Ben Hutchings
b84086545e
ALSA: usb-audio: avoid freeing umidi object twice (CVE-2016-XXXX)
2016-02-14 04:55:59 +00:00
Ben Hutchings
29ef5032ac
bpf: fix branch offset adjustment on backjumps after patching ctx expansion
...
CVE ID to be assigned.
2016-02-14 04:54:45 +00:00
Roger Shimizu
86ea7ce8a0
Enable TTY_PRINTK as module ( Closes : #814540 ).
2016-02-13 17:28:13 +00:00
Ben Hutchings
3c25ed439a
af_unix: Don't set err in unix_stream_read_generic unless there was an error
...
This fixes a regression in 4.4, also introduced in 4.3.4 and various
other stable updates.
2016-02-13 00:56:13 +00:00
Ben Hutchings
2d5f78b62a
Revert "workqueue: make sure delayed work run in local cpu"
...
This caused a regression in 4.3
2016-02-13 00:30:07 +00:00
Ben Hutchings
83fd76229d
af_unix: Guard against other == sk in unix_dgram_sendmsg (regression in 4.2.6-2)
2016-02-13 00:23:18 +00:00
Ben Hutchings
1c28b9c3ed
fs/hugetlbfs/inode.c: fix bugs in hugetlb_vmtruncate_list() (CVE-2016-0617)
...
Fixes a regression in 4.3.
2016-02-12 23:43:07 +00:00
Ben Hutchings
95ece6ebc6
iw_cxgb3: Fix incorrectly returning error on success (CVE-2015-8812)
2016-02-12 23:34:37 +00:00
Ben Hutchings
576b29b2c5
Prepare to release linux (4.4.1-1~exp1).
2016-02-10 02:02:14 +00:00
Ben Hutchings
3c6d2452cb
[x86] crypto: Enable CRYPTO_DEV_QAT_DH895xCCVF as module
2016-02-10 01:59:10 +00:00
Ben Hutchings
580997dd4a
[amd64] mm,nvdimm: Disable ZONE_DMA; enable ZONE_DEVICE, NVDIMM_PFN
2016-02-10 01:56:33 +00:00
Ben Hutchings
5a231207c7
[x86] thermal: Disable THERMAL_OF
2016-02-10 01:51:38 +00:00
Ben Hutchings
aea9926d19
vfs,nvdimm: Really enable FS_DAX
2016-02-10 01:51:38 +00:00
Ben Hutchings
3a3b557ac3
changelog: Note some old entries that wrongly claimed config symbols were enabled
2016-02-10 01:51:38 +00:00
Ben Hutchings
abaed981d7
Enable many new config symbols
...
* bnx2x: Enable BNX2X_VXLAN
* cgroups: Enable CGROUP_PIDS
* crypto: Enable CRYPTO_CHACHA20, CRYPTO_POLY1305, CRYPTO_CHACHA20POLY1305,
CRYPTO_USER_API_AEAD as modules
* [x86] crypto: Enable CRYPTO_DEV_QAT_DH895xCC as module
* [amd64] crypto: Enable CRYPTO_CHACHA20_X86_64, CRYPTO_DES3_EDE_X86_64,
CRYPTO_POLY1305_X86_64 as modules
* [x86] dmaengine: Enable INTEL_IDMA64 as module
* debug: Enable SCHED_STACK_END_CHECK
* dm-cache: Enable DM_CACHE_SMQ as module
* ethernet: Enable BNXT, QED, QEDE as modules
* hci_uart: Enable BT_HCIUART_QCA
* HID: Enable HID_CORSAIR, HID_GEMBIRD as modules
* [x86] hwmon: Enable SENSORS_I5500 as module
* [x86] IB: Enable INFINIBAND_USNIC as module
* iio/light: Enable ACPI_ALS as module
* [x86] input: Enable SURFACE_PRO3_BUTTON as module
* [x86] iommu: Enable INTEL_IOMMU_SVM
* ipvs: Enable IP_VS_OVF as module
* media: Enable DVB_NETUP_UNIDVB, USB_GSPCA_TOUPTEK,_VIDEO_DT3155 as modules
* [x86] mfd: Enable MFD_INTEL_LPSS_ACPI, MFD_INTEL_LPSS_PCI as modules
* [amd64] mic: Enable INTEL_MIC_X100_DMA, MIC_COSM, SCIF, SCIF_BUS as modules
* [powerpc*/*64*] misc: Enable GENWQE as module
* net: Enable LWTUNNEL, NET_L3_MASTER_DEV; and MPLS_IPTUNNEL, NET_VRF
as modules
* [amd64] net: Enable FUJITSU_ES as module
* netfilter: Really enable NF_TABLES_NETDEV, NFT_REDIR_IPV4, NFT_REDIR_IPV6
as modules
* net/phy: Enable AQUANTIA_PHY, DP83848_PHY, MICROCHIP_PHY, TERANETICS_PHY
as modules
* net/sched: Really enable NET_CLS_FLOWER as module
* net/usb: Enable USB_LAN78XX, USB_NET_CH9200 as modules
* nfsd: Enable NFSD_PNFS
* [x86] pinctrl: Enable PINCTRL_BROXTON, PINCTRL_SUNRISEPOINT
* [x86] rfkill: Enable DELL_RBTN as module
* serial: Enable SERIAL_OF_PLATFORM as module
* sound/firewire: Enable SND_FIREWIRE_DIGI00X, SND_FIREWIRE_TASCAM as modules
* [x86] thermal: Enable INTEL_PCH_THERMAL, INTEL_SOC_DTS_THERMAL as modules
* [x86] Enable INTEL_PMC_IPC as module
2016-02-10 01:21:56 +00:00
Ben Hutchings
0efd25dfff
[rt] Update to 4.4.1-rt5
2016-02-09 18:04:09 +00:00
Ian Campbell
efab9f0b2f
[armel/marvell] Declare breaks against flash-kernel << 3.57~
2016-02-08 09:20:43 +00:00
Ben Hutchings
8ff6a7a38a
[armel/marvell] mtd: Change JFFS2_FS, MTD_SPI_NOR, and M25P80 from built-in to modules
2016-02-07 18:14:32 +00:00
Ben Hutchings
db28f005ab
input: Disable KEYBOARD_ATKBD
2016-02-07 18:14:32 +00:00
Ben Hutchings
401df5efb5
[armel/marvell] Disable support for DNS-323
...
The kernel image was already too large for this machine.
- Disable MACH_DNS323
- Change MTD_CFI_AMDSTD from built-in to module
2016-02-07 18:14:32 +00:00
Ben Hutchings
7f810117b9
[armel] Replace kirkwood and orion5x flavours with a 'marvell' flavour
...
Apply upstream patches from 4.5-rc1 to enable inclusion of orion5x in a
multiplatform build.
Merge configurations as well as possible.
2016-02-07 18:14:32 +00:00
Ben Hutchings
6c26fa513e
Release linux (4.3.5-1).
...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=cqNy
-----END PGP SIGNATURE-----
Merge tag 'debian/4.3.5-1'
2016-02-07 05:28:43 +00:00
Ben Hutchings
4b5119edad
Prepare to release linux (4.3.5-1).
2016-02-06 23:25:14 +00:00
Ben Hutchings
0df8f2e3e7
hwrng: n2 - Attach on T5/M5, T7/M7 SPARC CPUs ( Closes : #809815 )
2016-02-06 21:25:49 +00:00
Martin Michlmayr
8e44bb11ea
Include Device Tree model in reportbug script
...
It would be nice to include the Device Tree model in the reportbug
output. On DT based platforms, /proc/cpuinfo only includes quite
generic information.
Please note that the strange "echo ... $(cat ..)" construct is
intentional. 'cat /proc/device-tree/model' leads to a strange
character at the end because there's no newline and using echo
gets rid of it.
2016-02-06 21:15:38 +00:00
Hendrik Brueckner
d77feea6da
udeb: include btrfs-modules
...
Add btrfs-modules udeb. Also add zlib-modules udeb because btrfs
requires zlib_deflate.
Signed-off-by: Hendrik Brueckner <brueckner@linux.vnet.ibm.com>
2016-02-06 21:01:40 +00:00
Hendrik Brueckner
b6b5dc56d5
udeb: include modules to mount ISOs (loop device)
...
To mount ISO images within the Debian Installer, the loop device
support is required. Also the CD/DVD file systems are required too.
Hence, add the ISO and UDF file systems modules, as well as, the
loop device modules.
Signed-off-by: Hendrik Brueckner <brueckner@linux.vnet.ibm.com>
2016-02-06 21:00:43 +00:00
Ben Hutchings
13b0fb82e4
udeb: Add hid-logitech-hidpp to input-modules ( Closes : #796096 )
2016-02-06 20:57:29 +00:00
Ben Hutchings
32d2f8cfc9
debian/copyright: Add licence information for drivers/crypto/vmx/*.pl
...
Another GPL-compatible licence that needs an extra notice.
2016-02-06 20:40:32 +00:00
Ben Hutchings
2e76aafc84
[powerpc*] Enable CRYPTO_DEV_VMX and enable CRYPTO_DEV_VMX_ENCRYPT as module ( Closes : #813640 )
2016-02-06 20:15:55 +00:00
Ben Hutchings
455507d34b
Improve changelog for stable updates 4.3.{4,5}
...
Delete entries for commits that are unimportant.
Add regression versions.
2016-02-06 18:31:53 +00:00
Ben Hutchings
ef736f8440
pipe: limit the per-user amount of pages allocated in pipes (CVE-2013-4312)
2016-02-04 20:34:11 +00:00
Ben Hutchings
3180443250
rt2x00: fix monitor mode regression (regression in 4.2)
2016-02-01 17:16:15 +00:00
Ben Hutchings
1ba618c3d3
Update to 4.4.1
2016-02-01 10:59:35 +00:00
Ben Hutchings
ba1393105a
Update to 4.3.5
...
Drop several patches that are included in it.
Fix/ignore various ABI changes.
2016-02-01 10:27:12 +00:00
Ben Hutchings
20ed8bdbac
x86/mm: Add barriers and document switch_mm()-vs-flush synchronization (CVE-2016-2069)
...
Plus a follow-up fix to the comments.
2016-01-29 03:42:16 +00:00
Aurelien Jarno
985fe43552
[arm64] Enable RTC_DRV_EFI.
2016-01-28 17:52:56 +01:00
Aurelien Jarno
237b83662e
[mips*] Backport math emulation fix from 4.5.
2016-01-27 22:33:18 +01:00
Ben Hutchings
546ce38280
[rt] Update to 4.4-rt3
...
This includes all the build fixes I made for 4.4-rt1 and -rt2, so drop
my patches.
2016-01-27 21:24:31 +00:00
Ben Hutchings
3106c3977c
linux-headers: Make postinst script less verbose (see: #734266 )
2016-01-27 19:52:52 +00:00
Ben Hutchings
2b5391e7a4
linux-{headers,image}: Remove support for version-specific hooks
...
This was inherited/cargo-culted from kernel-package, undocumented, and
apparently useless.
2016-01-27 19:52:52 +00:00
Ben Hutchings
b34af3d32d
linux-image: Remove unnecessary debconf initialisations
...
Only the prerm and postrm scripts need it now.
Also remove the Pre-Depends relation to debconf.
2016-01-27 19:52:52 +00:00
Ben Hutchings
daa4d23204
[mips*] linux-image: Remove debconf question for requirement of initramfs
...
This question was presented during the upgrade to jessie and there's
no need to retain it.
2016-01-27 19:52:52 +00:00
Salvatore Bonaccorso
b1fa3fac88
netfilter: nf_nat_redirect: add missing NULL pointer check (CVE-2015-8787)
2016-01-27 19:25:20 +01:00
Ben Hutchings
76c256b5b8
SCSI: fix crashes in sd and sr runtime PM ( Closes : #801925 )
2016-01-27 01:32:15 +00:00
Ben Hutchings
f71765e064
linux-image: Make failure of depmod fatal, rather than asking what to do
...
depmod has been stable for a very long time so there's no reason to
have a configuration variable and debconf question to handle failure.
While we're at it, fix the decoding of $? to handle the exec failure
case ($? == -1).
2016-01-27 00:19:31 +00:00
Salvatore Bonaccorso
2675c7c2e5
Fix syntax error in changelog entry
2016-01-26 09:44:59 +01:00
Salvatore Bonaccorso
cdfc3b2f30
tcp: fix zero cwnd in tcp_cwnd_reduction (CVE-2016-2070)
2016-01-26 09:00:04 +01:00
Salvatore Bonaccorso
20c41274fa
Add CVE reference for CVE-2015-8785
2016-01-24 19:19:30 +01:00
Ben Hutchings
024851fa3a
fuse: break infinite loop in fuse_fill_write_pages()
...
This doesn't have a CVE ID yet.
2016-01-23 22:57:21 +00:00