4fae92a1d5
nfsd: auth: Fix gid sorting when rootsquash enabled (CVE-2018-1000028)
2018-01-28 19:38:02 +01:00
e53a4aa3b8
[rt] Update to 4.14.15-rt11
2018-01-28 15:50:32 +01:00
e5ce9cb87e
Revert "module: Add retpoline tag to VERMAGIC"
2018-01-28 15:50:32 +01:00
3a81855475
Update to 4.14.15
2018-01-28 15:50:32 +01:00
893c189290
[arm64] embed reset drivers to kernel
...
Reset drivers are tiny and are needed often early in boot. Kconfig
selects the drivers automatically with arch specific defaults:
config COMMON_RESET_HI6220
default ARCH_HISI
So remove explicit driver selections from arm 64 config and let
kconfig dependencies handle it for us.
2018-01-26 11:02:53 +02:00
dd6dc914d3
cloud: Mention support for Google Compute Engine
2018-01-23 21:38:05 +01:00
3fa67126b5
Switch to SLUB as kernel allocator
2018-01-23 19:25:23 +01:00
cf300a600b
usb: Enable USBIP_CORE etc. on all architectures ( Closes : #888042 )
2018-01-23 17:26:24 +00:00
e6885f415f
Enable CGROUP_BPF (except for armel) ( Closes : #872560 )
2018-01-23 17:15:28 +00:00
5ff0bf31f4
Add bug closer for I2C_PXA on espressobin
2018-01-21 22:34:07 +01:00
14c0e8f36f
[arm64] enable I2C_PXA for espressobin
2018-01-21 22:11:36 +01:00
503143acab
Enable NVME_MULTIPATH, NVME_FC, NVME_TARGET_FC
...
This enables NVME support in various SCSI host adapters, so move the
nvme module into the scsi-modules installer udeb.
2018-01-18 20:20:14 +01:00
a26c8f0854
x86: Enable HYPERV_VSOCKETS
2018-01-18 20:19:26 +01:00
aaaaf627d3
x86: Enable SCHED_MC_PRIO
2018-01-18 20:19:26 +01:00
02deddcfba
Enable CRYPTO_RSA, CRYPTO_DH, CRYPTO_ECDH
2018-01-18 20:19:26 +01:00
54918bc9f0
Enable VIRTIO_MMIO
2018-01-18 20:19:25 +01:00
4c06af37cc
Enable IPVTAP
2018-01-18 20:19:03 +01:00
7bd33d45fd
Enable NET_ACT_SAMPLE
2018-01-18 20:13:56 +01:00
82296390f5
Enable IP_SET_HASH_IPMAC
2018-01-18 20:13:56 +01:00
3aa1af59a8
Enable NF_LOG_NETDEV
2018-01-18 20:13:56 +01:00
cdc2183e8b
Enable IPV6_SEG6_LWTUNNEL, IPV6_SEG6_HMAC
2018-01-18 20:13:56 +01:00
3a62f848cf
Enable INET_ESP_OFFLOAD, INET6_ESP_OFFLOAD
2018-01-18 20:13:56 +01:00
63e3ef13a0
Enable NUMA_BALANCING_DEFAULT_ENABLED
2018-01-18 20:13:56 +01:00
e30f878e1d
ALSA: seq: Make ioctls race-free (CVE-2018-1000004)
2018-01-18 14:30:46 +01:00
12fc8ef895
cloud-amd64: Support Amazon EC2
2018-01-18 12:57:14 +01:00
5f83961cb5
Add cloud-amd64 kernel flavour
...
As discussed on d-kernel, this flavour is added as experiment on request
of Microsoft. For now it is only tested on Microsoft Azure.
It will be expanded to cover the other public cloud platforms at well.
This platforms will need additional drivers.
2018-01-18 09:19:36 +01:00
6f43038466
Update to 4.14.14
...
Mostly done by Salvatore Bonaccorso.
2018-01-18 06:10:01 +00:00
0bb5e7cccb
loop: fix concurrent lo_open/lo_release (CVE-2018-5344)
2018-01-16 20:57:59 +01:00
6c0d6a6239
RDS: null pointer dereference in rds_atomic_free_op (CVE-2018-5333)
2018-01-16 20:53:46 +01:00
24cdd62c17
RDS: Heap OOB write in rds_message_alloc_sgs() (CVE-2018-5332)
2018-01-16 20:50:50 +01:00
4762c889ee
Prepare to release linux (4.15~rc8-1~exp1).
2018-01-15 04:43:14 +00:00
9d3430166e
Note CVEs fixed upstream
2018-01-15 04:43:12 +00:00
6e7610453d
Release linux (4.14.13-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAlpb7AUACgkQ57/I7JWG
EQmfjhAArIzynB9B8lG9U8OlC7bp+HTjk9BgOKo5VZ6ABlIePxveUgkc44kYK1ET
YGiqpi1BbMPoDiu32QyuCzYwxNjUl6dXCOKnUgsTR0jyKSXoc19idWLb/U5akXxF
Q1LWUaBWB/SbR52inAE8nX2s1tdgFjKDHgebAOdbPApt8eTnI4pSL1YvehDQtqG1
olz3L1PjlRhT2XCdtWIPrLioIxUiOacYGV7sMZHL2jsJS+mmf20BiUMsfusafL2r
Q8LSVGCQRgWutbTZW2YmFtx0FybxYc8wRj/9d7nYMaOv+UeFbx6ffYrkZUqXlK4j
TkVsFULVoEfgnu9GkWnd+kdJP8PwbDkrjk1JsXg55A0LCrfFcorbMQc8GCJ6ICpu
mFqw5NQaxQZszP6W0dYWHWJTLENOVxjYyoMjmLuQIMudzHP4bGTXjJ/PCBebT5fR
6XOPdqcWoOT5f8NloMFqzPQQeFQMY+DycYiz2tdYxH4AnvGsgdOLFiHHYxxIsOa1
Bzxb4bWxF2m3hKiyY5am/5U6MAxLrBwsvLZVklyfxYSRlvnPldKVHohzHTZafPSo
M7KU4R1e6wywwjg9Qtk4YJBX5w0jT3b9vbVQVNT47WzvLwXA/TY+Il6BIAVuzL57
MJAosU9SDAf28XUVzcaXbsHm9l2gcnUS6kCVVWTEvmehkW1rR3o=
=M11J
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.13-1'
Release linux (4.14.13-1).
- Drop ABI reference
- Drop/refresh patches as necessary
- linux-headers: Drop versioned dependency on linux-kbuild, as there has not
been any version of linux-kbuild-4.15 without objtool
2018-01-15 04:35:41 +00:00
13eb990095
Update to 4.15-rc8
2018-01-15 04:31:31 +00:00
2ae3c9e4a7
Prepare to release linux (4.14.13-1).
2018-01-14 19:45:05 +00:00
d9fe539b06
Revert "objtool: Fix CONFIG_STACK_VALIDATION=y warning for out-of-tree modules"
...
This removes the bogus check for libelf-dev.
2018-01-14 19:44:14 +00:00
236bb1a25d
linux-headers: Add versioned dependency on linux-kbuild
2018-01-14 19:41:44 +00:00
da2cd8b85c
drm/nouveau/disp/gf119: add missing drive vfunc ptr
...
Closes : #880660
2018-01-13 11:54:57 +01:00
30fe681bff
abiupdate.py: Add support for security mirrors
2018-01-12 02:36:06 +00:00
a8911b9351
[arm64] disable omap_rng temporarily
...
The drivers hangs machine with IRQ storm on MacchiatoBin with EFI
as firmware. Re-enable the module once the issue is fixed.
2018-01-11 11:46:38 +02:00
aac0e5380a
Properly name patch according to subject
...
Gbp-Dch: Ignore
2018-01-10 22:46:07 +01:00
d42878a1e5
Disable asynchronous aborts for SATA devices
2018-01-10 13:23:46 +01:00
9a41499923
Update to 4.14.13
2018-01-10 10:49:59 +01:00
8996784cdc
Release linux (4.14.12-2).
...
-----BEGIN PGP SIGNATURE-----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=wQ4Q
-----END PGP SIGNATURE-----
Merge tag 'debian/4.14.12-2'
Release linux (4.14.12-2).
2018-01-06 14:30:49 +01:00
d41931f615
Prepare to release linux (4.14.12-2).
2018-01-06 09:08:42 +01:00
b2de3f8c6a
linux-headers: Add symlink to linux-kbuild tools directory for objtool in architecture-specific headers package
...
Thanks: Luca Boccassi
Closes : #886366
2018-01-06 08:06:27 +01:00
f5177a853e
linux-headers: Add symlink to linux-kbuild tools directory for objtool
2018-01-06 07:41:12 +01:00
3c9fb40bbb
linux-kbuild: Add objtool
2018-01-06 07:38:02 +01:00
1c59cc6aec
Prepare to release linux (4.14.12-1).
2018-01-05 21:20:26 +01:00
9a96b9c27a
x86/tlb: Drop the _GPL from the cpu_tlbstate export
2018-01-05 21:17:13 +01:00
52909cebb8
Update to 4.14.12
2018-01-05 16:07:19 +01:00
b64a1989ae
Revert "scsi: libsas: allow async aborts"
...
Fixes "Oops: NULL pointer dereference - RIP:
isci_task_abort_task+0x30/0x3e0 [isci]"
Closes : #882414
2018-01-05 14:23:11 +01:00
96dad8ed7e
Update to 4.14.11
2018-01-05 14:22:34 +01:00
304afa4414
Update to 4.14.10
2018-01-05 14:21:05 +01:00
572b685574
Bump ABI to 3
2018-01-05 14:21:01 +01:00
a7b364e44f
Update to 4.14.9
2018-01-05 14:19:40 +01:00
f587f7242e
[rt] Update to 4.14.8-rt9
2018-01-05 10:59:15 +01:00
f5474829b9
Update to 4.14.8
2018-01-05 10:59:15 +01:00
f65d850bba
Backport patch from linux-next (next-20180103) to support SMP on
...
tegra210 systems.
2018-01-04 10:50:15 -08:00
6c445bffa2
Clean up configuration using kconfigeditor2
...
Enable one replacement symbol and drop those that are really gone.
2017-12-30 16:20:49 +00:00
cb21ae6740
efi: Enable LOCK_DOWN_IN_EFI_SECURE_BOOT, replacing EFI_SECURE_BOOT_LOCK_DOWN
2017-12-30 16:20:25 +00:00
20aa9b586e
[arm64] Update "add kernel config option to lock down when in Secure Boot mode" for 4.15
2017-12-30 16:00:46 +00:00
6a221d27b1
e1000e: Fix e1000_check_for_copper_link_ich8lan return value.
...
Closes : #885348
2017-12-28 01:24:56 +00:00
5635aaadec
Prepare to release linux (4.15~rc5-1~exp1).
2017-12-27 02:48:15 +00:00
55fce3fb69
Merge remote-tracking branch 'alioth/master'
2017-12-27 01:40:30 +00:00
4932bdacf1
linux-kbuild: Add objtool
2017-12-27 01:38:04 +00:00
7f35685e4b
[rt] Disable until it is updated for 4.15 or later
2017-12-27 01:38:03 +00:00
e01624c730
cpupower: Move library to multiarch directory
...
Upstream moved it from /usr/lib to /usr/lib64 in 4.15, but neither of
these is correct.
2017-12-27 01:38:00 +00:00
7bcd3c4d13
lockdown: Update calls to kernel_is_locked_down() in "mtd: Disable slram and phram when locked down"
...
We need to pass a string to be logged the first time the check fires.
2017-12-27 01:37:24 +00:00
7dd9b58675
Update to 4.15-rc5
...
Also update the aufs and lockdown patchsets.
2017-12-26 18:54:17 +00:00
ab5d03cb3b
Prepare to release linux (4.14.7-1).
2017-12-22 14:12:23 +00:00
8423f81c55
Merge remote-tracking branch 'alioth/sid' into sid
2017-12-22 14:10:04 +00:00
196596c560
crypto: hmac - require that the underlying hash algorithm is unkeyed (CVE-2017-17806)
2017-12-22 09:13:19 +01:00
4f056ca2c6
crypto: salsa20 - fix blkcipher_walk API usage (CVE-2017-17805)
2017-12-22 09:00:33 +01:00
adef82ee3a
Bump ABI to 2
2017-12-22 03:54:44 +00:00
cf1f6e2019
bpf/verifier: Fix multiple security issues ( Closes : #883558 )
2017-12-22 03:54:44 +00:00
a983b69920
Add one more known CVE id
...
Gbp-Dch: Ignore
2017-12-21 06:07:46 +01:00
2bc058f58c
Add opening parenthesis
...
Gbp-Dch: Ignore
2017-12-20 20:41:06 +01:00
fc7f6fafd8
Add security fixes
2017-12-20 19:27:18 +00:00
285e1090f2
[rt] Update to 4.14.6-rt7
2017-12-20 18:53:59 +00:00
9e0441b20a
Update to 4.14.7
...
Drop patches applied upstream, and fix a few conflicts.
2017-12-20 18:40:37 +00:00
67968436a4
[arm64] udeb: add mvebu comphy for armada 8K
2017-12-12 11:01:35 +02:00
11548f0aea
[arm64] udeb: add multifunction devices
2017-12-12 11:00:38 +02:00
a865f2fdb7
[armhf, arm64] Backport patches from 4.15.x to support dwmac-sun8i.
2017-12-11 13:15:45 -08:00
2f634be5d8
xen/time: do not decrease steal time after live migration on xen
...
Closes : #871608
2017-12-03 10:53:37 +01:00
7e09c9fcc8
Add ABI reference for 4.14.0-1
2017-12-03 10:18:48 +01:00
5b750f6268
Prepare to release linux (4.14.2-1).
2017-11-30 12:33:47 +00:00
1bf82631fb
Revert "SCSI: Enable SCSI_MQ_DEFAULT"
...
This reverts commit 16d7f29d46
2017-11-30 12:07:11 +00:00
3f937de450
[x86] mmap: Add an exception to the stack gap for Hotspot JVM compatibility
...
Closes : #865303
2017-11-30 12:07:11 +00:00
a87b11684d
Prepare to upload to unstable
...
Drop the ~exp1 from the version.
Set ABI to 1.
2017-11-30 12:06:47 +00:00
71832be11b
mm, thp: Do not make page table dirty unconditionally in touch_p[mu]d() (CVE-2017-1000405)
2017-11-30 08:16:06 +01:00
fb72f17cab
[rt] Update to 4.14.1-rt3
2017-11-29 23:05:39 +00:00
b0a4fbf1cd
[rt] Add new signing subkey for Steven Rostedt
2017-11-29 22:11:04 +00:00
16d7f29d46
SCSI: Enable SCSI_MQ_DEFAULT
...
Now that blk-mq has a similar default scheduler as the old block
layer, it should be safe to switch over.
Note how to revert this at run-time if necessary.
2017-11-29 22:11:04 +00:00
f6077f8f4f
Add entry for CVE-2017-16994
2017-11-27 21:35:01 +01:00
f83f2a2082
Update to 4.14.2
2017-11-25 08:30:31 +01:00
2ed7a163b9
leds: Enable LEDS_BRIGHTNESS_HW_CHANGED ( Closes : #872862 )
2017-11-24 17:20:44 +00:00
a633085eb6
apparmor: fix oops in audit_signal_cb hook (regression in 4.14)
2017-11-24 13:25:03 +00:00
b979dd72a4
[armel] Change configuration to reduce image size (fixes FTBFS)
...
- Change CONNECTOR from built-in to module, and disable PROC_EVENTS
- Disable INTEGRITY and dependent options
- video: Disable USB_APPLEDISPLAY, BACKLIGHT_CLASS_DEVICE
This still only gets us down to 99.26% of maximum size, so further
changes will be needed soon.
2017-11-23 01:00:43 +00:00
d769bf7e2b
Update to 4.14.1
2017-11-22 03:13:35 +00:00
5436f201dd
aufs: Update support patchset to aufs4.14-20171120
2017-11-21 16:20:07 +00:00
bf3c5027e0
i40e: Build for 32-bit targets again
...
Apply the upstream patches that removed the use of cmpxchg64().
2017-11-21 16:14:37 +00:00
1dffc3c5d6
[rt] Update to 4.14-rt1 and reenable ( Closes : #882192 )
2017-11-20 14:17:41 +00:00
94964d2c86
Prepare to release linux (4.14-1~exp1).
2017-11-17 00:16:15 +00:00
0876bb2edc
Set ABI name to trunk
2017-11-17 00:16:12 +00:00
1a1f0ef065
Release linux (4.13.13-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAloODhAACgkQ57/I7JWG
EQkFAg//Zb5RqwypcEFRZs6Oyi4jF6EekQW+UVXjAE8gAw3ae8+1uvkg3TyMY7uT
C//3H1DGY/A3imqHsxku9NG5T9KhJL9cKn2EDRz8c/+lU949wXjzSFCQk+p9mwcb
RSyuqES+FwtrMJoN0iXpVIiTSjImuu4IIpTmc6IsZo1frn5oHKmeC4mvsKuflL/S
usdauRUkQewtTvi/Z8wDA5fJIDN2ff0DcSN8Km/QPlB2zUoGaQRM36ApZVeHDX3X
190bDAuBfJp9Pht3eFPUq6HwEht9hbiqSaSpMKB/jyPE8lWZ7AL8CM2qiOuZCXil
ncELxkx+8Cqp4jAWc3wqGZ5mkeVHeHxZcmFv0b4hQaaifW5GtmlMo/XHhMeFIoCc
tbcC55No2c3ZUhUH0kAQyf26zZ3f7hBAYT8EI5BNngPpZB4W7NJL8A2c09QYxAVB
/uXNnCdd7LZ9Dnhgc0K1FjIEckd1XHVQgVZ6Seo4Pv2adMfLckla3Xvqj888515a
akTL9LFAKySOqalakMl34G2FT1S0CR9+7I45KFcKjiGW5pF1RgDeLZy1W+nQq3Vd
oH2KmWGovmouMEnrh8RgKJNwLkelVkLKl0AFhJ29PGeDrGAklz0Sy5egB8iqoxRh
fiKph8IGdD8akqlI4d8mTWs01FmALkkSHUkLAxbME8HC3lpb7Ic=
=TJmK
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.13-1'
Release linux (4.13.13-1).
2017-11-16 22:18:14 +00:00
8c84dc3d14
Prepare to release linux (4.13.13-1).
2017-11-16 21:04:10 +00:00
617046eb45
netfilter: nat: Avoid ABI change in 4.13.13
2017-11-16 21:04:07 +00:00
7cb3e39661
ALSA: timer: Avoid ABI change in 4.13.13
2017-11-16 20:52:13 +00:00
4c3b3b1dec
dvb_frontend: don't use-after-free the frontend struct (CVE-2017-16648)
...
Plus another fix it seems to depend on.
2017-11-16 20:04:01 +00:00
f03dc09259
[armhf] drm: Enable DRM_SUN4I etc. ( Closes : #881570 )
2017-11-16 19:59:53 +00:00
79e266334e
[arm64] config fixup
...
drop CRYPTO_DEV_CAVIUM_ZIP due to crashes
add SERIAL_DEV_BUS, needed for HiKey bluetooth
2017-11-16 21:54:44 +02:00
8aabb7ea89
amdgpu: Enable DRM_AMDGPU_SI, CONFIG_DRM_AMDGPU_CIK ( Closes : #847570 )
2017-11-16 19:17:33 +00:00
26fe100dfe
[x86] rmi4: Disable RMI4_SMB ( Closes : #880471 )
2017-11-16 19:12:16 +00:00
3529916815
[arm64] nvmem: Enable NVMEM_SUNXI_SID as module ( Closes : #881567 )
2017-11-16 19:10:31 +00:00
a4d1de0350
[arm64,x86] net/wireless: Enable RTL8723BS as module ( Closes : #881568 )
2017-11-16 19:07:46 +00:00
e81177b8a9
amdgpu: Enable DRM_AMDGPU_USERPTR on all architectures
...
I missed this when enabling amdgpu on arm64.
Also move the explicit disabling of DRM_AMDGPU_CIK to the top level
config.
2017-11-16 18:44:33 +00:00
2cc01f34ce
[powerpc*/*64*] drm: Enable DRM_AMDGPU as module ( Closes : #881593 )
2017-11-16 18:42:09 +00:00
9f5b9b8ff8
nftables: Enable NFT_RT, NFT_SET_BITMAP, NFT_OBJREF as modules ( Closes : #881931 )
2017-11-16 18:37:11 +00:00
58e12683e1
net: qmi_wwan: fix divide by 0 on bad descriptors (CVE-2017-16650)
2017-11-16 18:13:46 +00:00
91a7ba9320
net: cdc_ether: fix divide by 0 on bad descriptors (CVE-2017-16649)
2017-11-16 18:12:24 +00:00
4ee0c56703
net: usb: asix: fill null-ptr-deref in asix_suspend (CVE-2017-16647)
2017-11-16 18:11:00 +00:00
ed4bdea861
media: dib0700: fix invalid dvb_detach argument (CVE-2017-16646)
2017-11-16 18:10:19 +00:00
c718be9d81
media: imon: Fix null-ptr-deref in imon_probe (CVE-2017-16537)
2017-11-16 18:04:43 +00:00
a06739ccd2
media: cx231xx-cards: fix NULL-deref on missing association descriptor (CVE-2017-16536)
2017-11-16 18:03:20 +00:00
c08c3b8b25
usb: usbtest: fix NULL pointer dereference (CVE-2017-16532)
2017-11-16 17:40:00 +00:00
1549b29ea0
Add follow-up fixes relatd to CVE-2017-13080
2017-11-16 17:35:46 +00:00
f4e45ee455
Update to 4.13.13
2017-11-16 17:32:44 +00:00
6ff07bd9a5
sctp: do not peel off an assoc from one netns to another one (CVE-2017-15115)
2017-11-16 15:22:47 +01:00
5d9e74ced8
mac80211: accept key reinstall without changing anything (CVE-2017-13080)
2017-11-16 15:18:54 +01:00
d8d66235a8
Update to 4.14
2017-11-14 13:02:01 +00:00
a2708107ce
swap: Avoid ABI change in 4.13.12
2017-11-12 01:09:18 +00:00
86b8621ec9
[powerpc*] kvm: Ignore ABI change in 4.13.6 (fixes FTBFS)
2017-11-11 20:53:08 +00:00
fdf384b742
[powerpc*] Ignore kvm-related ABI changes (fixes FTBFS)
2017-11-11 20:50:42 +00:00
95757c39a8
Update to 4.13.12
2017-11-11 09:29:31 +01:00
ed497f3cb7
Add server and 96boards options
...
Generic server options NUMA, ACPI_NUMA, CRASH_DUMP, VFIO, *WATCHDOG
Servers specific options:
APM X-gene: NET_XGENE_V2
Cavium ThunderX: EDAC_THUNDERX, MMC_CAVIUM_THUNDER, CRYPTO_DEV_CAVIUM*
Cavium ThunderX 2: GPIO_XLP, I2C_XLP9XX, SPI_XLP
Hisilicon: DRM_HISI_HIBMC, SCSI_HISI_SAS_PCI
Marvell Armada 7k/8k/3700: CRYPTO_DEV_MARVELL_CESA, MARVELL_PHY,
MARVELL_10G_PHY, PHY_MVEBU_CP110_COMPHY, RTC_DRV_MV,
RTC_DRV_ARMADA38X, SPI_ARMADA_3700, ARMADA_THERMAL,
NOP_USB_XCEIV, HW_RANDOM_OMAP, CRYPTO_DEV_SAFEXCE
96boards:
Hikey: PCIE_KIRIN, TEE, OPTEE, SND_I2S_HI6210_I2S, DRM_I2C_ADV7511_AUDIO
DragonBoard 410c: *QCOM*, CONFIG_CMA, USB changes
Signed-off-by: Riku Voipio <riku.voipio@linaro.org>
2017-11-09 15:44:47 +02:00
f13763371c
Add CVE id reference for CVE-2017-16643
...
Gbp-Dch: Ignore
2017-11-08 10:45:20 +01:00
4a745d05b1
Add CVE id for CVE-2017-15306
...
Gbp-Dch: Ignore
2017-11-06 13:04:31 +01:00
7522aac927
Enable CRYPTO_SHA3
2017-11-06 11:22:29 +01:00
bd1e10f8bd
linux-image: Recommend apparmor ( Closes : #880441 )
...
The apparmor package is needed for loading profiles. In theory,
enabling AppArmor without any profiles loaded should do nothing, so
this is not really a dependency of the kernel. However, if a systemd
unit specifies a AppArmor profile and the kernel has AppArmor enabled
then failure to load the profile is fatal.
As the linux-image packages select AppArmor as the default LSM, they
should probably also be responsible for getting the necessary userland
support installed. But since the default can be overridden, use
Recommends rather than Depends.
2017-11-05 01:54:12 +00:00
43a5e411fd
Add bug closer for #879768
...
Gbp-Dch: Ignore
2017-11-04 16:57:42 +01:00
e7fd57b49f
netfilter: nft_set_hash: disable fast_ops for 2-len keys
...
Closes : #880145
2017-11-04 15:43:57 +01:00
4b0df3bed7
cifs: check MaxPathNameComponentLength != 0 before using it
...
Thanks: Andrew Chadwick
Closes : #880504
2017-11-04 09:55:14 +01:00
384fa91229
Update to 4.13.11
2017-11-04 09:06:37 +01:00
c8b3153d0d
debian/control: Set Rules-Requires-Root to no
...
Tell dpkg and debhelper that we can install without (fake)root and
then dpkg-deb should then override all ownership to root:root.
Draft specification for this field:
https://lists.debian.org/debian-devel/2017/10/msg00520.html
2017-10-30 21:58:12 +00:00
85565e1ae2
Prepare to release linux (4.14~rc7-1~exp1).
2017-10-30 18:31:38 +00:00
e59d862868
Release linux (4.13.10-1).
...
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAln3apoACgkQ57/I7JWG
EQllsQ//fyZFkoGOLpHjkS3sNtMxfh1J9+f+JJI33WF9vA/w7SnRfg/Rdbjx+rY8
LRCnviTyh5tuxKSPKHerpUqjNbYi7Hcr0LXxxOPL1Rr+BTFKQuaSDYNzt10bT2mJ
9B0ZYI+Q8n7rAq1/MeSKygV6zh+5MxywN8LZlqg0Au8/7/c7H0nR3MOEFz29imL0
jBMOhy7a+Gby3Qs5ZdKGf0i4RZT9Y/9Ozu9sFpVGqrTyY+FlEd0y1KUvIipbdLTH
S/oRFF1m4IeS7tF6AIprCPMIMPt8tcQrSLvB01REpbvSJvDg+laEgmHnb0PKlOpW
RAeQn2r1NCEjjZcKll8dCMp+sTiLhx+us4L3Jumwb2Yno+219zuScFg2MR0zu5U/
XCB5zG2U5XENH+fRdDnWROkXJ/o1Dtk+Ix1aPySa8I9IdlP45n+Q4LCLw3eg5h3I
CdITwTJxWlnLJVI852wh1qorBuUs5lac9HZ8u0s5MDFXNQkWOVQKRPZN0sA3hwwp
wjudMsGgq6kkoknnEcwTKV4JFWJdfJ0SieaWBv1LSQwAmVy3/QvOTvDBLzRxmtUX
tygPktH53HLp4z6qPOcKD+hGLcdlD5oTWYb2O5MqVlSI8MjONOcjpRGAP2fhIf2t
3INpM9sJPHILXqpEMH6co4VzxnQq1OElMjcA5nqD2A7HLOSDhZg=
=x3uW
-----END PGP SIGNATURE-----
Merge tag 'debian/4.13.10-1'
Release linux (4.13.10-1).
2017-10-30 18:31:31 +00:00
375e4b8147
Update to 4.14-rc7
2017-10-30 18:28:33 +00:00
38106d0ef0
Enable SQUASHFS_LZ4 in default config.
2017-10-30 16:52:53 +01:00
ed0765f59c
Prepare to release linux (4.13.10-1).
2017-10-30 15:32:11 +00:00
Salvatore Bonaccorso
Riku Voipio
Bastian Blank
Ben Hutchings
Uwe Kleine-König
Vagrant Cascadian
Bastian Blank