lp:ubuntu/dapper-proposed/linux-source-2.6.15

Created by James Westby and last modified
Get this branch:
bzr branch lp:ubuntu/dapper-proposed/linux-source-2.6.15
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Mature

Recent revisions

46. By Brad Figg

[ Brad Figg ]

* Release Tracking Bug
  - LP: #771895

[Upstream Kernel Changes]

* av7110: check for negative array offset, CVE-2011-0521
  - LP: #767526
  - CVE-2011-0521
* af_unix: limit unix_tot_inflight, CVE-2010-4249
  - LP: #769182
  - CVE-2010-4249
* IB/cm: Bump reference count on cm_id before invoking callback,
  CVE-2011-0695
  - LP: #770369
  - CVE-2011-0695
* fs/partitions/ldm.c: fix oops caused by corrupted partition table,
  CVE-2011-1017
  - LP: #771382
  - CVE-2011-1017
* ldm: corrupted partition table can cause kernel oops, CVE-2011-1017
  - LP: #771382
  - CVE-2011-1017

45. By Brad Figg

[ Brad Figg ]

* Release Tracking Bug
  - LP: #736366

[ Upstream Kernel Changes ]

* do_exit(): make sure that we run with get_fs() == USER_DS,
  CVE-2010-4258
  - LP: #723945
  - CVE-2010-4258
* [Dapper] x25: Prevent crashing when parsing bad X.25 facilities
  CVE-2010-4164
  - LP: #731199
  - CVE-2010-4164

44. By Brad Figg

[ Brad Figg ]

* Tracking Bug
  - LP: #725090

[ Upstream Kernel Changes ]

* bluetooth: Fix missing NULL check, CVE-2010-4242
  - LP: #714846
  - CVE-2010-4242
* bio: take care not overflow page count when mapping/copying user data,
  CVE-2010-4162
  - LP: #721441
  - CVE-2010-4162
* filter: make sure filters dont read uninitialized memory
  - LP: #721282
  - CVE-2010-4158
* tty: Make tiocgicount a handler, CVE-2010-4076, CVE-2010-4077
  - LP: #720189
  - CVE-2010-4077
* block: check for proper length of iov entries earlier in
  blk_rq_map_user_iov(), CVE-2010-4163
  - LP: #721504
  - CVE-2010-4163

43. By Steve Conklin

[ Steve Conklin ]

* Tracking Bug
  - LP: #716472

[Upstream Kernel Changes]

* net: Truncate recvfrom and sendto length to INT_MAX., CVE-2010-3859
  - LP: #711855, #708839
  - CVE-2010-4160
* net: Limit socket I/O iovec total length to INT_MAX., CVE-2010-3859
  - LP: #711855, #708839
  - CVE-2010-4160
* net: ax25: fix information leak to userland, CVE-2010-3875
  - LP: #710714
  - CVE-2010-3875
* net: ax25: fix information leak to userland harder, CVE-2010-3875
  - LP: #710714
  - CVE-2010-3875
* memory corruption in X.25 facilities parsing, CVE-2010-3873
  - LP: #709372
  - CVE-2010-3873
* net: packet: fix information leak to userland, CVE-2010-3876
  - LP: #710714
  - CVE-2010-3876
* x86: replace LOCK_PREFIX in futex.h, CVE-2010-3086
  - LP: #706060
  - CVE-2010-3086
* gdth: integer overflow in ioctl, CVE-2010-4157
  - LP: #711797
  - CVE-2010-4157
* ALSA: sound/pci/rme9652: prevent reading uninitialized stack memory,
  CVE-2010-4080, CVE-2010-4081
  - LP: #712723, #712737
  - CVE-2010-4081
* sys_semctl: fix kernel stack leakage, CVE-2010-4083
  - LP: #712749
  - CVE-2010-4083
* inet_diag: Make sure we actually run the same bytecode we audited,
  CVE-2010-3880
  - LP: #711865
  - CVE-2010-3880

42. By Leann Ogasawara

[ Leann Ogasawara ]

- LP: #683908
* Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
  dereference"
* Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
* Revert "SAUCE: AF_ECONET prevent kernel stack overflow"

[Upstream Kernel Changes]

* xfs: validate untrusted inode numbers during lookup
  - CVE-2010-2943
* xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
  - CVE-2010-2943
* xfs: remove block number from inode lookup code
  - CVE-2010-2943
* xfs: fix untrusted inode number lookup
  - CVE-2010-2943
* drivers/net/eql.c: prevent reading uninitialized stack memory
  - CVE-2010-3297
* ipc: shm: fix information leak to userland
  - CVE-2010-4072
* econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
  - CVE-2010-3849
* econet: fix CVE-2010-3850
  - CVE-2010-3850
* econet: fix CVE-2010-3848
  - CVE-2010-3848

41. By Stefan Bader

[Colin Ian King]
* mm: fix zone pages min,max calculations
  - LP: #86778
* fs: fix semaphore bug introduced by CVE-2007-2878
  - LP: #137978

40. By Ben Collins

* Revert fix for megaraid, causes an oops/regression.

[Trivial, non-functional changes]
* mpspec_def.h: Remove extraneoush packed attribute, causing compiler
  warnings.
* Makefile: Remove stack-protector from CFLAGS (newer compilers).

39. By Ben Collins

* Fix kernel-versions for ABI bump
* Fix for kernel crash on lvremove
  - LP: #103729
* e1000: Disable MSI by default. Allow it to be enabled with module param.
  Some chip implementations seem to not work well with MSI.
  - LP: #56885
* tg3: Backport from 2.6.16.y
  - LP: #72696
* Add r1000 to nic-modules
  - LP: #81782
* Add bnx2 to nic-modules
  - LP: #73647
* usb-serial: Fix oops with pilot-link
  - LP: #39518
* megaraid: Move AMI/Megaraid3 IDs from megaraid_mbox.ko to megaraid.ko
  - LP: #57233

38. By Ben Collins

* Fix kernel-versions for ABI bump
* Fix for kernel crash on lvremove
  - LP: #103729
* e1000: Disable MSI by default. Allow it to be enabled with module param.
  Some chip implementations seem to not work well with MSI.
  - LP: #56885
* tg3: Backport from 2.6.16.y
  - LP: #72696
* Add r1000 to nic-modules
  - LP: #81782
* Add bnx2 to nic-modules
  - LP: #73647
* usb-serial: Fix oops with pilot-link
  - LP: #39518
* megaraid: Move AMI/Megaraid3 IDs from megaraid_mbox.ko to megaraid.ko
  - LP: #57233

37. By Ben Collins

* Fix for kernel crash on lvremove
  - LP: #103729
* e1000: Disable MSI by default. Allow it to be enabled with module param.
  Some chip implementations seem to not work well with MSI.
  - LP: #56885
* tg3: Backport from 2.6.16.y
  - LP: #72696
* Add r1000 to nic-modules
  - LP: #81782
* Add bnx2 to nic-modules
  - LP: #73647
* usb-serial: Fix oops with pilot-link
  - LP: #39518
* megaraid: Move AMI/Megaraid3 IDs from megaraid_mbox.ko to megaraid.ko
  - LP: #57233

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
This branch contains Public information 
Everyone can see this information.

Subscribers