lp:debian/squeeze/user-mode-linux
- Get this branch:
- bzr branch lp:debian/squeeze/user-mode-linux
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 15. By dann frazier
-
* Rebuild against linux-source-2.6.32 (2.6.32-
48squeeze5) :
* CVE-2014-0196: Jiri Slaby discovered a race condition in the pty
layer, which could lead to denial of service or privilege escalation.
* CVE-2014-1737 / CVE-2014-1738: Matthew Daley discovered that
missing input sanitising in the FDRAWCMD ioctl and an information
leak could result in privilege escalation. - 14. By dann frazier
-
* Rebuild against linux-source-2.6.32 (2.6.32-
48squeeze4) :
* drivers/cdrom/cdrom. c: use kzalloc() for failing hardware (CVE-2013-2164)
* ipv6: ip6_sk_dst_check() must not assume ipv6 dst (CVE-2013-2232)
* af_key: fix info leaks in notify messages (CVE-2013-2234)
* af_key: initialize satype in key_notify_policy_ flush() (CVE-2013-2237)
* block: do not pass disk names as format strings (CVE-2013-2851)
* b43: stop format string leaking into error msgs (CVE-2013-2852)
* sctp: Use correct sideffect command in duplicate cookie handling
(CVE-2013-2206)
* kernel/signal.c: stop info leak via the tkill and the tgkill syscalls
(CVE-2013-2141)
* HID: validate HID report id size (CVE-2013-2888)
* HID: check for NULL field when setting values
* Information leak in openvz quota implementation (CVE-2013-2239)
* HID: pantherlord: validate output report details (CVE-2013-2892) - 13. By dann frazier
-
* Rebuild against linux-source-2.6.32 (2.6.32-45):
* Ignore arch_pick_mmap_layout ABI change on s390
* [x86] mm: Fix pgd_lock deadlock
* [s390] vdso: use ntp adjusted clock multiplier
* Revert "Work around unhappy compat problem on x86-64",
included in stable update 2.6.32.58, due to userspace beakage.
* CVE-2012-0879:
- block: Fix io_context leak after clone with CLONE_IO
- block: Fix io_context leak after failure of clone with CLONE_IO
* KVM: Ensure all vcpus are consistent with in-kernel irqchip settings
(CVE-2012-1601)
* hugepages: fix use after free bug in "quota" handling (CVE-2012-2133)
* fcaps: clear the same personality flags as suid when fcaps are used
(CVE-2012-2123)
* jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer (CVE-2011-4086) - 12. By dann frazier
-
* Rebuild against linux-source-2.6.32 (2.6.32-41):
* Add longterm releases 2.6.32.47 and 2.6.32.48, including:
- atm: br2684: Fix oops due to skb->dev being NULL
- md/linear: avoid corrupting structure while waiting for rcu_free to
complete.
- xen/smp: Warn user why they keel over - nosmp or noapic and what to use
instead. (Closes: #637308)
- md: Fix handling for devices from 2TB to 4TB in 0.90 metadata.
- net/9p: fix client code to fail more gracefully on protocol error
- fs/9p: Fid is not valid after a failed clunk.
- TPM: Call tpm_transmit with correct size (CVE-2011-1161)
- TPM: Zero buffer after copying to userspace (CVE-2011-1162)
- libiscsi_tcp: fix LLD data allocation
- cfg80211: Fix validation of AKM suites
- USB: pid_ns: ensure pid is not freed during kill_pid_info_as_ uid
- kobj_uevent: Ignore if some listeners cannot handle message
(Closes: #641661)
- nfsd4: ignore WANT bits in open downgrade
- [s390] KVM: check cpu_id prior to using it
- cfq: merge cooperating cfq_queues
- [x86] KVM: Reset tsc_timestamp on TSC writes (fixes guest performance
regression introduced in 2.6.32-35)
- ext4: fix BUG_ON() in ext4_ext_insert_ extent( )
- ext2,ext3,ext4: don't inherit APPEND_FL or IMMUTABLE_FL for new inodes
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ ChangeLog- 2.6.32. 47
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ ChangeLog- 2.6.32. 48
and the bug report which this closes: #647624.
* tg3: Fix I/O failures after chip reset (Closes: #645308; regression in
2.6.32-36)
* Add longterm release 2.6.32.49, including:
- SCSI: st: fix race in st_scsi_execute_end
- NFS/sunrpc: don't use a credential with extra groups.
- netlink: validate NLA_MSECS length
- hfs: add sanity check for file name length (CVE-2011-4330)
- md/raid5: abort any pending parity operations when array fails.
- mm: avoid null pointer access in vm_struct via /proc/vmallocinfo
- ipv6: udp: fix the wrong headroom check (CVE-2011-4326)
- USB: Fix Corruption issue in USB ftdi driver ftdi_sio.c
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ ChangeLog- 2.6.32. 49
and the bug report which this closes: #650160.
* ipv6: Allow inet6_dump_addr() to handle more than 64 addresses
(Closes: #651255)
* Add longterm release 2.6.32.50, including:
- PCI hotplug: shpchp: don't blindly claim non-AMD 0x7450 device IDs
(see #638863)
- sched, x86: Avoid unnecessary overflow in sched_clock
- [x86] mpparse: Account for bus types other than ISA and PCI
(Closes: #586494)
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ ChangeLog- 2.6.32. 50
and the bug report which this closes: #651367.
* [vserver] Update patch to 2.6.32.48-vs2. 3.0.36. 29.8
- nfs: Fix client uid/gid caching (Closes: #633526)
* [x86] Add isci driver from Linux 3.1 (Closes: #652857)
- libsas: fix definition of wideport, include local sas address
- [x86] Introduce pci_map_biosrom()
* Add longterm release 2.6.32.51, including:
- percpu: fix chunk range calculation
- xfrm: Fix key lengths for rfc3686(ctr(aes)) (Closes: #650652)
- jbd/jbd2: validate sb->s_first in journal_get_superblock( )
(CVE-2011- 4132)
- Make taskstats require root access (CVE-2011-2494)
- hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops (CVE-2011-2203)
- oprofile, x86: Fix nmi-unsafe callgraph support
- ext4: avoid hangs in ext4_da_should_ update_ i_disksize( )
* xen: backport upstream (xen.git#xen/stable- 2.6.32. y) fixes to event
handling:
- multiple fixes to PIRQ event channel handling (Closes: #638172)
- setup IRQ before binding VIRQ to it.
- correctly setup event channel mask for secondary CPUs on restore.
- use locked set/clear bit when manipulating event channel masks.
- ensure event channels are handled in a fair/round-robin order preventing
lower numbered event channels from starving higher.
* xen: blkback: don't fail empty barrier requests (Closes: #637234)
* ipv6: make fragment identifications less predictable (CVE-2011-2699)
- fix NULL dereference in udp6_ufo_fragment (see #643817)
* Add longterm release 2.6.32.52:
- Revert "clockevents: Set noop handler in clockevents_exchange_ device( )",
included in stable update 2.6.32.50 (Closes: #653398)
* Add longterm release 2.6.32.53, including:
- cfq-iosched: fix cfq_cic_link() race confition
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ ChangeLog- 2.6.32. 53
and the bug report which this closes: #655049. - 11. By dann frazier
-
* Rebuild against linux-source-2.6.32 (2.6.32-37):
* pm: Fix definition of SET_SYSTEM_SLEEP_PM_ OPS used in backported drivers
(fixes FTBFS on ia64)
* splice: Fix write position in output file (Closes: #641419)
* PCI: Add definition of pci_pcie_cap(), used in backported e1000e
(fixes FTBFS on armel, mips, mipsel, sparc)
* [openvz] cpt: Allow ext4 mounts (Closes: #642380)
* Add drm change from 2.6.32.41+drm33.18:
- drm/radeon/kms: fix bad shift in atom iio table parser
* [opvenz] ptrace: Don't allow to trace a process without memory map.
* Add drm change from 2.6.32.42+drm33.19, including:
- drm/i915: Add a no lvds quirk for the Asus EeeBox PC EB1007
- drm/radeon/kms: fix for radeon on systems >4GB without hardware iommu
* Add longterm release 2.6.32.43, including:
- ksm: fix NULL pointer dereference in scan_get_next_rmap_ item()
(CVE-2011- 2183)
- TTY: ldisc, do not close until there are readers
- uvcvideo: Remove buffers from the queues when freeing
- inet_diag: fix inet_diag_bc_audit( ) (CVE-2011-2213)
- net: filter: Use WARN_RATELIMIT
- af_packet: prevent information leak
- ipv6/udp: Use the correct variable to determine non-blocking condition
- mm: prevent concurrent unmap_mapping_range() on the same inode
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ v2.6.32/ ChangeLog- 2.6.32. 43
and the bug report which this closes: #637848.
* Add longterm release 2.6.32.42, including:
- ftrace: Only update the function code on write to filter files
- kmemleak: Do not return a pointer to an object that kmemleak did not get
- ext3: Fix fs corruption when make_indexed_dir() fails
- jbd: fix fsync() tid wraparound bug
- PCI: allow matching of prefetchable resources to non-prefetchable windows
(Closes: #637659)
- loop: handle on-demand devices correctly
- xhci: Fix full speed bInterval encoding; fix interval calculation for
FS isoc endpoints (regressions in 2.6.32-34)
- OHCI: fix regression caused by nVidia shutdown workaround
(regression in 2.6.32-31)
- brd: handle on-demand devices correctly
- xen mmu: fix a race window causing leave_mm BUG()
- SCSI: Fix oops caused by queue refcounting failure
- fat: Fix corrupt inode flags when remove ATTR_SYS flag
- pata_cm64x: fix boot crash on parisc (Closes: #622745, #622997)
- Revert "iwlagn: Support new 5000 microcode." (Closes: #632778)
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ v2.6.32/ ChangeLog- 2.6.32. 42
and the bug report which this closes: #631465.
* [vserver] Update patch to 2.6.32.41-vs2. 3.0.36. 29.7
- Apply sched changes deferred from 2.6.32.29
* e1000e: Backport changes up to Linux 2.6.38 (Closes: #627700)
- Add support for i82567V-4 and i82579
- Fix support for i82577, i82578 and i82583
* e1000e: Fix selection of alternate MAC address on device id 0x1060
(regression in 2.6.34)
* igb,igbvf: Backport changes up to Linux 3.0.4 (Closes: #627702)
- Add support for i82576-ET2, i82580, DH89xxCC, i340 and i350
* r8169: Backport changes up to Linux 3.0.2 (Closes: #627704)
- Fix support for RTL8102E and RTL8168DP
- Add support for RTL8105E, RTL8168E and another variant of RTL8168DP
- Add support for D-Link DGE-530T rev C1
* tg3,broadcom: Backport changes up to Linux 2.6.38 (Closes: #627705)
- Add support for BCM5717, BCM5719, BCM57765
- Add support for BCM50610M and BCM5241 PHYs
- Fix support for BCM5755
* Remove net device features from bug reports (Closes: #638956)
* Revert "net/ipv4: Check for mistakenly passed in non-IPv4 address"
included in 2.6.32.43, which might break some applications
* Add longterm release 2.6.32.44, including:
- NFSv4.1: update nfs4_fattr_bitmap_ maxsz
- hwmon: (max1111) Fix race condition causing NULL pointer exception
- bridge: send proper message_age in config BPDU
- USB: OHCI: fix another regression for NVIDIA controllers
(Closes: #620848)
- ext3: Fix oops in ext3_try_to_allocate_ with_rsv( )
- svcrpc: fix list-corrupting race on nfsd shutdown
- alpha: fix several security issues (CVE-2011-2208, CVE-2011-2209,
CVE-2011-2210, CVE-2011-2211)
- ALSA: sound/core/pcm_compat. c: adjust array index
- atm: [br2684] allow routed mode operation again
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ v2.6.32/ ChangeLog- 2.6.32. 44
and the bug report which this closes: #639425.
* Add longterm release 2.6.32.45, including:
- ALSA: timer - Fix Oops at closing slave timer
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ v2.6.32/ ChangeLog- 2.6.32. 45
and the bug report which this closes: #639426.
* sched: Work around sched_group::cpu_power == 0 (Ameliorates: #636797)
* [x86] Revert "x86, hotplug: Use mwait to offline a processor, fix the
legacy case" (Closes: #622259)
* Fix bugs in IPv6 forwarding with GRO/GSO (Closes: #630730):
- e1000e,igb,igbvf, ixgbe: Fix IPv6 GSO type checks
- ipv6: Add GSO support on forwarding path
* devpts: correctly check d_alloc_name() return code (Closes: #640650)
* ipv6: make fragment identifications less predictable (CVE-2011-2699)
* Add longterm release 2.6.32.46, including:
- atm: br2864: sent packets truncated in VC routed mode (Closes: #638656)
- hwmon: (ibmaem) add missing kfree
- ALSA: snd-usb-caiaq: Correct offset fields of outbound iso_frame_desc
- ALSA: snd_usb_caiaq: track submitted output urbs
- futex: Fix regression with read only mappings
- x86-32, vdso: On system call restart after SYSENTER, use int $0x80
- fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message
For the complete list of changes, see:
http://www.kernel. org/pub/ linux/kernel/ v2.6/longterm/ v2.6.32/ ChangeLog- 2.6.32. 46
and the bug report which this closes: #641232.
* drm/ttm: fix ttm_bo_add_ttm( user) failure path
* 3c503: fix broken IRQ autoprobing (Closes: #566522) - 10. By dann frazier
-
Rebuild against linux-source-2.6.32 (2.6.32-
34squeeze1) , whose
changelog can be viewed at:
http://packages. debian. org/changelogs/ pool/main/ l/linux- 2.6/linux- 2.6_2.6. 32-34squeeze1/ changelog - 9. By Mattia Dongili <email address hidden>
-
Update kernel config to the latest available for squeeze
- 8. By Mattia Dongili <email address hidden>
-
Sigh, the new 2.6.32 upload includes the IF_NOTIFY_RESUME patch included
in the previous version so u-m-l failed to build again :( - 7. By Mattia Dongili <email address hidden>
-
Fix build failure due to SUBARCH being passed with a wrong value
- 6. By Mattia Dongili <email address hidden>
-
* New upstream release.
* Remove 07_vde_user_build_ fix which has been merged upstream.
* Add 04_remove_irqf_disabled. patch to bring get a working network inside
the guest.
* Removed possibly MIA uploaders (Stefano Melchior) (Closes: #514667).
* Include more config options (i.e.: IP_VS) (Closes: #509434).
* Stop suggesting linux-patch-skas, not in the repository anymore
(Closes: #495651).
* Suggest: vde2 for the vde UML network driver.
* Fix strrchr symbol clash on forced static builds (Closes: #494995).
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)