Salvatore Bonaccorso
|
71832be11b
|
mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d() (CVE-2017-1000405)
|
2017-11-30 08:16:06 +01:00 |
Ben Hutchings
|
a633085eb6
|
apparmor: fix oops in audit_signal_cb hook (regression in 4.14)
|
2017-11-24 13:25:03 +00:00 |
|
Ben Hutchings
|
d769bf7e2b
|
Update to 4.14.1
|
2017-11-22 03:13:35 +00:00 |
|
Ben Hutchings
|
bf3c5027e0
|
i40e: Build for 32-bit targets again
Apply the upstream patches that removed the use of cmpxchg64().
|
2017-11-21 16:14:37 +00:00 |
|
Ben Hutchings
|
1a1f0ef065
|
Release linux (4.13.13-1).
-----BEGIN PGP SIGNATURE-----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=TJmK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.13-1'
Release linux (4.13.13-1).
|
2017-11-16 22:18:14 +00:00 |
|
Ben Hutchings
|
617046eb45
|
netfilter: nat: Avoid ABI change in 4.13.13
|
2017-11-16 21:04:07 +00:00 |
|
Ben Hutchings
|
7cb3e39661
|
ALSA: timer: Avoid ABI change in 4.13.13
|
2017-11-16 20:52:13 +00:00 |
|
Ben Hutchings
|
4c3b3b1dec
|
dvb_frontend: don't use-after-free the frontend struct (CVE-2017-16648)
Plus another fix it seems to depend on.
|
2017-11-16 20:04:01 +00:00 |
|
Ben Hutchings
|
58e12683e1
|
net: qmi_wwan: fix divide by 0 on bad descriptors (CVE-2017-16650)
|
2017-11-16 18:13:46 +00:00 |
|
Ben Hutchings
|
91a7ba9320
|
net: cdc_ether: fix divide by 0 on bad descriptors (CVE-2017-16649)
|
2017-11-16 18:12:24 +00:00 |
|
Ben Hutchings
|
4ee0c56703
|
net: usb: asix: fill null-ptr-deref in asix_suspend (CVE-2017-16647)
|
2017-11-16 18:11:00 +00:00 |
|
Ben Hutchings
|
ed4bdea861
|
media: dib0700: fix invalid dvb_detach argument (CVE-2017-16646)
|
2017-11-16 18:10:19 +00:00 |
|
Ben Hutchings
|
c718be9d81
|
media: imon: Fix null-ptr-deref in imon_probe (CVE-2017-16537)
|
2017-11-16 18:04:43 +00:00 |
|
Ben Hutchings
|
a06739ccd2
|
media: cx231xx-cards: fix NULL-deref on missing association descriptor (CVE-2017-16536)
|
2017-11-16 18:03:20 +00:00 |
|
Ben Hutchings
|
c08c3b8b25
|
usb: usbtest: fix NULL pointer dereference (CVE-2017-16532)
|
2017-11-16 17:40:00 +00:00 |
|
Ben Hutchings
|
1549b29ea0
|
Add follow-up fixes relatd to CVE-2017-13080
|
2017-11-16 17:35:46 +00:00 |
|
Ben Hutchings
|
f4e45ee455
|
Update to 4.13.13
|
2017-11-16 17:32:44 +00:00 |
|
Salvatore Bonaccorso
|
6ff07bd9a5
|
sctp: do not peel off an assoc from one netns to another one (CVE-2017-15115)
|
2017-11-16 15:22:47 +01:00 |
|
Salvatore Bonaccorso
|
5d9e74ced8
|
mac80211: accept key reinstall without changing anything (CVE-2017-13080)
|
2017-11-16 15:18:54 +01:00 |
|
Ben Hutchings
|
a2708107ce
|
swap: Avoid ABI change in 4.13.12
|
2017-11-12 01:09:18 +00:00 |
|
Salvatore Bonaccorso
|
95757c39a8
|
Update to 4.13.12
|
2017-11-11 09:29:31 +01:00 |
|
Salvatore Bonaccorso
|
e7fd57b49f
|
netfilter: nft_set_hash: disable fast_ops for 2-len keys
Closes: #880145
|
2017-11-04 15:43:57 +01:00 |
|
Salvatore Bonaccorso
|
4b0df3bed7
|
cifs: check MaxPathNameComponentLength != 0 before using it
Thanks: Andrew Chadwick
Closes: #880504
|
2017-11-04 09:55:14 +01:00 |
|
Ben Hutchings
|
e59d862868
|
Release linux (4.13.10-1).
-----BEGIN PGP SIGNATURE-----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=x3uW
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.10-1'
Release linux (4.13.10-1).
|
2017-10-30 18:31:31 +00:00 |
|
Ben Hutchings
|
15c6a89208
|
Update to 4.13.10
Limit the ABI change in keys.
|
2017-10-29 12:13:18 +00:00 |
|
Ben Hutchings
|
ec3cd54d45
|
Avoid/ignore more ABI changes in 4.13.y
|
2017-10-28 20:50:11 +01:00 |
|
Ben Hutchings
|
48bb38a3f7
|
Update to 4.13.9
Drop many patches which are now upstream.
Avoid/ignore ABI changes as appropriate.
|
2017-10-26 22:41:11 +02:00 |
|
Ben Hutchings
|
4206eefe13
|
Update to 4.14-rc5
|
2017-10-17 23:34:01 +01:00 |
|
Ben Hutchings
|
146583d59c
|
Release linux (4.13.4-2).
-----BEGIN PGP SIGNATURE-----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=juOG
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.4-2'
Release linux (4.13.4-2).
|
2017-10-16 00:09:19 +01:00 |
|
Salvatore Bonaccorso
|
ccefd718c8
|
[x86] KVM: MMU: always terminate page walks at level 1 (CVE-2017-12188)
|
2017-10-13 18:09:37 +02:00 |
|
Salvatore Bonaccorso
|
02033a7a17
|
[x86] KVM: nVMX: update last_nonleaf_level when initializing nested EPT (CVE-2017-12188)
|
2017-10-13 18:07:54 +02:00 |
|
Salvatore Bonaccorso
|
52c8b81bca
|
ALSA: seq: Fix use-after-free at creating a port (CVE-2017-15265)
|
2017-10-13 06:52:33 +02:00 |
|
Salvatore Bonaccorso
|
35125947a2
|
waitid(): Add missing access_ok() checks (CVE-2017-5123)
|
2017-10-12 21:16:37 +02:00 |
|
Salvatore Bonaccorso
|
6f55d3e571
|
KEYS: prevent KEYCTL_READ on negative key (CVE-2017-12192)
|
2017-10-12 07:55:47 +02:00 |
|
Salvatore Bonaccorso
|
7c8172804e
|
mac80211: fix deadlock in driver-managed RX BA session start
Thanks: Eric Côté
Closes: #878092
|
2017-10-11 21:23:02 +02:00 |
|
Salvatore Bonaccorso
|
fba37066c7
|
[powerpc*] Fix illegal TM state in signal handler
|
2017-10-11 07:57:06 +02:00 |
|
Salvatore Bonaccorso
|
6c3a386d04
|
[powerpc*] Use emergency stack for kernel TM Bad Thing program (CVE-2017-1000255)
|
2017-10-11 07:55:16 +02:00 |
|
Salvatore Bonaccorso
|
c68c0840bc
|
brcmfmac: add length check in brcmf_cfg80211_escan_handler() (CVE-2017-0786)
|
2017-10-09 21:45:15 +02:00 |
|
Ben Hutchings
|
4d6306b792
|
i40e: Build for 64-bit targets only (fixes FTBFS on hppa)
|
2017-10-04 03:50:08 +01:00 |
|
Ben Hutchings
|
335613b4d6
|
Update to 4.14-rc3
|
2017-10-01 23:23:22 +01:00 |
|
Ben Hutchings
|
6c9c816966
|
Update to 4.14-rc2
aufs: Update support patchset to aufs4.x-rcN-20171002
|
2017-10-01 20:26:01 +01:00 |
|
Ben Hutchings
|
884aedc0b4
|
liblockdep: Define pr_cont()
|
2017-10-01 15:44:25 +01:00 |
|
Ben Hutchings
|
e2431bcb2f
|
[armhf] dts: exynos: Add dwc3 SUSPHY quirk (Closes: #843448)
|
2017-10-01 15:23:55 +01:00 |
|
Salvatore Bonaccorso
|
2678c31e68
|
fix infoleak in waitid(2) (CVE-2017-14954)
|
2017-10-01 12:02:28 +02:00 |
|
Ben Hutchings
|
f3152ccaad
|
Update to 4.13.4
|
2017-09-29 16:29:45 +02:00 |
|
Ben Hutchings
|
b80b24d3e0
|
Release linux (4.12.13-1).
-----BEGIN PGP SIGNATURE-----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=Thw/
-----END PGP SIGNATURE-----
Merge tag 'debian/4.12.13-1'
Release linux (4.12.13-1).
Drop ABI reference files.
|
2017-09-19 18:34:53 +01:00 |
|
Ben Hutchings
|
a18f05bb5b
|
Add various security fixes
|
2017-09-19 00:49:12 +01:00 |
|
Ben Hutchings
|
cb5ce6ce3b
|
Update to 4.12.13
|
2017-09-19 00:33:58 +01:00 |
|
Salvatore Bonaccorso
|
acfbd0bece
|
Bluetooth: Properly check L2CAP config option output buffer length (CVE-2017-1000251)
|
2017-09-14 06:51:56 +02:00 |
|
Salvatore Bonaccorso
|
8f075a9a83
|
xfs: XFS_IS_REALTIME_INODE() should be false if no rt device present (CVE-2017-14340)
|
2017-09-14 06:51:56 +02:00 |