debian-packaging
/
linux
8
0
Fork 0
Code Releases Activity
12,018 Commits 2 Branches 0 Tags 493 MiB
Commit Graph

2648 Commits

Author SHA1 Message Date
Ben Hutchings 13c410d6c1 Update to 4.9.2 2017-01-09 21:06:30 +00:00
Ben Hutchings 0814db65a8 Update to 4.9.1 
Drop two obsolete patches.

"ptrace: being capable wrt a process requires mapped uids/gids"
appears to be obsoleted by upstream commit bfedb589252c "mm: Add
a user_ns owner to mm_struct and fix ptrace permission checks".
 2017-01-07 03:27:13 +00:00
Ben Hutchings 9e92fc9bab Revert "arm64/mm: Limit TASK_SIZE_64 ..." and add breaks on incompatible mozjs 
mozjs assumed VAs would never be wider than 47 bits.  Add Breaks to
force upgrades of those packages.  For mozjs 1.8.5 the fix requires an
ABI change so this is unversioned; for mozjs 24 there was no ABI
change so this is versioned.

(luajit has the same problem but only the experimental version
supports arm64.  I assume this will be fixed before it goes into
unstable, so we don't need it in Breaks.)
 2017-01-07 02:07:50 +00:00
Uwe Kleine-König a3e600085e [armhf] Add support for switch hardware on Turris Omnia 2017-01-06 17:59:21 +01:00
Ben Hutchings 97ab9059a9 Release linux (4.8.15-2). 
-----BEGIN PGP SIGNATURE-----
 
 iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlhtitEACgkQ57/I7JWG
 EQlPqQ//V6+eUGkATmlFFyxsM91OsMgZyxtt0Pzf7XvFg4gBr+hJIaJwxasVRZGi
 w/r4uYHmiX7fLrXnanT+RekT1zCGQBOLUvm2Rlwi845PAl9fMCSb+9Jiz60THeN7
 cHg7JEvNhTEEDpLK1FJlU3fiMqb5LRdUTkz+RkhKRfITm4/bT3h0Ow72/Xy6JsrI
 nAf/AyncvBCQvrIUXYyfyHUPhkYMk8L7bC6G4o803kFdPYTb1WR2gRbpsI6jSVs8
 YFbrfMpH1foPHiTVWP+inDN9LA2TO8QGMvAuCAQzQuLzKztrU0i/1shjDfaN61qx
 xQhXE08TwNnkDZQCtIFZrLkRPSFlLqFqVWyL9eyPAYNAnZeugxB6F3HOWk5cKWqj
 NPpZ10zAnKliPnL7z+eFlxLq34UgVqqe1FeRB5iBEC2dQYEs3LuB1RF2zFOuZ74T
 cvXKJJhuR4iMNcAOax6Uab+3iyC/PGm5VSiCL+IPbD7H9IaXLcICE8l1r0zRs5Sa
 Um4YQKTy8kFK/CRsEOB8CofXMuBXLzEw2xeNn6187d/ZeA7uiUsyd2nVkXnO0FNt
 B2JkV6kwO99WAnNwTZSwF7QJJe8ir7X4X1qdk00sqNYiDff/CBHjRT1gLRzNyOuJ
 r9QFKRt4UGF3XGpE89czRRoHfP9WkdrmdmP1i/DnkSVO6L8/y6Y=
 =AxAX
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.8.15-2'
 2017-01-05 00:01:00 +00:00
Ben Hutchings bc0de8a222 [powerpc*] boot: Request no dynamic linker for boot wrapper 
Closes: #848851, FTBFS on ppc6el
 2017-01-02 03:09:22 +00:00
Salvatore Bonaccorso 5efdda62b4 kvm: nVMX: Allow L1 to intercept software exceptions (#BP and #OF) (CVE-2016-9588) 2017-01-01 09:15:13 +01:00
Salvatore Bonaccorso e7ccf65ec6 sg_write()/bsg_write() is not fit to be called under KERNEL_DS (CVE-2016-10088) 2016-12-31 20:21:43 +01:00
Ben Hutchings 344453b7f7 Release linux (4.8.15-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQKmBAABCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlhYKrFfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
 ZWJpYW4ub3JnAAoJEAVMuPMTQ89E6xQP/1MRca+ekUynYy2IFUipst1zlvO94p59
 79Pe26mFBb05MuDdU1DaA/fJvlpG14rDCnXCid8AAGF9LtuCzrxo6K2RdHpCi8h8
 JuJCRSMrh3p3SvkeTDm3osLuRgaARvD7ruBOpWYki3D3TORpJk9IELK+HLw4CfBb
 I50sJQSfTQm1/TKEwbHIHc0L1/FH5yVqMYA8v5KvJsz94ICXe4J5FJyIReexqVIL
 LGO45r23eOHJ9rmO/XP1gtp9sRtPev2ZAbL4VwOqbku/KVQGQUMsikv0TUHBZT1C
 jCz2ffFaJtTWWFhoKTUqCmKyqhuIklGMS4MOPHMxjXBdgA6Nb2iGOWc53ilQ35v+
 umh4BJWNgqtJfkibJTDD/gA/f/U2f7O+a2ZTOXZjJPbK8bVNiyqnImHP4XWDS4OC
 5IW7swgvvBVDIk7eDzDd3lKK8O1ZcWjS5U9PbaXu9C0XDeTSOKQUhfpRkfvUaqzQ
 BshFmULrdvFKQzS/FJdcW/DkjGdcyYLjYtB+jPaHTG/ZytGDBqZIu4Yb4/hFAdUd
 rk1MgyI4GfeBFT7RlItBJK+12WtdyTbfaiCDS4O+av0yM0drBIpm6wpl2OHZrP0R
 70nZKVTcdSu+4TN3uoy2ZHHaw/ZsrsAE3EePQtdNtDAFYj7oIWjDDCVHJH4zdFHl
 ekMUyxf7Hzun
 =i7IG
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.8.15-1'

Drop ABI reference files.
 2016-12-20 03:58:23 +00:00
Salvatore Bonaccorso 36b7372766 docs: sphinx-extensions: make rstFlatTable work with docutils 0.13 
Thanks: Dmitry Shachnev <mitya57@debian.org>
Closes: #848349
 2016-12-19 08:30:20 +01:00
Uwe Kleine-Koenig a9f6833ed4 Update to 4.9 2016-12-18 18:00:28 +01:00
Salvatore Bonaccorso 8e3469b562 Update to 4.8.15 2016-12-16 11:02:32 +01:00
Salvatore Bonaccorso 966cf13de0 netfilter: ipv6: nf_defrag: drop mangled skb on ream error (CVE-2016-9755) 2016-12-14 17:12:59 +01:00
Salvatore Bonaccorso 14a852ee64 Update to 4.8.14 2016-12-12 20:28:07 +01:00
Ben Hutchings c7f834c8dc Revert "Revert "arm64/mm: Limit TASK_SIZE_64 ..." and add breaks on incompatible mozjs" 
This reverts commit a462c39f5d.  mozjs24
got 'fixed' in an ABI-compatible way that had to be reverted, so it's
still broken.  Same for mozjs, though it hasn't been reverted yet.

Also, Breaks relations against source package names would not have
been very effective.
 2016-12-11 02:15:44 +00:00
Salvatore Bonaccorso 93304bd632 net: handle no dst on skb in icmp6_send (CVE-2016-9919) 2016-12-10 07:42:41 +01:00
Salvatore Bonaccorso d2f4158d99 Don't feed anything but regular iovec's to blk_rq_map_user_iov (CVE-2016-9576) 2016-12-10 07:35:50 +01:00
Salvatore Bonaccorso 56659f5080 net: ping: check minimum size on ICMP header length (CVE-2016-8399) 2016-12-10 07:29:51 +01:00
Ben Hutchings a462c39f5d Revert "arm64/mm: Limit TASK_SIZE_64 ..." and add breaks on incompatible mozjs 
mozjs assumed VAs would never be wider than 47 bits.  Add versioned
Breaks to force upgrades of those packages.

(luajit has the same problem but only the experimental version
supports arm64.  I assume this will be fixed before it goes into
unstable, so we don't need it in Breaks.)
 2016-12-09 12:07:18 +00:00
Salvatore Bonaccorso be8be2cb5f net: avoid signed overflows for SO_{SND|RCV}BUFFORCE (CVE-2016-9793) 2016-12-08 19:28:56 +01:00
Salvatore Bonaccorso 3b66b4fcef packet: fix race condition in packet_set_ring (CVE-2016-8655) 2016-12-07 10:34:33 +01:00
Salvatore Bonaccorso 27fc4207c6 tipc: check minimum bearer MTU (CVE-2016-8632) 2016-12-07 10:31:56 +01:00
Salvatore Bonaccorso 59ebe22f2f Update to 4.8.12 2016-12-06 21:19:22 +01:00
Roger Shimizu 8f06e2bdc6 [armel] dts: marvell: fix number of sata port for linkstation ls-gl 
Closes: #845611
 2016-12-06 08:38:19 +09:00
Ben Hutchings b3906798a8 Revert "default exported asm symbols to zero" 2016-12-05 01:07:36 +00:00
Ben Hutchings 1c1ab88dbe Update to 4.9-rc8 2016-12-05 01:02:03 +00:00
Uwe Kleine-König 086dccbdfe [armhf] dts: armada-385: add support for Turris Omnia 2016-12-04 21:18:15 +01:00
Ben Hutchings 34594185e1 Drop "default exported asm symbols to zero" 
This caused *all* symbol version CRCs to be zero in modules on amd64.
 2016-12-03 01:45:17 +00:00
Ben Hutchings 2431e89ed3 Update fixes for exported symbol versions 
Linus has re-enable CONFIG_MODVERSIONS, but also weakened the version
matching.  Apply his match but then revert the weakening.

Also add a proposed fix for missing version CRCs, which gives them a
default value of zero.  Since buildcheck.py now checks for this, we
should detect all unversioned symbols at build time.
 2016-12-02 23:13:17 +00:00
Ben Hutchings ab01013e14 [powerpc*] Fix more exported symbol versions 2016-12-02 02:49:08 +00:00
Ben Hutchings 54d0756a33 Fix exported symbol versions 
- Revert upstream changes moving exports to assembly sources
- [x86] kbuild: enable modversions for symbols exported from assembly
- Revert "Fix subtle CONFIG_MODVERSIONS problems"

This leaves powerpc and x86 as the only kernel architectures that
export symbols from assembly, and <asm/asm-prototypes.h> for those
two appear to define prototypes for all the functions that are used.
 2016-12-02 00:19:09 +00:00
Ben Hutchings 67d96bc121 Update to 4.9-rc7 
This has a different fix for the missing modversions on ARM.
 2016-12-01 20:08:58 +00:00
Salvatore Bonaccorso ceb75c4337 mnt: Add a per mount namespace limit on the number of mounts (CVE-2016-6213) 2016-11-30 16:15:29 +01:00
Salvatore Bonaccorso b67bd212fa vfio/pci: Fix integer overflows, bitmask check (CVE-2016-9083 CVE-2016-9084) 2016-11-30 09:15:19 +01:00
Salvatore Bonaccorso 609f818472 mpi: Fix NULL ptr dereference in mpi_powm() (CVE-2016-8650) 2016-11-30 09:04:11 +01:00
Salvatore Bonaccorso 3536d5d7a6 Update to 4.8.10 2016-11-28 21:10:27 +01:00
Ben Hutchings fa9e148da4 Update to 4.9-rc6 2016-11-21 23:52:49 +00:00
Uwe Kleine-König 0971da3b71 [armhf,armel] fix CRC generation for modules 2016-11-19 17:06:08 +01:00
Ben Hutchings 96f3d8b5c3 Revert "include/uapi/linux/atm_zatm.h: include linux/time.h" (Closes: #844491) 2016-11-16 21:18:15 +00:00
Salvatore Bonaccorso b7117071e0 fs: Avoid premature clearing of capabilities (CVE-2015-1350) 
Closes: #770492
 2016-11-16 19:23:06 +01:00
Salvatore Bonaccorso b048cc5a7c fs: Give dentry to inode_change_ok() instead of inode 2016-11-16 19:20:21 +01:00
Salvatore Bonaccorso 2e74b80287 fuse: Propagate dentry down to inode_change_ok() 2016-11-16 19:18:11 +01:00
Salvatore Bonaccorso 055cd5a2d1 ceph: Propagate dentry down to inode_change_ok() 2016-11-16 19:14:26 +01:00
Salvatore Bonaccorso 2683f37d06 xfs: Propagate dentry down to inode_change_ok() 2016-11-16 19:11:36 +01:00
Salvatore Bonaccorso 26676cdca0 Update to 4.8.8 2016-11-15 22:32:40 +01:00
Ben Hutchings abd19bbc53 Release linux (4.8.7-1). 
-----BEGIN PGP SIGNATURE-----
 
 iQIcBAABCgAGBQJYKMjFAAoJEOe/yOyVhhEJOtIP/RIo9vUk0PusThnw4bYQTA8T
 x8UTEpGJ+tqWBRL+yv7Ff3A8qP2TRAvJW2xzqu1+4UwNYgCSTa8A20bJ6crGzN8X
 Y6J7nqWFuzWsB2SHsPvYI1m0Q9luNrQ+1vkohpH53u8FfJxuceHwP/tFj6ShMl8i
 bNUiftui2Sc82JUjUdiG2EpXlIJH+N3aO8+R5ER3qUqoiHxChrslSbh3Lg8T8Tcp
 ItwwLi6K9s3CjYCiDiZ54+BYYQRy+rmTRFpEmgac4v2+HqXrMKAR4D6EomqMl3r1
 wHQ/F/Tt1GMvYvJniKWJIJVeCzuZSBmaQrL+D7xkKVGrzMo7QGGW1xr3DzyV1alc
 Ugx4k2nDbPDGinrbkhJbuds02VDIl8vfrnUM1NCYZ2GrReD5jJPj6OcZvlXRbjZw
 gUL1j+3w1dCa71E2rufZK7DZnGw4MjR9Q0cAefbgWNzEFDNh3nXQEKpxleEMmT/C
 xXVR2cfUpOAr1J4vR++I7kAn9re9tw7UlX3JYqH8+ty6Lm+DxrzoGMxEd1bmxYm9
 yzIn4O8x6LK2B7NdHfRs1SJC4rWWy/3+2z+5SnFroGMem8ugDhB95Q3QFvQGe9Ga
 zw1T6+GlYF9oglzY87XcKY2oUQveL8A45pM2TF3HsgGbx7wziR2yymjWAk03w32Y
 uYbKvmpQsH/wNrOA8E8I
 =uDst
 -----END PGP SIGNATURE-----

Merge tag 'debian/4.8.7-1'

Drop ABI maintenance and patches that are already upstream.
 2016-11-13 21:52:47 +00:00
Ben Hutchings 9ab8cb710b [x86] efi: Prevent mixed mode boot corruption with CONFIG_VMAP_STACK=y 2016-11-13 21:00:47 +00:00
Ben Hutchings b15e0cf459 Update to 4.9-rc5 2016-11-13 20:35:21 +00:00
Salvatore Bonaccorso e8880932f8 Update to 4.8.7 2016-11-11 20:00:01 +01:00
Ben Hutchings 82c55764b5 kbuild: Update -fno-PIE patches to match upstream 2016-11-10 20:26:29 +00:00