-to-early-cmdline-parsing.patch | 59 -
...-boot-simplify-early-command-line-parsing.patch | 51 -
...-features-from-intel-document-319433-012a.patch | 30 -
.../x86-kaiser-check-boottime-cmdline-params.patch | 120 --
.../x86-kaiser-move-feature-detection-up.patch | 77 -
.../all/kpti/x86-kaiser-reenable-paravirt.patch | 25 -
...-and-simplify-x86_feature_kaiser-handling.patch | 94 -
...-64-fix-reboot-interaction-with-cr4.pcide.patch | 41 -
...noinvpcid-boot-option-to-turn-off-invpcid.patch | 72 -
.../all/kpti/x86-mm-add-invpcid-helpers.patch | 91 -
...d-the-nopcid-boot-option-to-turn-off-pcid.patch | 72 -
...86-mm-build-arch-x86-mm-tlb.c-even-on-smp.patch | 63 -
.../x86-mm-disable-pcid-on-32-bit-kernels.patch | 63 -
...-mm-enable-cr4.pcide-on-supported-systems.patch | 135 --
.../kpti/x86-mm-fix-invpcid-asm-constraint.patch | 66 -
...available-use-it-to-flush-global-mappings.patch | 54 -
.../kpti/x86-mm-kaiser-re-enable-vsyscalls.patch | 132 --
...h.h-code-always-use-the-formerly-smp-code.patch | 232 ---
...-mm-sched-core-turn-off-irqs-in-switch_mm.patch | 64 -
.../x86-mm-sched-core-uninline-switch_mm.patch | 190 --
.../x86-paravirt-dont-patch-flush_tlb_single.patch | 65 -
.../bugfix/all/sctp-Export-sctp_do_peeloff.patch | 15 +-
...prevent-malicious-bnuminterfaces-overflow.patch | 46 -
...ix-stack-out-of-bounds-read-in-write_mmio.patch | 132 --
...emove-i-o-port-0x80-bypass-on-intel-hosts.patch | 46 -
.../debian/block-avoid-abi-change-in-3.2.99.patch | 36 +
.../debian/scsi-avoid-abi-change-in-3.2.97.patch | 24 +
...troduce-HW-Pstate-scattered-cpuid-feature.patch | 12 +-
debian/patches/series | 55 +-
60 files changed, 230 insertions(+), 7321 deletions(-)
delete mode 100644 debian/patches/bugfix/all/bluetooth-bnep-bnep_add_connection-should-verify-tha.patch
delete mode 100644 debian/patches/bugfix/all/bluetooth-cmtp-cmtp_add_connection-should-verify-tha.patch
delete mode 100644 debian/patches/bugfix/all/bluetooth-hidp-verify-l2cap-sockets.patch
delete mode 100644 debian/patches/bugfix/all/crypto-hmac-require-that-the-underlying-hash-algorit.patch
delete mode 100644 debian/patches/bugfix/all/crypto-salsa20-fix-blkcipher_walk-API-usage.patch
delete mode 100644 debian/patches/bugfix/all/dccp-cve-2017-8824-use-after-free-in-dccp-code.patch
delete mode 100644 debian/patches/bugfix/all/ipsec-fix-aborted-xfrm-policy-dump-crash.patch
delete mode 100644 debian/patches/bugfix/all/keys-add-missing-permission-check-for-request_key-de.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-add-nokaiser-boot-option-using-alternative.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-alloc_ldt_struct-use-get_zeroed_page.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-asm-tlbflush.h-handle-nopge-at-lower-level.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-disabled-on-xen-pv.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-kaiser_flush_tlb_on_return_to_user-check-pcid.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-kernel-address-isolation.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-use-alternative-instead-of-x86_cr3_pcid_noflush.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kaiser-user_map-__kprobes_text-too.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kpti-rename-to-page_table_isolation.patch
delete mode 100644 debian/patches/bugfix/all/kpti/kpti-report-when-enabled.patch
delete mode 100644 debian/patches/bugfix/all/kpti/mm-mmu_context-sched-core-fix-mmu_context.h-assumption.patch
delete mode 100644 debian/patches/bugfix/all/kpti/sched-core-add-switch_mm_irqs_off-and-use-it-in-the-scheduler.patch
delete mode 100644 debian/patches/bugfix/all/kpti/sched-core-idle_task_exit-shouldn-t-use-switch_mm_irqs_off.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-alternatives-add-instruction-padding.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-alternatives-cleanup-dprintk-macro.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-alternatives-make-jmps-more-robust.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-alternatives-use-optimized-nops-for-padding.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-add-early-cmdline-parsing-for-options-with-arguments.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-carve-out-early-cmdline-parsing-function.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-fix-early-command-line-parsing-when-matching-at-end.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-fix-early-command-line-parsing-when-partial-word-matches.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-pass-in-size-to-early-cmdline-parsing.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-boot-simplify-early-command-line-parsing.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-cpufeature-add-cpu-features-from-intel-document-319433-012a.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-kaiser-check-boottime-cmdline-params.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-kaiser-move-feature-detection-up.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-kaiser-reenable-paravirt.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-kaiser-rename-and-simplify-x86_feature_kaiser-handling.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-64-fix-reboot-interaction-with-cr4.pcide.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-add-a-noinvpcid-boot-option-to-turn-off-invpcid.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-add-invpcid-helpers.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-add-the-nopcid-boot-option-to-turn-off-pcid.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-build-arch-x86-mm-tlb.c-even-on-smp.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-disable-pcid-on-32-bit-kernels.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-enable-cr4.pcide-on-supported-systems.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-fix-invpcid-asm-constraint.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-if-invpcid-is-available-use-it-to-flush-global-mappings.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-kaiser-re-enable-vsyscalls.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-remove-the-up-asm-tlbflush.h-code-always-use-the-formerly-smp-code.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-sched-core-turn-off-irqs-in-switch_mm.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-mm-sched-core-uninline-switch_mm.patch
delete mode 100644 debian/patches/bugfix/all/kpti/x86-paravirt-dont-patch-flush_tlb_single.patch
delete mode 100644 debian/patches/bugfix/all/usb-core-prevent-malicious-bnuminterfaces-overflow.patch
delete mode 100644 debian/patches/bugfix/x86/kvm-fix-stack-out-of-bounds-read-in-write_mmio.patch
delete mode 100644 debian/patches/bugfix/x86/kvm-vmx-remove-i-o-port-0x80-bypass-on-intel-hosts.patch
create mode 100644 debian/patches/debian/block-avoid-abi-change-in-3.2.99.patch
create mode 100644 debian/patches/debian/scsi-avoid-abi-change-in-3.2.97.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/kernel/linux.git
More information about the Kernel-svn-changes
mailing list