b1a9e2470a
Update to 4.16.10
2018-05-22 00:49:31 +02:00
c2dbc30362
proc: do not access cmdline nor environ from file-backed areas (CVE-2018-1120)
2018-05-17 23:15:48 +02:00
b968d18584
[mips{,64}r6{,el}] use boston as the target
...
Add a patch to disable uImage generation to avoid depend on u-boot-tools
Fix typo the EL's flavor names in installer: not same within defines
Malta is never used for r6. (Closes : #898523 )
Boston also requires relocation table size >= 0x00121000
2018-05-14 16:26:26 +08:00
9febee02d1
mm, oom: fix concurrent munlock and oom reaper unmap (CVE-2018-1000200)
2018-05-12 16:49:55 +02:00
24b281238c
Update to 4.16.7
...
Refresh bugfix/all/fs-add-module_softdep-declarations-for-hard-coded-cr.patch
Drop patches applied upstream related to CVE-2018-1093
Cleanup debian/changelog entries
2018-05-10 15:01:21 +02:00
a5394cbc13
[hppa/parisc64-smp] IB: Fix RDMA_RXE and INFINIBAND_RDMAVT dependencies for DMA_VIRT_OPS
2018-05-09 22:48:55 +01:00
f4a882f016
Update to 4.17-rc4
2018-05-09 19:10:50 +01:00
00e2f5f30e
kbuild: use -fmacro-prefix-map to make __FILE__ a relative path
2018-05-02 23:47:40 +01:00
bb6c7da6fe
Update to 4.17-rc3
2018-04-30 00:12:50 +01:00
634a2fc7db
Release linux (4.16.5-1).
...
-----BEGIN PGP SIGNATURE-----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=hQGL
-----END PGP SIGNATURE-----
Merge tag 'debian/4.16.5-1'
Release linux (4.16.5-1).
2018-04-29 21:09:11 +01:00
5b54699034
ext4: fix bitmap position validation
...
Un-revert "ext4: add validity checks for bitmap block numbers" and
apply this new fix on top of it.
2018-04-27 18:08:44 +01:00
019c1fa6f3
xfs: set format back to extents if xfs_bmap_extents_to_btree (CVE-2018-10323)
2018-04-25 21:23:07 +01:00
f78c3b3434
xfs: enhance dinode verifier (CVE-2018-10322)
2018-04-25 21:22:21 +01:00
9f2182e09a
Revert "ext4: add validity checks for bitmap block numbers", which caused a regression
2018-04-25 21:15:48 +01:00
98017b2bd7
Update to 4.16.4
2018-04-25 21:14:23 +01:00
1c1d5f2d95
Documentation: Update references to drivers/base/firmware_class.c
2018-04-20 00:57:50 +01:00
d04e628f00
Documentation: typec.rst: Use literal-block element with ascii art
...
This fixes a fatal error in the doc build process.
2018-04-20 00:50:39 +01:00
8457aba35f
Update to 4.17-rc1
...
- Drop patches included upstream
- Drop "Don't WARN about expected W+X pages on Xen"; the problem appears
to have been fixed by upstream commits 2cc42bac1c ("x86-64/Xen: eliminate
W+X mappings") and 672c0ae09b33 ("x86/mm: Consider effective protection
attributes in W+X check")
- Drop "Kbuild: kconfig: Verbose version of --listnewconfig"; it seems
redundant with upstream commit 17baab68d337 ("kconfig: extend output of
'listnewconfig'")
- Drop lockdown patch to drivers/scsi/eata.c; the driver was removed
upstream
- Refresh various other patches
2018-04-19 23:44:22 +01:00
fcb558d168
Merge branch 'sid'
...
- Drop patches already in 4.16
- Overwrite changes on master to debian/installer, which were also
applied on sid and then changed
- [x86] Fix up dell_smbios configuration; now it's a single driver
selected by DELL_SMBIOS, with DELL_SMBIOS_{SMM,WMI} being boolean
options
- Clean up configuration with kconfigeditor2
2018-04-19 14:43:33 +01:00
fc0c66ddb9
ath9k_htc: Fix regression in 4.15, thanks to Ben Caradoc-Davies ( Closes : #891060 )
...
- mac80211: add ieee80211_hw flag for QoS NDP support
- ath9k_htc: use non-QoS NDP for AP probing
2018-04-19 00:01:09 +01:00
f147fe68c4
[hppa] Switch to self-decompressing kernel
2018-04-18 08:34:17 +02:00
9f5a30bb07
Add various security fixes
2018-04-18 00:11:35 +01:00
66b63716aa
Update to 4.15.17
2018-04-17 23:43:11 +01:00
a325681bab
[arm64] net: hns: Fix ethtool private flags (CVE-2017-18222)
2018-04-15 20:58:48 +02:00
f5b6a35cad
media: usbtv: prevent double free in error case (CVE-2017-17975)
2018-04-15 20:52:17 +02:00
8e41f67460
drm/nouveau/mmu: ALIGN_DOWN correct variable
...
Closes : #895750
2018-04-15 20:33:52 +02:00
f68523c82b
[arm64] Add patch enabling simplefb LCD on A64.
2018-04-13 20:34:07 -07:00
d948b7a44d
wireless: Add Debian wireless-regdb certificates (see #892229 )
2018-04-13 20:22:12 +01:00
10b9c6345e
[armhf] Add patch to fix loading of imx6q-cpufreq module.
2018-04-12 01:12:40 -07:00
4ece70b07d
[arm64] Add patches to support SATA on Tegra210/Jetson-TX1.
2018-04-10 13:14:24 -07:00
6b8b6f7948
wireless: Disable regulatory.db direct loading (see #892229 )
2018-04-05 21:34:14 +02:00
630c3f806d
Release linux (4.15.11-1).
...
-----BEGIN PGP SIGNATURE-----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=PehK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.15.11-1'
Release linux (4.15.11-1).
Refresh patches.
2018-03-20 13:50:27 +00:00
6b6dc95db7
[armhf] Add device-tree patches from linux-next to support USB and
...
Ethernet on meson8b.
2018-03-19 19:27:39 -07:00
1d363986d0
mac80211_hwsim: fix possible memory leak in hwsim_new_radio_nl() (CVE-2018-8087)
2018-03-19 22:31:39 +01:00
6a020907c6
Update to 4.15.11
...
Drop bugfix/all/crypto-ecc-fix-null-pointer-deref.-on-no-default_rng.patch
Cleanup debian/changelog file
2018-03-19 13:05:40 +01:00
677fae7f88
Update to 4.15.10
...
Add CVE ids for two issues fixed in 4.15.10
Drop bugfix/all/scsi-core-Avoid-that-ATA-error-handling-can-trigger-.patch
Drop bugfix/all/nospec-kill-array_index_nospec_mask_check.patch
Cleanup debian/changelog file
2018-03-16 11:53:04 +01:00
0eab78b1fd
[ia64] Revert "Remove all support for ia64"
...
This reverts commit ace247de5bCloses : #886693
2018-03-15 20:22:30 +00:00
90520391a2
i40e: Add kconfig dependency to ensure cmpxchg64() is available
...
This should fix FTBFS on architectures where it isn't.
2018-03-15 19:08:05 +00:00
8039021914
scsi: core: Avoid that ATA error handling can trigger a kernel hang or oops
...
Closes : #891467
2018-03-15 08:53:49 +01:00
45f26f2f70
Bump ABI to 2
...
Commit 1df9e416e647 "Kbuild: always define endianess in kconfig.h"
fixed several cases where some types (and inline functions) might not
be correctly defined according to the host byte order. It might be
possible to avoid an ABI bump, but it would require a lot of work.
Also, the problem may affect OOT modules that therefore should be
rebuilt with the fix.
2018-03-15 02:24:26 +00:00
35e5ff18f3
amdgpu: Abort probing if firmware is not installed, as we do in radeon
2018-03-15 02:19:45 +00:00
e7bdd24f18
radeon: Refer to Debian wiki page when aborting probe due to missing firmware
2018-03-15 02:19:44 +00:00
1cf35d5b4d
Avoid/fix/ignore most ABI changes in 4.15.5-4.15.9 inclusive
...
There are still a few to resolve.
2018-03-14 02:38:34 +00:00
33277fbe2b
nospec: Kill array_index_nospec_mask_check()
2018-03-13 22:22:31 +00:00
17703a438b
Update to 4.15.9
...
This has some ABI changes, which still need to be resolved.
2018-03-13 22:20:14 +00:00
3c7088b5cd
Update to 4.16-rc5
2018-03-12 02:40:37 +00:00
7b3adb7e57
Merge branch 'master' into sid
2018-03-12 02:02:24 +00:00
b6d7061ed6
[arm64] Apply patch from linux-next to fix eMMC corruption on
...
Odroid-C2 (Closes : #879072 ).
2018-03-11 18:46:05 -07:00
1cf87c07e9
firmware_class: Refer to Debian wiki page when logging missing firmware
...
Closes : #888405
2018-03-12 01:21:33 +00:00
07f055d4a5
sctp: verify size of a new chunk in _sctp_make_chunk() (CVE-2018-5803)
2018-03-09 20:34:10 +01:00
5bd62d6357
ALSA: seq: Fix racy pool initializations (CVE-2018-7566)
2018-03-09 11:54:59 +01:00
fc2cf56edb
Update to 4.15.4
...
Drop media-dvb-usb-v2-lmedm04-Improve-logic-checking-of-w.patch
Drop media-dvb-usb-v2-lmedm04-move-ts2020-attach-to-dm04_.patch
Drop media-hdpvr-fix-an-error-handling-path-in-hdpvr_prob.patch
Cleanup Debian changelog for 4.15.4
2018-02-16 22:46:54 +01:00
0ec05d8c81
Release linux (4.14.17-1).
...
-----BEGIN PGP SIGNATURE-----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=jSDv
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.17-1'
Release linux (4.14.17-1).
2018-02-16 00:20:10 +01:00
0ce4bbe790
Fix building of liblockdep
2018-02-11 09:51:44 +01:00
0a69e0b046
Update to 4.14.17
...
Refresh cpupower-fix-checks-for-cpu-existence.patch patch
2018-02-04 15:14:12 +01:00
a870b2741a
crypto: ecc - Fix NULL pointer deref. on no default_rng
...
Closes : #886556
2018-02-02 20:43:54 +01:00
edfb7d0f0e
Update to 4.14.16
2018-02-02 14:39:34 +01:00
aacdec9702
Update to 4.15
2018-01-29 23:46:40 +00:00
623cfd4d39
Merge branch 'sid'
...
- Drop ABI maintenance patches
- Apply usbip config change in debian/config/config
2018-01-28 19:02:08 +00:00
4fae92a1d5
nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
2018-01-28 19:38:02 +01:00
e5ce9cb87e
Revert "module: Add retpoline tag to VERMAGIC"
2018-01-28 15:50:32 +01:00
3a81855475
Update to 4.14.15
2018-01-28 15:50:32 +01:00
e30f878e1d
ALSA: seq: Make ioctls race-free (CVE-2018-1000004)
2018-01-18 14:30:46 +01:00
6f43038466
Update to 4.14.14
...
Mostly done by Salvatore Bonaccorso.
2018-01-18 06:10:01 +00:00
0bb5e7cccb
loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
2018-01-16 20:57:59 +01:00
6c0d6a6239
RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
2018-01-16 20:53:46 +01:00
24cdd62c17
RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
2018-01-16 20:50:50 +01:00
6e7610453d
Release linux (4.14.13-1).
...
-----BEGIN PGP SIGNATURE-----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=M11J
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.13-1'
Release linux (4.14.13-1).
- Drop ABI reference
- Drop/refresh patches as necessary
- linux-headers: Drop versioned dependency on linux-kbuild, as there has not
been any version of linux-kbuild-4.15 without objtool
2018-01-15 04:35:41 +00:00
13eb990095
Update to 4.15-rc8
2018-01-15 04:31:31 +00:00
d9fe539b06
Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"
...
This removes the bogus check for libelf-dev.
2018-01-14 19:44:14 +00:00
da2cd8b85c
drm/nouveau/disp/gf119: add missing drive vfunc ptr
...
Closes : #880660
2018-01-13 11:54:57 +01:00
aac0e5380a
Properly name patch according to subject
...
Gbp-Dch: Ignore
2018-01-10 22:46:07 +01:00
d42878a1e5
Disable asynchronous aborts for SATA devices
2018-01-10 13:23:46 +01:00
9a41499923
Update to 4.14.13
2018-01-10 10:49:59 +01:00
8996784cdc
Release linux (4.14.12-2).
...
-----BEGIN PGP SIGNATURE-----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=wQ4Q
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.12-2'
Release linux (4.14.12-2).
2018-01-06 14:30:49 +01:00
9a96b9c27a
x86/tlb: Drop the _GPL from the cpu_tlbstate export
2018-01-05 21:17:13 +01:00
b64a1989ae
Revert "scsi: libsas: allow async aborts"
...
Fixes "Oops: NULL pointer dereference - RIP:
isci_task_abort_task+0x30/0x3e0 [isci]"
Closes : #882414
2018-01-05 14:23:11 +01:00
96dad8ed7e
Update to 4.14.11
2018-01-05 14:22:34 +01:00
a7b364e44f
Update to 4.14.9
2018-01-05 14:19:40 +01:00
f5474829b9
Update to 4.14.8
2018-01-05 10:59:15 +01:00
f65d850bba
Backport patch from linux-next (next-20180103) to support SMP on
...
tegra210 systems.
2018-01-04 10:50:15 -08:00
6a221d27b1
e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
...
Closes : #885348
2017-12-28 01:24:56 +00:00
7dd9b58675
Update to 4.15-rc5
...
Also update the aufs and lockdown patchsets.
2017-12-26 18:54:17 +00:00
8423f81c55
Merge remote-tracking branch 'alioth/sid' into sid
2017-12-22 14:10:04 +00:00
196596c560
crypto: hmac - require that the underlying hash algorithm is unkeyed (CVE-2017-17806)
2017-12-22 09:13:19 +01:00
4f056ca2c6
crypto: salsa20 - fix blkcipher_walk API usage (CVE-2017-17805)
2017-12-22 09:00:33 +01:00
cf1f6e2019
bpf/verifier: Fix multiple security issues ( Closes : #883558 )
2017-12-22 03:54:44 +00:00
fc7f6fafd8
Add security fixes
2017-12-20 19:27:18 +00:00
9e0441b20a
Update to 4.14.7
...
Drop patches applied upstream, and fix a few conflicts.
2017-12-20 18:40:37 +00:00
a865f2fdb7
[armhf, arm64] Backport patches from 4.15.x to support dwmac-sun8i.
2017-12-11 13:15:45 -08:00
2f634be5d8
xen/time: do not decrease steal time after live migration on xen
...
Closes : #871608
2017-12-03 10:53:37 +01:00
3f937de450
[x86] mmap: Add an exception to the stack gap for Hotspot JVM compatibility
...
Closes : #865303
2017-11-30 12:07:11 +00:00
71832be11b
mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d() (CVE-2017-1000405)
2017-11-30 08:16:06 +01:00
a633085eb6
apparmor: fix oops in audit_signal_cb hook (regression in 4.14)
2017-11-24 13:25:03 +00:00
d769bf7e2b
Update to 4.14.1
2017-11-22 03:13:35 +00:00
bf3c5027e0
i40e: Build for 32-bit targets again
...
Apply the upstream patches that removed the use of cmpxchg64().
2017-11-21 16:14:37 +00:00
1a1f0ef065
Release linux (4.13.13-1).
...
-----BEGIN PGP SIGNATURE-----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=TJmK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.13-1'
Release linux (4.13.13-1).
2017-11-16 22:18:14 +00:00
617046eb45
netfilter: nat: Avoid ABI change in 4.13.13
2017-11-16 21:04:07 +00:00
7cb3e39661
ALSA: timer: Avoid ABI change in 4.13.13
2017-11-16 20:52:13 +00:00
4c3b3b1dec
dvb_frontend: don't use-after-free the frontend struct (CVE-2017-16648)
...
Plus another fix it seems to depend on.
2017-11-16 20:04:01 +00:00
58e12683e1
net: qmi_wwan: fix divide by 0 on bad descriptors (CVE-2017-16650)
2017-11-16 18:13:46 +00:00
91a7ba9320
net: cdc_ether: fix divide by 0 on bad descriptors (CVE-2017-16649)
2017-11-16 18:12:24 +00:00
4ee0c56703
net: usb: asix: fill null-ptr-deref in asix_suspend (CVE-2017-16647)
2017-11-16 18:11:00 +00:00
ed4bdea861
media: dib0700: fix invalid dvb_detach argument (CVE-2017-16646)
2017-11-16 18:10:19 +00:00
c718be9d81
media: imon: Fix null-ptr-deref in imon_probe (CVE-2017-16537)
2017-11-16 18:04:43 +00:00
a06739ccd2
media: cx231xx-cards: fix NULL-deref on missing association descriptor (CVE-2017-16536)
2017-11-16 18:03:20 +00:00
c08c3b8b25
usb: usbtest: fix NULL pointer dereference (CVE-2017-16532)
2017-11-16 17:40:00 +00:00
1549b29ea0
Add follow-up fixes relatd to CVE-2017-13080
2017-11-16 17:35:46 +00:00
f4e45ee455
Update to 4.13.13
2017-11-16 17:32:44 +00:00
6ff07bd9a5
sctp: do not peel off an assoc from one netns to another one (CVE-2017-15115)
2017-11-16 15:22:47 +01:00
5d9e74ced8
mac80211: accept key reinstall without changing anything (CVE-2017-13080)
2017-11-16 15:18:54 +01:00
a2708107ce
swap: Avoid ABI change in 4.13.12
2017-11-12 01:09:18 +00:00
95757c39a8
Update to 4.13.12
2017-11-11 09:29:31 +01:00
e7fd57b49f
netfilter: nft_set_hash: disable fast_ops for 2-len keys
...
Closes : #880145
2017-11-04 15:43:57 +01:00
4b0df3bed7
cifs: check MaxPathNameComponentLength != 0 before using it
...
Thanks: Andrew Chadwick
Closes : #880504
2017-11-04 09:55:14 +01:00
e59d862868
Release linux (4.13.10-1).
...
-----BEGIN PGP SIGNATURE-----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=x3uW
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.10-1'
Release linux (4.13.10-1).
2017-10-30 18:31:31 +00:00
15c6a89208
Update to 4.13.10
...
Limit the ABI change in keys.
2017-10-29 12:13:18 +00:00
ec3cd54d45
Avoid/ignore more ABI changes in 4.13.y
2017-10-28 20:50:11 +01:00
48bb38a3f7
Update to 4.13.9
...
Drop many patches which are now upstream.
Avoid/ignore ABI changes as appropriate.
2017-10-26 22:41:11 +02:00
4206eefe13
Update to 4.14-rc5
2017-10-17 23:34:01 +01:00
146583d59c
Release linux (4.13.4-2).
...
-----BEGIN PGP SIGNATURE-----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=juOG
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.4-2'
Release linux (4.13.4-2).
2017-10-16 00:09:19 +01:00
ccefd718c8
[x86] KVM: MMU: always terminate page walks at level 1 (CVE-2017-12188)
2017-10-13 18:09:37 +02:00
02033a7a17
[x86] KVM: nVMX: update last_nonleaf_level when initializing nested EPT (CVE-2017-12188)
2017-10-13 18:07:54 +02:00
52c8b81bca
ALSA: seq: Fix use-after-free at creating a port (CVE-2017-15265)
2017-10-13 06:52:33 +02:00
35125947a2
waitid(): Add missing access_ok() checks (CVE-2017-5123)
2017-10-12 21:16:37 +02:00
6f55d3e571
KEYS: prevent KEYCTL_READ on negative key (CVE-2017-12192)
2017-10-12 07:55:47 +02:00
7c8172804e
mac80211: fix deadlock in driver-managed RX BA session start
...
Thanks: Eric Côté
Closes : #878092
2017-10-11 21:23:02 +02:00
fba37066c7
[powerpc*] Fix illegal TM state in signal handler
2017-10-11 07:57:06 +02:00
6c3a386d04
[powerpc*] Use emergency stack for kernel TM Bad Thing program (CVE-2017-1000255)
2017-10-11 07:55:16 +02:00
c68c0840bc
brcmfmac: add length check in brcmf_cfg80211_escan_handler() (CVE-2017-0786)
2017-10-09 21:45:15 +02:00
4d6306b792
i40e: Build for 64-bit targets only (fixes FTBFS on hppa)
2017-10-04 03:50:08 +01:00
335613b4d6
Update to 4.14-rc3
2017-10-01 23:23:22 +01:00
6c9c816966
Update to 4.14-rc2
...
aufs: Update support patchset to aufs4.x-rcN-20171002
2017-10-01 20:26:01 +01:00
884aedc0b4
liblockdep: Define pr_cont()
2017-10-01 15:44:25 +01:00
e2431bcb2f
[armhf] dts: exynos: Add dwc3 SUSPHY quirk ( Closes : #843448 )
2017-10-01 15:23:55 +01:00
2678c31e68
fix infoleak in waitid(2) (CVE-2017-14954)
2017-10-01 12:02:28 +02:00
f3152ccaad
Update to 4.13.4
2017-09-29 16:29:45 +02:00
b80b24d3e0
Release linux (4.12.13-1).
...
-----BEGIN PGP SIGNATURE-----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=Thw/
-----END PGP SIGNATURE-----
Merge tag 'debian/4.12.13-1'
Release linux (4.12.13-1).
Drop ABI reference files.
2017-09-19 18:34:53 +01:00
a18f05bb5b
Add various security fixes
2017-09-19 00:49:12 +01:00
cb5ce6ce3b
Update to 4.12.13
2017-09-19 00:33:58 +01:00
acfbd0bece
Bluetooth: Properly check L2CAP config option output buffer length (CVE-2017-1000251)
2017-09-14 06:51:56 +02:00
8f075a9a83
xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present (CVE-2017-14340)
2017-09-14 06:51:56 +02:00
bcc9a01d8e
scsi: qla2xxx: Fix an integer overflow in sysfs code (CVE-2017-14051)
2017-09-14 06:51:56 +02:00
2ed545523f
sctp: Avoid out-of-bounds reads from address storage (CVE-2017-7558)
2017-09-14 06:51:56 +02:00
5897597d01
Update to 4.13.1
2017-09-11 01:16:41 +01:00
41ff7a03ca
Update to 4.12.12
2017-09-10 12:07:09 +02:00
68b6e32819
Update to 4.12.11
2017-09-09 15:06:49 +02:00
b066a269e0
Update to 4.13
2017-09-04 01:19:41 +01:00
922a5d78d1
Bump ABI to 2
2017-09-03 01:47:43 +01:00
c755b1fcfd
pids: Avoid ABI change in 4.12.9
2017-09-02 21:02:35 +01:00
Ben Hutchings
Salvatore Bonaccorso
YunQiang Su
Helge Deller
Vagrant Cascadian
Bastian Blank