Change log for user-mode-linux package in Debian
| 1 → 75 of 78 results | First • Previous • Next • Last |
user-mode-linux (6.7um2) unstable; urgency=medium
* [1115962] Read host architecture from dpkg-architecture.
Also, ensure to use the correct architecture string for amd64 a.k.a
x86_64
-- Ritesh Raj Sarraf <email address hidden> Wed, 01 May 2024 16:24:28 +0530
user-mode-linux (6.7um1) unstable; urgency=medium * [d8f7a45] Initial prep for update to Linux 6.7 * [80a8bd7] Update UML configs to Linux 6.7 * [76ee299] Manually fix i386 UML config file * [2a75980] Fix long standing build hang issue with i386 * [1f2164f] Simplify oldconfig with a single target -- Ritesh Raj Sarraf <email address hidden> Tue, 30 Apr 2024 20:24:12 +0530
user-mode-linux (6.5um1) unstable; urgency=medium * [e3ad3d9] Prepare for Linux 6.5 * [154fcd8] Update UML configurations to Linux 6.5 -- Ritesh Raj Sarraf <email address hidden> Thu, 16 Nov 2023 19:35:37 +0530
user-mode-linux (6.4um1) unstable; urgency=medium * [562517a] Prepare for UML 6.4 (Closes: #1042126) * [28b87b9] Update UML configs for Linux 6.4 -- Ritesh Raj Sarraf <email address hidden> Fri, 28 Jul 2023 19:24:31 +0530
user-mode-linux (6.3um1) unstable; urgency=medium
* [92ab76c] Prepare for Linux 6.3
* [de14c98] Update UML config files to 6.3. Disable support for VDE and
PCAP networking drivers. These drivers have been marked `obsolete` by
upstream for a while now. And the VDE driver fails to build on i386
architecture. (Closes: #1040431)
-- Ritesh Raj Sarraf <email address hidden> Fri, 14 Jul 2023 21:46:40 +0530
user-mode-linux (6.1um4) unstable; urgency=medium * [9e4f48c] Drop empty d/patches/series file -- Ritesh Raj Sarraf <email address hidden> Fri, 17 Feb 2023 18:46:23 +0530
user-mode-linux (6.1um2) unstable; urgency=medium * [2fff0ad] Generate manual page from upstream kernel documentation -- Ritesh Raj Sarraf <email address hidden> Fri, 20 Jan 2023 17:29:23 +0530
user-mode-linux (6.1um1) unstable; urgency=medium [ Debian Janitor ] * [0f8a68d] Remove constraints unnecessary since buster (oldstable) * [df4b211] Use secure URI in Homepage field. * [dd8c734] Bump debhelper from old 12 to 13. * [a43925c] Set debhelper-compat version in Build-Depends. * [935bb81] Update standards version to 4.6.1, no changes needed. [ Ritesh Raj Sarraf ] * [325c79f] Prepare uml 6.1 * [7d2bd4b] Update UML configs for Linux 6.1 -- Ritesh Raj Sarraf <email address hidden> Sat, 14 Jan 2023 20:45:06 +0530
user-mode-linux (6.0um1) unstable; urgency=medium * [d91f3bd] Prepare for Linux 6.0 * [e2f4aab] Update UML configs to Linux 6.0 -- Ritesh Raj Sarraf <email address hidden> Fri, 21 Oct 2022 16:57:20 +0530
user-mode-linux (5.19um1) unstable; urgency=medium * [7fd29e3] Prepare for Linux 5.19 (Closes: #1020007) * [f77f369] Drop patches, merged upstream * [2eaac0c] Only invoke quilt if d/p/series is present * [eeccb32] Update UML configs for 5.19 -- Ritesh Raj Sarraf <email address hidden> Fri, 30 Sep 2022 20:38:23 +0530
user-mode-linux (5.18um1) unstable; urgency=medium * [eb5c519] Prepare Linux UML 5.18 * [0948478] Drop patch d/p/06-um-Fix-WRITE_ZEROES-in-the-UBD-Driver.patch * [b0129b2] Update UML configs for Linux 5.18 -- Ritesh Raj Sarraf <email address hidden> Fri, 24 Jun 2022 19:13:42 +0530
user-mode-linux (5.17um1) unstable; urgency=medium * [343f7d5] Prepare Linux 5.17 * [adda22f] Drop patch 05_fix_static_build.patch -- Ritesh Raj Sarraf <email address hidden> Mon, 02 May 2022 14:25:47 +0530
user-mode-linux (5.16um1) unstable; urgency=medium [ Walter Lozano ] * [d1cdd21] Disable VMAP_STACK [ Ritesh Raj Sarraf ] * [fd84c2a] Prepare for Linux 5.16 (Closes: #1005443) * [6e35b4e] Update UML configs to Linux 5.16.7 -- Ritesh Raj Sarraf <email address hidden> Sun, 13 Feb 2022 20:05:32 +0530
user-mode-linux (5.15um2) unstable; urgency=medium [ Frédéric Danis ] * [194182c] Add patch to fix WRITE_ZEROES in the UBD Driver [ Ritesh Raj Sarraf ] * [5461e10] Refresh the patch * [c7993ad] Update Linux UML config files -- Ritesh Raj Sarraf <email address hidden> Mon, 31 Jan 2022 16:01:39 +0530
user-mode-linux (5.15um1) unstable; urgency=medium * [05525b8] Prepare update to Linux 5.15 * [3fadec1] Update configs to 5.15 -- Ritesh Raj Sarraf <email address hidden> Wed, 24 Nov 2021 12:57:56 +0530
user-mode-linux (5.14um1) unstable; urgency=medium * [ea5aed5] Prepare for 5.14 Linux update * [a3ad117] Drop patches. May not be relevant any more * [5911d78] Update Linux configs to 5.14 (Closes: #995263) -- Ritesh Raj Sarraf <email address hidden> Fri, 08 Oct 2021 21:25:11 +0530
user-mode-linux (5.10um3) unstable; urgency=medium
* [95d05ef] Drop patch um_mark_all_kernel_symbols_as_local.patch
(Closes: #989665)
* [bf8d469] Update UML Linux configs
-- Ritesh Raj Sarraf <email address hidden> Fri, 11 Jun 2021 11:43:23 +0530
user-mode-linux (5.10um2) unstable; urgency=medium [ Christopher Obbard ] * [d9ca0da] debian/watch: Track Debian Linux package [ Ritesh Raj Sarraf ] * [f768bbd] Makr all kernel symbols as local (Closes: #983379) * [050050b] Refresh patches * [110f0b2] Enable kernel debug info -- Ritesh Raj Sarraf <email address hidden> Sun, 07 Mar 2021 10:01:29 +0530
user-mode-linux (5.10um1) unstable; urgency=medium [ Debian Janitor ] * [4b95d20] Trim trailing whitespace. [ Ritesh Raj Sarraf ] * [96b5aeb] Prepare for Linux 5.10 * [1f00328] Update UML configs for Linux 5.10 * [7177cae] Set priority to optional * [235490c] Rename d/NEWS.Debian to d/NEWS -- Ritesh Raj Sarraf <email address hidden> Sat, 09 Jan 2021 20:56:48 +0530
user-mode-linux (5.9um1) unstable; urgency=medium * [016b157] Prepare for Linux 5.9 * [ecd8715] Enable VirtIO UML and update config for Linux 5.9 * [533ed9e] Update build dependency on vde to reflect name change -- Ritesh Raj Sarraf <email address hidden> Fri, 23 Oct 2020 22:08:59 +0530
user-mode-linux (5.8um1) unstable; urgency=medium
* [b7db191] Prepare for Linux 5.8 (Closes: #971135)
* [9ca8d98] Update kernel configs for Linux 5.8
* [3d34593] Disable BPFILTER for architecture i386
- For reasons unclear, having BPFILTER enabled in the config makes kbuild
think the config is incomplete. So lets not block because of it
-- Ritesh Raj Sarraf <email address hidden> Thu, 01 Oct 2020 16:54:44 +0530
user-mode-linux (5.7um1) unstable; urgency=medium * [3b1a66e] Bump for Linux 5.7 * [3b60493] Update Linux UML configs to 5.7 * [42d5482] Update patches for Linux 5.7 -- Ritesh Raj Sarraf <email address hidden> Fri, 26 Jun 2020 10:43:11 +0530
user-mode-linux (5.6um2) unstable; urgency=medium * [db8c0df] Document the extra care needed for x32 * [5df39ac] Fix i386 build config -- Ritesh Raj Sarraf <email address hidden> Fri, 12 Jun 2020 17:54:23 +0530
user-mode-linux (5.6um1) unstable; urgency=medium * [3571560] Bump to include support for Linux 5.6 * [a731b9c] Update Linux UML configs to 5.6 -- Ritesh Raj Sarraf <email address hidden> Tue, 02 Jun 2020 22:10:35 +0530
| Published in buster-release |
user-mode-linux (4.19-1um-1+deb10u1) buster; urgency=medium
* Non-maintainer upload.
* [00f54af] Fix FTBFS in buster with linux-source-4.19 4.19.98-1.
Remove fix-port-helper-path.patch (Closes: #951329).
-- Santiago Ruano Rincón <email address hidden> Wed, 26 Feb 2020 10:32:01 +0100
user-mode-linux (5.5um1) unstable; urgency=medium
[ Santiago Ruano Rincón ]
* [906e41a] README.Debian: update linux directory path
[ Ritesh Raj Sarraf ]
* [0cbab46] Document CAP_NET_ADMIN usability
* [674be91] Add packaging format, 3.0 native
* [2e09ba1] Bump to Linux version 5.5
* [cee84f0] Use parallel build options.
Thanks to Sjoerd Simons
* [0610187] config.amd64: Set CONFIG_HW_RANDOM=y.
Thanks to Sjoerd Simons
-- Ritesh Raj Sarraf <email address hidden> Fri, 20 Mar 2020 20:38:53 +0530
user-mode-linux (5.4-1um-2) unstable; urgency=medium * [3f7e38a] Update gbp.conf about tag format * [6a3bf60] Update kernel configuration files * [30c4f66] Add settings suiting to pkg-uml packaging -- Ritesh Raj Sarraf <email address hidden> Wed, 01 Jan 2020 12:21:12 +0530
user-mode-linux (5.4-1um-1) unstable; urgency=medium * [da6bf6c] Update to Linux 5.4 * [5049017] Refresh patch debian/patches/08-fix-pcap-linkage.patch -- Ritesh Raj Sarraf <email address hidden> Mon, 30 Dec 2019 16:19:19 +0530
user-mode-linux (5.3-1um-1) unstable; urgency=medium
* [10ebf91] Update to track Linux 5.3
* [52d3b7c] Update uml kernel config to 5.3
* [f424b72] Update i386 kernel configuration.
Thanks to Bastian Blank
* [d25b501] Mark rules require root to no
-- Ritesh Raj Sarraf <email address hidden> Tue, 22 Oct 2019 13:45:43 +0530
user-mode-linux (5.2-1um-2) unstable; urgency=medium * [49a481e] Add gcc-multilib to build depends. Should fix FTBFS on i386 -- Ritesh Raj Sarraf <email address hidden> Fri, 18 Oct 2019 21:11:35 +0530
user-mode-linux (5.2-1um-1) unstable; urgency=medium
* [c5a5e78] Drop Mattia Dongili from Uploaders list (Closes: #933156)
* [500e629] Update to Linux 5.2 (Closes: #938962)
* [2ce49b7] Drop patch fix-port-helper-path.patch. Applied upstream
* [659a640] Refresh patches
* [84a2a9c] Update UML kernel configuration to 5.2
* [d61f9d5] Add patch 08-fix-pcap-linkage.patch to fix pcap linkage.
Thanks to Anton Ivanov
* [54590ee] Disable CONFIG_UML_NET_PCAP to avoid linkage with pcap
-- Ritesh Raj Sarraf <email address hidden> Thu, 17 Oct 2019 16:53:36 +0530
user-mode-linux (4.19-1um-1) unstable; urgency=medium * [a505b8d] Update to Linux 4.19 (Closes: #916958) * [537c895] Drop patch fix-i386-ptrace-build.patch. Merged upstream * [fe91d84] Refresh patch -- Ritesh Raj Sarraf <email address hidden> Thu, 27 Dec 2018 13:16:23 +0530
Available diffs
user-mode-linux (4.17-1um-1) unstable; urgency=medium
* [c640a0e] Add patch to fix port-helper architecture dependent path
(Closes: #868285)
* [3af34b3] Update to Linux 4.17
* [312ff63] Add lintian override for source package
-- Ritesh Raj Sarraf <email address hidden> Sat, 25 Aug 2018 10:25:30 +0545
user-mode-linux (4.16-1um-2) unstable; urgency=medium
* [3a7ffd8] Fix build failure on i386 architecture.
Thanks to Richard Weinberger
* [ac554e8] Refresh patches
-- Ritesh Raj Sarraf <email address hidden> Fri, 15 Jun 2018 15:25:30 +0545
Available diffs
- diff from 4.16-1um-1 to 4.16-1um-2 (3.1 KiB)
| Superseded in sid-release |
user-mode-linux (4.16-1um-1) unstable; urgency=medium
* [4f0e0a8] Switch packaging repository to Salsa
* [94e916a] Switch Maintainer email address (Closes: #899720)
* [0e56bcc] Use tracker as maintainer email address
* [0f68dd3] Update to Linux 4.16
* [98f3862] Drop patch 08-use-posix-ucontext.patch
Merged in Linux 4.16
* [38116f5] Add bison to build dependency
* [e5ae8d8] Add flex to build dependency
-- Ritesh Raj Sarraf <email address hidden> Tue, 12 Jun 2018 10:24:43 +0545
Available diffs
- diff from 4.15-1um-1 to 4.16-1um-1 (13.5 KiB)
user-mode-linux (4.15-1um-1) unstable; urgency=medium * [688b914] New Linux Release -- Ritesh Raj Sarraf <email address hidden> Tue, 27 Feb 2018 11:16:10 +0530
Available diffs
- diff from 4.14-1um-3 to 4.15-1um-1 (845 bytes)
user-mode-linux (4.14-1um-3) unstable; urgency=medium * Rebuild with newer linux-source-4.14 (Closes: #888971) -- Ritesh Raj Sarraf <email address hidden> Sun, 18 Feb 2018 12:21:20 +0530
Available diffs
- diff from 4.14-1um-2 to 4.14-1um-3 (10.2 KiB)
| Superseded in sid-release |
user-mode-linux (4.14-1um-2) unstable; urgency=medium
* [5b667b5] Use POSIX ucontext_t instead of struct ucontext
(Closes: #887761)
-- Ritesh Raj Sarraf <email address hidden> Tue, 30 Jan 2018 17:39:04 +0530
Available diffs
- diff from 4.14-1um-1 to 4.14-1um-2 (10.9 KiB)
user-mode-linux (4.14-1um-1) unstable; urgency=medium * [8fdb9d1] Newer Linux version, 4.14 * [398892e] Refresh patches -- Ritesh Raj Sarraf <email address hidden> Tue, 26 Dec 2017 09:00:59 +0530
Available diffs
- diff from 4.13-1um-1 to 4.14-1um-1 (12.8 KiB)
user-mode-linux (4.13-1um-1) unstable; urgency=medium * [a1b6db8] Bump UML to newer 4.13 kernel (Closes: #880304) * [c516bca] Add debian/gbp.conf -- Ritesh Raj Sarraf <email address hidden> Tue, 07 Nov 2017 21:53:50 +0530
Available diffs
- diff from 4.9-1um-1 to 4.13-1um-1 (16.5 KiB)
user-mode-linux (4.9-1um-1) unstable; urgency=medium * [e2e3efe] New Linux Release: 4.9 -- Ritesh Raj Sarraf <email address hidden> Sat, 14 Jan 2017 14:45:22 +0530
Available diffs
- diff from 4.8-1um-3 to 4.9-1um-1 (815 bytes)
user-mode-linux (4.8-1um-3) unstable; urgency=medium * [127dbbc] Drop dependency on gcc-5 * [1b4b24d] Enable parallel build * Rebuild with latest Linux 4.8, 4.8.15-2 -- Ritesh Raj Sarraf <email address hidden> Sat, 07 Jan 2017 20:42:32 +0530
Available diffs
- diff from 4.8-1um-2 to 4.8-1um-3 (1.3 KiB)
user-mode-linux (4.8-1um-2) unstable; urgency=medium * Rebuild with latest Linux 4.8, with all stable security fixes -- Ritesh Raj Sarraf <email address hidden> Thu, 22 Dec 2016 15:04:58 +0530
user-mode-linux (4.8-1um-1) unstable; urgency=medium * [b4834f3] Use gcc-5 to build the kernel * [ee7785d] Revert "Fix uml kernel build, disabling PIE and bindnow" * [e0b3e3d] Bump linux version to 4.8 -- Ritesh Raj Sarraf <email address hidden> Tue, 01 Nov 2016 17:53:39 +0530
user-mode-linux (4.7-1um-2) unstable; urgency=medium
* [9a4719f] Fix uml kernel build, disabling PIE and bindnow.
Thanks to Balint Reczey (Closes: 837579)
-- Ritesh Raj Sarraf <email address hidden> Sat, 22 Oct 2016 13:00:35 +0530
user-mode-linux (4.7-1um-1) unstable; urgency=medium * [c36fba9] Add homepage field * [6aada24] Bump linux version to 4.7 -- Ritesh Raj Sarraf <email address hidden> Mon, 05 Sep 2016 18:40:07 +0530
user-mode-linux (4.6-1um-1) unstable; urgency=medium
The "DebConf 16 Recharged" Release
* Initial bump to start work on 4.6 kernel
* Replace module-init-tools with the new (superseeding) kmod tool
* Update kernel version in debian/rules
* Update kernel config files with new features
* Add libssl-dev to build depends. Needed to compile newer kernels
* Promote uml-utilities to Recommends. The UML team has plans to continue
maintaining it. Thanks Mattia
* Bump debhelper compatibility to 9
* Fix Vcs URLs to secure ones
* Replace deprecated dh_clean with dh_prep
* Bump Standards Version to 3.9.8
* Fix Vcs URL to be canonical
-- Ritesh Raj Sarraf <email address hidden> Sat, 16 Jul 2016 21:48:06 +0530
user-mode-linux (4.0-1um-0.1) unstable; urgency=low
* Non-maintainer upload.
* New upstream release (closes: #787979).
+ Update Linux version number in debian/control and debian/rules.
+ Refresh configs.
* Add patch (08-gcc5.patch) to fix FTBFS with GCC 5 (closes: #778157).
Thanks to Matthias Klose for the bug report.
-- Jakub Wilk <email address hidden> Sat, 18 Jul 2015 13:08:01 +0200
user-mode-linux (3.16-1um-0.1) unstable; urgency=low
* Non-maintainer upload.
* New upstream release (closes: #765132). Thanks to David Suárez for the bug
report.
+ Update Linux version number in debian/control and debian/rules.
+ Refresh configs.
* The new upstream release fixes the following bugs:
+ Fix memory corruption on startup (closes: #741075).
+ Block SIGPIPE (closes: #741077).
Thanks to Anton Ivanov for the bug reports and the patches.
-- Jakub Wilk <email address hidden> Wed, 29 Oct 2014 10:49:35 +0100
| Published in squeeze-release |
user-mode-linux (2.6.32-1um-4+48squeeze6) squeeze-security; urgency=high
* Rebuild against linux-source-2.6.32 (2.6.32-48squeeze5):
* CVE-2014-0196: Jiri Slaby discovered a race condition in the pty
layer, which could lead to denial of service or privilege escalation.
* CVE-2014-1737 / CVE-2014-1738: Matthew Daley discovered that
missing input sanitising in the FDRAWCMD ioctl and an information
leak could result in privilege escalation.
-- dann frazier <email address hidden> Wed, 14 May 2014 11:54:02 -0600
user-mode-linux (3.13-1um-0.1) unstable; urgency=low
* Non-maintainer upload, with maintainer's permission.
* New upstream release (closes: #742016). Thanks to Ansgar Burchardt for the
bug report; thanks to Mattia Dongili and Julien Cristau for help.
+ Update Linux version number in debian/control and debian/rules.
+ Refresh configs.
-- Jakub Wilk <email address hidden> Wed, 16 Apr 2014 08:19:24 +0200
user-mode-linux (3.12-1um-1) unstable; urgency=high
* New upstream release (Closes: #733351) - aka. I wish there was a better
way.
-- Mattia Dongili <email address hidden> Mon, 30 Dec 2013 07:53:50 +0900
user-mode-linux (3.11-1um-2) unstable; urgency=high * enable devtmpfs for udev -- Mattia Dongili <email address hidden> Sun, 20 Oct 2013 23:48:54 +0900
| Superseded in sid-release |
user-mode-linux (3.11-1um-1) unstable; urgency=high * New upstream release (Closes: #712234) * Add NFSv4 support (Closes: #651307) -- Mattia Dongili <email address hidden> Sun, 20 Oct 2013 21:38:50 +0900
| Superseded in squeeze-release |
user-mode-linux (2.6.32-1um-4+48squeeze4) squeeze-security; urgency=high
* Rebuild against linux-source-2.6.32 (2.6.32-48squeeze4):
* drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (CVE-2013-2164)
* ipv6: ip6_sk_dst_check() must not assume ipv6 dst (CVE-2013-2232)
* af_key: fix info leaks in notify messages (CVE-2013-2234)
* af_key: initialize satype in key_notify_policy_flush() (CVE-2013-2237)
* block: do not pass disk names as format strings (CVE-2013-2851)
* b43: stop format string leaking into error msgs (CVE-2013-2852)
* sctp: Use correct sideffect command in duplicate cookie handling
(CVE-2013-2206)
* kernel/signal.c: stop info leak via the tkill and the tgkill syscalls
(CVE-2013-2141)
* HID: validate HID report id size (CVE-2013-2888)
* HID: check for NULL field when setting values
* Information leak in openvz quota implementation (CVE-2013-2239)
* HID: pantherlord: validate output report details (CVE-2013-2892)
-- dann frazier <email address hidden> Fri, 27 Sep 2013 16:29:32 -0600
user-mode-linux (3.2-2um-1+deb7u2) wheezy-security; urgency=high
* Rebuild against linux-source-3.2 (3.2.46-1+deb7u1):
* Fix regression in "xen: netback: shutdown the ring if it contains garbage
(CVE-2013-0216)"
* libceph: Fix NULL pointer dereference in auth client code (CVE-2013-1059)
* fanotify: info leak in copy_event_to_user() (CVE-2013-2148)
* drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (CVE-2013-2164)
* ipv6: ip6_sk_dst_check() must not assume ipv6 dst (CVE-2013-2232)
* af_key: fix info leaks in notify messages (CVE-2013-2234)
* af_key: initialize satype in key_notify_policy_flush() (CVE-2013-2237)
* block: do not pass disk names as format strings (CVE-2013-2851)
* b43: stop format string leaking into error msgs (CVE-2013-2852)
* ipv6: call udp_push_pending_frames when uncorking a socket (CVE-2013-4162)
* ipv6: ip6_append_data_mtu did not care about pmtudisc and frag_size
(CVE-2013-4163)
* New upstream stable update:
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.42
- TTY: do not reset master's packet mode
- l2tp: Restore socket refcount when sendmsg succeeds
- tun: add a missing nf_reset() in tun_net_xmit()
- netlabel: correctly list all the static label mappings
- sctp: Use correct sideffect command in duplicate cookie handling
- rtlwifi: rtl8192cu: Fix problem that prevents reassociation
- inet: limit length of fragment queue hash table bucket lists
- sfc: Properly sync RX DMA buffer when it is not the last in the page
- sfc: Fix efx_rx_buf_offset() in the presence of swiotlb
- sfc: Only use TX push if a single descriptor is to be written
- ext4: fix the wrong number of the allocated blocks in
ext4_split_extent()
- jbd2: fix use after free in jbd2_journal_dirty_metadata()
- ext4: convert number of blocks to clusters properly
- ext4: use atomic64_t for the per-flexbg free_clusters count
- cifs: delay super block destruction until all cifsFileInfo objects are
gone
- USB: xhci: correctly enable interrupts (possibly fix for #703470)
- [amd64] Fix the failure case in copy_user_handle_tail()
- dm thin: fix discard corruption
- USB: serial: fix interface refcounting
- vfs,proc: guarantee unique inodes in /proc
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.43
- [armhf/mx5] ASoC: imx-ssi: Fix occasional AC97 reset failure
- rtlwifi: usb: add missing freeing of skbuff
- xen-blkback: fix dispatch_rw_block_io() error path
- net/irda: add missing error path release_sock call
- sysfs: fix race between readdir and lseek
- sysfs: handle failure path correctly for readdir()
- NFSv4.1: Fix a race in pNFS layoutcommit
- usb: xhci: Fix TRB transfer length macro used for Event TRB.
- nfsd4: reject "negative" acl lengths
- Nest rename_lock inside vfsmount_lock
- [x86] iommu/amd: Make sure dma_ops are set for hotplug devices
- b43: A fix for DMA transmission sequence errors
- reiserfs: Fix warning and inode leak when deleting inode with xattrs
- virtio: console: add locking around c_ovq operations
- mm: prevent mmap_cache race in find_vma()
- ixgbe: fix registration order of driver and DCA nofitication
- key: Fix resource leak
- udf: Fix bitmap overflow on large filesystems with small block size
- NFS: nfs_getaclargs.acl_len is a size_t
- loop: prevent bdev freeing while device in use
- sky2: Threshold for Pause Packet is set wrong
- 8021q: fix a potential use-after-free
- unix: fix a race condition in unix_release()
- atl1e: drop pci-msi support because of packet corruption
(possibly fixes: #577747)
- ipv6: don't accept multicast traffic with scope 0
- ipv6: don't accept node local multicast traffic from the wire
- pch_gbe: fix ip_summed checksum reporting on rx
- HID: microsoft: do not use compound literal (fixes FTBFS on m68k)
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.44
- USB: serial: fix use-after-free in TIOCMIWAIT
- hrtimer: Don't reinitialize a cpu_base lock on CPU_UP
- crypto: gcm - fix assumption that assoc has one segment
- sched_clock: Prevent 64bit inatomicity on 32bit systems
- can: gw: use kmem_cache_free() instead of kfree()
- spinlocks and preemption points need to be at least compiler barriers
- [x86] mm, paravirt: Fix vmalloc_fault oops during lazy MMU updates
- Btrfs: make sure nbytes are right after log replay
- kobject: fix kset_find_obj() race with concurrent last kobject_put()
- vfs: Revert spurious fix to spinning prevention in prune_icache_sb
- ath9k_htc: accept 1.x firmware newer than 1.3
- [armel] Fix kexec by setting outer_cache.inv_all for Feroceon
- hugetlbfs: add swap entry check in follow_hugetlb_page()
- writeback: fix dirtied pages accounting on redirty
- Btrfs: fix race between mmap writes and compression
- mtd: Disable mtdchar mmap on MMU systems
- fbcon: fix locking harder
- hfsplus: fix potential overflow in hfsplus_file_truncate()
- sched: Convert BUG_ON()s in try_to_wake_up_local() to WARN_ON_ONCE()s
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.45
- [ia64] Wrong asm register contraints in the futex implementation
- [ia64] Wrong asm register contraints in the kvm implementation
- [ia64] Fix initialization of CMCI/CMCP interrupts
- sysfs: fix use after free in case of concurrent read/write and readdir
- nfsd: don't run get_file if nfs4_preprocess_stateid_op return error
- ext4/jbd2: don't wait (forever) for stale tid caused by wraparound
- jbd2: fix race between jbd2_journal_remove_checkpoint and
->j_commit_callback
- hrtimer: Fix ktime_add_ns() overflow on 32bit architectures
- nfsd4: don't close read-write opens too soon
- wireless: regulatory: fix channel disabling race condition
- iwlwifi: dvm: don't send zeroed LQ cmd
- powerpc/spufs: Initialise inode->i_ino in spufs_new_inode()
(possibly fixes: #707175)
- clockevents: Set dummy handler on CPU_DEAD shutdown
- powerpc: Add isync to copy_and_flush
- fs/fscache/stats.c: fix memory leak
- md: bad block list should default to disabled. (fixes regression in 3.1)
- inotify: invalid mask should return a error number but not set it
(fixes regression in 3.2.40)
- fs/dcache.c: add cond_resched() to shrink_dcache_parent()
- perf: Fix error return code
- [x86] perf: Fix offcore_rsp valid mask for SNB/IVB (CVE-2013-2146)
- vm: Introduce and use vm_iomap_memory() helper function
- atl1e: limit gso segment size to prevent generation of wrong ip length
fields
- netfilter: don't reset nf_trace in nf_reset()
- rtnetlink: Call nlmsg_parse() with correct header length
- tcp: incoming connections might use wrong route under synflood
- esp4: fix error return code in esp_output()
- net: sctp: sctp_auth_key_put: use kzfree instead of kfree
- netrom: fix info leak via msg_name in nr_recvmsg()
- netrom: fix invalid use of sizeof in nr_recvmsg()
- net: drop dst before queueing fragments
- [sparc] sparc64: Fix race in TLB batch processing.
- r8169: fix 8168evl frame padding.
- ixgbe: add missing rtnl_lock in PM resume path
- kernel/audit_tree.c: tree will leak memory when failure occurs in
audit_trim_trees()
- r8169: fix vlan tag read ordering.
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.46
- nfsd4: don't allow owner override on 4.1 CLAIM_FH opens
- ext4: limit group search loop for non-extent files
- iscsi-target: Fix processing of OOO commands
- cifs: only set ops for inodes in I_NEW state
- KVM: VMX: fix halt emulation while emulating invalid guest sate
- [armel/kirkwood] Enable PCIe port 1 on QNAP TS-11x/TS-21x
- drivers/char/ipmi: memcpy, need additional 2 bytes to avoid memory
overflow
- ipmi: ipmi_devintf: compat_ioctl method fails to take ipmi_mutex
- btrfs: don't stop searching after encountering the wrong item
- TTY: Fix tty miss restart after we turn off flow-control
- SUNRPC: Prevent an rpc_task wakeup race
- fat: fix possible overflow for fat_clusters
- mm: mmu_notifier: re-fix freed page still mapped in secondary MMU
- mm compaction: fix of improper cache flush in migration code
- mm/THP: use pmd_populate() to update the pmd with pgtable_t pointer
- nilfs2: fix issue of nilfs_set_page_dirty() for page at EOF boundary
- random: fix accounting race condition with lockless irq entropy_count
update
- mm/pagewalk.c: walk_page_range should avoid VM_PFNMAP areas
- ipvs: ip_vs_sip_fill_param() BUG: bad check of return value
- x86,efi: Check max_size only if it is non-zero.
- x86,efi: Implement efi_no_storage_paranoia parameter
- tcp: force a dst refcount when prequeue packet
- packet: tpacket_v3: do not trigger bug() on wrong header status
- macvlan: fix passthru mode race between dev removal and rx path
- ipv6: do not clear pinet6 field
* Input: MT: add tracking and frame synchronisation to core
* Input: add support for Cypress PS/2 Trackpads, thanks to
Apollon Oikonomopoulos
* drm, agp: Update to 3.4.47:
- drm/i915: restrict kernel address leak in debugfs
- KMS: fix EDID detailed timing vsync parsing
- KMS: fix EDID detailed timing frame rate
- drm/radeon: add support for Richland APUs
- drm/radeon/benchmark: make sure bo blit copy exists before using it
- drm/i915: Don't clobber crtc->fb when queue_flip fails
- drm/i915: Use the correct size of the GTT for placing the per-process
entries
- udl: handle EDID failure properly.
- drm/i915: Add no-lvds quirk for Fujitsu Esprimo Q900
- drm/i915: Fall back to bit banging mode for DVO transmitter detection
- drm/radeon: don't use get_engine_clock() on APUs
- drm/radeon/dce6: add missing display reg for tiling setup
- drm/radeon: properly lock disp in mc_stop/resume for evergreen+
- drm/radeon: disable the crtcs in mc_stop (evergreen+) (v2)
- drm/radeon/evergreen+: don't enable HPD interrupts on eDP/LVDS
- drm/radeon: fix endian bugs in atom_allocate_fb_scratch()
- drm/radeon: fix possible segfault when parsing pm tables
- drm/radeon: add new richland pci ids
- drm/radeon: fix handling of v6 power tables
- drm/radeon: Fix VRAM size calculation for VRAM >= 4GB
- drm/radeon: check incoming cliprects pointer
- drm/mm: fix dump table BUG
* [rt] Update to 3.2.45-rt66:
- rcutiny: Fix typo of using swake_up() instead of swait_wake()
- tcp: force a dst refcount when prequeue packet
- x86/mce: Defer mce wakeups to threads for PREEMPT_RT
- swap: Use unique local lock name for swap_lock
- sched: Add is_idle_task() to handle invalidated uses of idle_cpu()
* debugfs: Document change of default mode
* iwlwifi: Do not request firmware API version 6 for IWL6005/6205
* bug script: Remove broken sound functions
* [i386/486] udeb: Add lxfb to fb-modules
* [i386] cpufreq / Longhaul: Disable driver by default
* iscsi-target: fix heap buffer overflow on error (CVE-2013-2850)
* ath9k: Disable PowerSave by default
* dlm: Do not allocate a fd for peeloff
* nfsd4: Fix performance problem with RELEASE_LOCKOWNER
- hash lockowners to simplify RELEASE_LOCKOWNER
- maintain one seqid stream per (lockowner, file)
* ipw2100,ipw2200: Fix order of device registration
* udf: Fix handling of i_blocks
* kbuild: Fix missing '\n' for NEW symbols in yes "" | make oldconfig
>conf.new
* [i386] udeb: Add viafb to fb-modules
- [i386] udeb: Move i2c-algo-bit to i2c-modules and make fb-modules
depend on it
- viafb: Autoload on OLPC XO 1.5 only
* cifs: fix potential buffer overrun when composing a new options string
* ext3,ext4,nfsd: dir_index: Return 64-bit readdir cookies for NFSv3 and 4
-- dann frazier <email address hidden> Wed, 28 Aug 2013 20:30:48 -0600
user-mode-linux (3.2-2um-1+deb7u1) wheezy-security; urgency=high
* Rebuild against linux-source-3.2 (3.2.41-2+deb7u2):
* perf: Treat attr.config as u64 in perf_swevent_init() (CVE-2013-2094)
* TTY: fix timing leak with /dev/ptmx (CVE-2013-0160)
* ext4: avoid hang when mounting non-journal filesystems with orphan list
(CVE-2013-2015)
* crypto: algif - suppress sending source address information in recvmsg
(CVE-2013-3076)
* atm: update msg_namelen in vcc_recvmsg() (CVE-2013-3222)
* ax25: fix info leak via msg_name in ax25_recvmsg() (CVE-2013-3223)
* Bluetooth: fix possible info leak in bt_sock_recvmsg() (CVE-2013-3224)
* Bluetooth: RFCOMM - Fix missing msg_namelen update in
rfcomm_sock_recvmsg() (CVE-2013-3225)
* caif: Fix missing msg_namelen update in caif_seqpkt_recvmsg()
(CVE-2013-3227)
* irda: Fix missing msg_namelen update in irda_recvmsg_dgram()
(CVE-2013-3228)
* iucv: Fix missing msg_namelen update in iucv_sock_recvmsg()
(CVE-2013-3229)
* llc: Fix missing msg_namelen update in llc_ui_recvmsg() (CVE-2013-3231)
* rose: fix info leak via msg_name in rose_recvmsg() (CVE-2013-3234)
* tipc: fix info leaks via msg_name in recv_msg/recv_stream (CVE-2013-3235)
* tracing: Fix possible NULL pointer dereferences (CVE-2013-3301)
* [x86] KVM: Allow cross page reads and writes from cached translations.
(fixes regression in fix for CVE-2013-1796)
* net: fix incorrect credentials passing (CVE-2013-1979)
* tg3: fix length overflow in VPD firmware parsing (CVE-2013-1929)
* kernel/signal.c: stop info leak via the tkill and the tgkill syscalls
-- dann frazier <email address hidden> Wed, 15 May 2013 15:34:24 -0600
user-mode-linux (3.2-2um-1) unstable; urgency=high
* Add Built-Using per Policy §7.8 (Closes: #679300).
* Refresh patches to apply with no fuzz to latest linux-source.
* Set new kernel options:
SECURITY_APPARMOR_COMPAT_24=y
NET_SCH_CODEL=m
FQ_CODEL=m
* Bump version number to upload as a proper foreign package.
-- Mattia Dongili <email address hidden> Fri, 04 Jan 2013 07:11:32 +0900
| Superseded in squeeze-release |
user-mode-linux (2.6.32-1um-4+45) stable-security; urgency=low
* Rebuild against linux-source-2.6.32 (2.6.32-45):
* Ignore arch_pick_mmap_layout ABI change on s390
* [x86] mm: Fix pgd_lock deadlock
* [s390] vdso: use ntp adjusted clock multiplier
* Revert "Work around unhappy compat problem on x86-64",
included in stable update 2.6.32.58, due to userspace beakage.
* CVE-2012-0879:
- block: Fix io_context leak after clone with CLONE_IO
- block: Fix io_context leak after failure of clone with CLONE_IO
* KVM: Ensure all vcpus are consistent with in-kernel irqchip settings
(CVE-2012-1601)
* hugepages: fix use after free bug in "quota" handling (CVE-2012-2133)
* fcaps: clear the same personality flags as suid when fcaps are used
(CVE-2012-2123)
* jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer (CVE-2011-4086)
-- dann frazier <email address hidden> Wed, 09 May 2012 16:43:58 -0600
user-mode-linux (3.2-1um-1) unstable; urgency=low
[ Mattia Dongili ]
* Use the kernel stripping options rather than our own
[ Ritesh Raj Sarraf ]
* New upstream release (Closes: #663437)
* Revive the uml kernel config
- Enable and use CFQ as the default scheduler.
- Enable SELinux and AppArmor
- Enable many networking drivers
- Enable many SCSI subsystems.
* update Vcs-Browser link to anonscm
* add myself to uploaders
* Add patch from upstream to fix build failure on i386 arch
-- Ritesh Raj Sarraf <email address hidden> Tue, 17 Apr 2012 17:21:11 +0530
| Published in lenny-release |
user-mode-linux (2.6.26-1um-2+29) oldstable; urgency=low
* Rebuild against linux-source-2.6.26 (2.6.26-29):
* hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops (CVE-2011-2203)
* xfs: Fix possible memory corruption in xfs_readlink (CVE-2011-4077)
* KEYS: Fix a NULL pointer deref in the user-defined key type
(CVE-2011-4110)
* futex: clear robust_list on execve (CVE-2012-0028)
* rose: Add length checks to CALL_REQUEST parsing (CVE-2011-4914)
* [x86] KVM: Prevent starting PIT timers in the absence of irqchip support
(CVE-2011-4622)
* jbd/jbd2: validate sb->s_first in journal_get_superblock()
(CVE-2011-4132)
* hfs: add sanity check for file name length (CVE-2011-4330)
* Restrict ioctl forwarding on partitions and logical volumes
(CVE-2011-4127)
-- dann frazier <email address hidden> Thu, 08 Mar 2012 07:55:16 -0700
user-mode-linux (2.6.32-1um-4+41) stable; urgency=high
* Rebuild against linux-source-2.6.32 (2.6.32-41):
* Add longterm releases 2.6.32.47 and 2.6.32.48, including:
- atm: br2684: Fix oops due to skb->dev being NULL
- md/linear: avoid corrupting structure while waiting for rcu_free to
complete.
- xen/smp: Warn user why they keel over - nosmp or noapic and what to use
instead. (Closes: #637308)
- md: Fix handling for devices from 2TB to 4TB in 0.90 metadata.
- net/9p: fix client code to fail more gracefully on protocol error
- fs/9p: Fid is not valid after a failed clunk.
- TPM: Call tpm_transmit with correct size (CVE-2011-1161)
- TPM: Zero buffer after copying to userspace (CVE-2011-1162)
- libiscsi_tcp: fix LLD data allocation
- cfg80211: Fix validation of AKM suites
- USB: pid_ns: ensure pid is not freed during kill_pid_info_as_uid
- kobj_uevent: Ignore if some listeners cannot handle message
(Closes: #641661)
- nfsd4: ignore WANT bits in open downgrade
- [s390] KVM: check cpu_id prior to using it
- cfq: merge cooperating cfq_queues
- [x86] KVM: Reset tsc_timestamp on TSC writes (fixes guest performance
regression introduced in 2.6.32-35)
- ext4: fix BUG_ON() in ext4_ext_insert_extent()
- ext2,ext3,ext4: don't inherit APPEND_FL or IMMUTABLE_FL for new inodes
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.47
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.48
and the bug report which this closes: #647624.
* tg3: Fix I/O failures after chip reset (Closes: #645308; regression in
2.6.32-36)
* Add longterm release 2.6.32.49, including:
- SCSI: st: fix race in st_scsi_execute_end
- NFS/sunrpc: don't use a credential with extra groups.
- netlink: validate NLA_MSECS length
- hfs: add sanity check for file name length (CVE-2011-4330)
- md/raid5: abort any pending parity operations when array fails.
- mm: avoid null pointer access in vm_struct via /proc/vmallocinfo
- ipv6: udp: fix the wrong headroom check (CVE-2011-4326)
- USB: Fix Corruption issue in USB ftdi driver ftdi_sio.c
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.49
and the bug report which this closes: #650160.
* ipv6: Allow inet6_dump_addr() to handle more than 64 addresses
(Closes: #651255)
* Add longterm release 2.6.32.50, including:
- PCI hotplug: shpchp: don't blindly claim non-AMD 0x7450 device IDs
(see #638863)
- sched, x86: Avoid unnecessary overflow in sched_clock
- [x86] mpparse: Account for bus types other than ISA and PCI
(Closes: #586494)
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.50
and the bug report which this closes: #651367.
* [vserver] Update patch to 2.6.32.48-vs2.3.0.36.29.8
- nfs: Fix client uid/gid caching (Closes: #633526)
* [x86] Add isci driver from Linux 3.1 (Closes: #652857)
- libsas: fix definition of wideport, include local sas address
- [x86] Introduce pci_map_biosrom()
* Add longterm release 2.6.32.51, including:
- percpu: fix chunk range calculation
- xfrm: Fix key lengths for rfc3686(ctr(aes)) (Closes: #650652)
- jbd/jbd2: validate sb->s_first in journal_get_superblock()
(CVE-2011-4132)
- Make taskstats require root access (CVE-2011-2494)
- hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops (CVE-2011-2203)
- oprofile, x86: Fix nmi-unsafe callgraph support
- ext4: avoid hangs in ext4_da_should_update_i_disksize()
* xen: backport upstream (xen.git#xen/stable-2.6.32.y) fixes to event
handling:
- multiple fixes to PIRQ event channel handling (Closes: #638172)
- setup IRQ before binding VIRQ to it.
- correctly setup event channel mask for secondary CPUs on restore.
- use locked set/clear bit when manipulating event channel masks.
- ensure event channels are handled in a fair/round-robin order preventing
lower numbered event channels from starving higher.
* xen: blkback: don't fail empty barrier requests (Closes: #637234)
* ipv6: make fragment identifications less predictable (CVE-2011-2699)
- fix NULL dereference in udp6_ufo_fragment (see #643817)
* Add longterm release 2.6.32.52:
- Revert "clockevents: Set noop handler in clockevents_exchange_device()",
included in stable update 2.6.32.50 (Closes: #653398)
* Add longterm release 2.6.32.53, including:
- cfq-iosched: fix cfq_cic_link() race confition
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.53
and the bug report which this closes: #655049.
-- dann frazier <email address hidden> Mon, 16 Jan 2012 15:10:25 -0700
user-mode-linux (2.6.32-1um-4+37) stable; urgency=high
* Rebuild against linux-source-2.6.32 (2.6.32-37):
* pm: Fix definition of SET_SYSTEM_SLEEP_PM_OPS used in backported drivers
(fixes FTBFS on ia64)
* splice: Fix write position in output file (Closes: #641419)
* PCI: Add definition of pci_pcie_cap(), used in backported e1000e
(fixes FTBFS on armel, mips, mipsel, sparc)
* [openvz] cpt: Allow ext4 mounts (Closes: #642380)
* Add drm change from 2.6.32.41+drm33.18:
- drm/radeon/kms: fix bad shift in atom iio table parser
* [opvenz] ptrace: Don't allow to trace a process without memory map.
* Add drm change from 2.6.32.42+drm33.19, including:
- drm/i915: Add a no lvds quirk for the Asus EeeBox PC EB1007
- drm/radeon/kms: fix for radeon on systems >4GB without hardware iommu
* Add longterm release 2.6.32.43, including:
- ksm: fix NULL pointer dereference in scan_get_next_rmap_item()
(CVE-2011-2183)
- TTY: ldisc, do not close until there are readers
- uvcvideo: Remove buffers from the queues when freeing
- inet_diag: fix inet_diag_bc_audit() (CVE-2011-2213)
- net: filter: Use WARN_RATELIMIT
- af_packet: prevent information leak
- ipv6/udp: Use the correct variable to determine non-blocking condition
- mm: prevent concurrent unmap_mapping_range() on the same inode
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.43
and the bug report which this closes: #637848.
* Add longterm release 2.6.32.42, including:
- ftrace: Only update the function code on write to filter files
- kmemleak: Do not return a pointer to an object that kmemleak did not get
- ext3: Fix fs corruption when make_indexed_dir() fails
- jbd: fix fsync() tid wraparound bug
- PCI: allow matching of prefetchable resources to non-prefetchable windows
(Closes: #637659)
- loop: handle on-demand devices correctly
- xhci: Fix full speed bInterval encoding; fix interval calculation for
FS isoc endpoints (regressions in 2.6.32-34)
- OHCI: fix regression caused by nVidia shutdown workaround
(regression in 2.6.32-31)
- brd: handle on-demand devices correctly
- xen mmu: fix a race window causing leave_mm BUG()
- SCSI: Fix oops caused by queue refcounting failure
- fat: Fix corrupt inode flags when remove ATTR_SYS flag
- pata_cm64x: fix boot crash on parisc (Closes: #622745, #622997)
- Revert "iwlagn: Support new 5000 microcode." (Closes: #632778)
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.42
and the bug report which this closes: #631465.
* [vserver] Update patch to 2.6.32.41-vs2.3.0.36.29.7
- Apply sched changes deferred from 2.6.32.29
* e1000e: Backport changes up to Linux 2.6.38 (Closes: #627700)
- Add support for i82567V-4 and i82579
- Fix support for i82577, i82578 and i82583
* e1000e: Fix selection of alternate MAC address on device id 0x1060
(regression in 2.6.34)
* igb,igbvf: Backport changes up to Linux 3.0.4 (Closes: #627702)
- Add support for i82576-ET2, i82580, DH89xxCC, i340 and i350
* r8169: Backport changes up to Linux 3.0.2 (Closes: #627704)
- Fix support for RTL8102E and RTL8168DP
- Add support for RTL8105E, RTL8168E and another variant of RTL8168DP
- Add support for D-Link DGE-530T rev C1
* tg3,broadcom: Backport changes up to Linux 2.6.38 (Closes: #627705)
- Add support for BCM5717, BCM5719, BCM57765
- Add support for BCM50610M and BCM5241 PHYs
- Fix support for BCM5755
* Remove net device features from bug reports (Closes: #638956)
* Revert "net/ipv4: Check for mistakenly passed in non-IPv4 address"
included in 2.6.32.43, which might break some applications
* Add longterm release 2.6.32.44, including:
- NFSv4.1: update nfs4_fattr_bitmap_maxsz
- hwmon: (max1111) Fix race condition causing NULL pointer exception
- bridge: send proper message_age in config BPDU
- USB: OHCI: fix another regression for NVIDIA controllers
(Closes: #620848)
- ext3: Fix oops in ext3_try_to_allocate_with_rsv()
- svcrpc: fix list-corrupting race on nfsd shutdown
- alpha: fix several security issues (CVE-2011-2208, CVE-2011-2209,
CVE-2011-2210, CVE-2011-2211)
- ALSA: sound/core/pcm_compat.c: adjust array index
- atm: [br2684] allow routed mode operation again
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.44
and the bug report which this closes: #639425.
* Add longterm release 2.6.32.45, including:
- ALSA: timer - Fix Oops at closing slave timer
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.45
and the bug report which this closes: #639426.
* sched: Work around sched_group::cpu_power == 0 (Ameliorates: #636797)
* [x86] Revert "x86, hotplug: Use mwait to offline a processor, fix the
legacy case" (Closes: #622259)
* Fix bugs in IPv6 forwarding with GRO/GSO (Closes: #630730):
- e1000e,igb,igbvf,ixgbe: Fix IPv6 GSO type checks
- ipv6: Add GSO support on forwarding path
* devpts: correctly check d_alloc_name() return code (Closes: #640650)
* ipv6: make fragment identifications less predictable (CVE-2011-2699)
* Add longterm release 2.6.32.46, including:
- atm: br2864: sent packets truncated in VC routed mode (Closes: #638656)
- hwmon: (ibmaem) add missing kfree
- ALSA: snd-usb-caiaq: Correct offset fields of outbound iso_frame_desc
- ALSA: snd_usb_caiaq: track submitted output urbs
- futex: Fix regression with read only mappings
- x86-32, vdso: On system call restart after SYSENTER, use int $0x80
- fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.46
and the bug report which this closes: #641232.
* drm/ttm: fix ttm_bo_add_ttm(user) failure path
* 3c503: fix broken IRQ autoprobing (Closes: #566522)
-- dann frazier <email address hidden> Thu, 29 Sep 2011 20:23:36 -0600
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+27) oldstable; urgency=high
* Rebuild against linux-source-2.6.26 (2.6.26-27):
* dm,md: Deal with merge_bvec_fn in component devices better
(See: #604457)
* rt2x00: Fix memory leak after failing to insert RTS/CTS frame
(See: #561890)
* Include selected backport from 2.6.27.58:
- md: fix bug with re-adding of partially recovered device.
* Include selected backports from 2.6.27.59:
- NFS: fix the return value of nfs_file_fsync()
- ptrace: use safer wake up on ptrace_detach()
- [x86] mm: avoid possible bogus tlb entries by clearing prev mm_cpumask
after switching mm
- dm raid1: fail writes if errors are not handled and log fails
- [x86] asus_acpi: world-writable procfs files
- [x86] acer-wmi: world-writable sysfs threeg file
- [x86] tc1100-wmi: world-writable sysfs wireless and jogdial files
- NFSD: memory corruption due to writing beyond the stat array
- ext2: Fix link count corruption under heavy link+rename load
- virtio: set pci bus master enable bit
- [s390] keyboard: integer underflow bug
- ocfs2_connection_find() returns pointer to bad structure
- libsas: fix runaway error handler problem
- NFS: Fix "kernel BUG at fs/aio.c:554!"
- md: fix regression with re-adding devices to arrays with no metadata
- [x86] Flush TLB if PGD entry is changed in i386 PAE mode
- ext3: skip orphan cleanup on rocompat fs
- cciss: fix lost command issue
* cifs: fix an oops that can occur when accessing filenames containing
accented characters from a Windows ME server (See: #524438)
* [hppa] Fix FTBFS caused by CVE-2011-2496 fix
-- dann frazier <email address hidden> Thu, 22 Sep 2011 16:15:24 -0600
user-mode-linux (2.6.32-1um-4+34squeeze1) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-34squeeze1), whose changelog can be viewed at: http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.32-34squeeze1/changelog -- dann frazier <email address hidden> Mon, 23 May 2011 13:50:50 -0600
user-mode-linux (2.6.32-1um-4) unstable; urgency=high * Update kernel config to the latest available for squeeze -- Mattia Dongili <email address hidden> Thu, 27 Jan 2011 07:30:00 +0900
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+26lenny1) stable-security; urgency=high * Rebuild against linux-source-2.6.26 (2.6.26-26lenny1): * net sched: fix kernel leak in act_police (CVE-2010-3477) * aio: check for multiplication overflow in do_io_submit (CVE-2010-3067) * cxgb3: prevent reading uninitialized stack memory (CVE-2010-3296) * eql: prevent reading uninitialized stack memory (CVE-2010-3297) * rose: Fix signedness issues wrt. digi count (CVE-2010-3310) * sctp: Do not reset the packet during sctp_packet_config() (CVE-2010-3432) * Fix pktcdvd ioctl dev_minor range check (CVE-2010-3437) * ALSA: prevent heap corruption in snd_ctl_new() (CVE-2010-3442) * thinkpad-acpi: lock down video output state access (CVE-2010-3448) * sctp: Fix out-of-bounds reading in sctp_asoc_get_hmac() (CVE-2010-3705) * setup_arg_pages: diagnose excessive argument size (CVE-2010-3858) * X.25: memory corruption in X.25 facilities parsing (CVE-2010-3873) * sys_semctl: fix kernel stack leakage (CVE-2010-4083) * ALSA: rme9652: prevent reading uninitialized stack memory (CVE-2010-4080, CVE-2010-4081) * V4L/DVB: ivtvfb: prevent reading uninitialized stack memory (CVE-2010-4079) * video/sis: prevent reading uninitialized stack memory (CVE-2010-4078) * X.25: Prevent crashing when parsing bad X.25 facilities (CVE-2010-4164) * v4l1: fix 32-bit compat microcode loading translation (CVE-2010-2963) * net: Mitigate overflow issues - Truncate recvfrom and sendto length to INT_MAX. - Limit socket I/O iovec total length to INT_MAX. - Resolves kernel heap overflow in the TIPC protcol (CVE-2010-3859) * net: ax25: fix information leak to userland (CVE-2010-3875) * can-bcm: fix minor heap overflow (CVE-2010-3874) * net: packet: fix information leak to userland (CVE-2010-3876) * net: tipc: fix information leak to userland (CVE-2010-3877) * inet_diag: Make sure we actually run the same bytecode we audited (CVE-2010-3880) * ipc: shm: fix information leak to userland (CVE-2010-4072) * ipc: initialize structure memory to zero for compat functions (CVE-2010-4073) * USB: serial/mos*: prevent reading uninitialized stack memory (CVE-2010-4074) * [SCSI] gdth: integer overflow in ioctl (CVE-2010-4157) * econet: Avoid stack overflow w/ large msgiovlen (CVE-2010-3848) * econet: disallow NULL remote addr for sendmsg() (CVE-2010-3849) * econet: Add mising CAP_NET_ADMIN check in SIOCSIFADDR (CVE-2010-3850) -- dann frazier <email address hidden> Sat, 27 Nov 2010 10:02:00 -0700
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+26) stable; urgency=high * Rebuild against linux-source-2.6.26 (2.6.26-26): [ Ben Hutchings ] * [alpha,s390,sparc] math-emu: correct test for downshifting fraction in _FP_FROM_INT() (See: #593193) * SCSI/mptsas: fix hangs caused by ATA pass-through (See: #594690) * xfs: prevent kernel crash due to corrupted inode log format (See: #550733) * r6040: Fix various bugs in r6040_multicast_list() (See: #600155) -- dann frazier <email address hidden> Tue, 23 Nov 2010 16:21:31 -0700
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+24lenny1) stable-security; urgency=high
* Rebuild against linux-source-2.6.26 (2.6.26-24):
* cifs: Fix a kernel BUG with remote OS/2 server (CVE-2010-2248)
* Fix race in tty_fasync() properly (CVE-2009-4895)
* xfs: prevent swapext from operating on write-only files (CVE-2010-2226)
* nfsd4: bug in read_buf (CVE-2010-2521)
* GFS2: rename causes kernel Oops (CVE-2010-2798)
* exec: Fix 'flush_old_exec()/setup_new_exec()' split (Closes: #589179;
regression due to fix for CVE-2010-0307)
* can: add limit for nframes and clean up signed/unsigned variables
(CVE-REQUESTED)
* mm: keep a guard page below a grow-down stack segment (CVE-2010-2240)
* drm: stop information leak of old kernel stack (CVE-2010-2803)
* ext4: fix integer overflows in ext4_ext_{in_cache,get_blocks}
(CVE-2010-3015)
-- dann frazier <email address hidden> Thu, 19 Aug 2010 18:02:50 -0600
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+24) stable; urgency=high
* Rebuild against linux-source-2.6.26 (2.6.26-24):
[Ben Hutchings]
* usbhid: Reduce the race condition between disconnect and ioctl
(See: #511892)
* r8169: Fix MDIO timing (See: #583139)
* [x86] Restore automatic update of LILO on kernel installation, upgrade
or removal (See: #505609)
* [sparc64] Fix definition of VMEMMAP_SIZE (See: #509202)
* megaraid_sas: Version and documentation update (See: #547183)
* bnx2: Fix lost MSI-X problem on 5709 NICs (See: #581001)
* raid456: Fix two bugs in handling of degraded states (See: #581392)
- Prevent reshaping of doubly-degraded RAID4
- Enable error-correction on singly-degraded RAID6
* r8169: fix broken register writes (See: #407217, #573007)
* [i386] Disable use of NOPL instruction in alternatives (See: #463606)
* virtio_blk: don't bounce highmem requests (See: #584217)
[ dann frazier ]
* x86: check boundary in setup_node_bootmem() (See: 569704)
* sunxvr500: Ignore secondary output PCI devices (See: #580422)
* sctp: fix append error cause to ERROR chunk correctly
(a further fix for CVE-2010-1173)
* nsfd: fix vm overcommit crash (CVE-2008-7256, CVE-2010-1643)
* GFS2: Fix permissions checking for setflags ioctl() (CVE-2010-1641)
* GFS2: Fix writing to non-page aligned gfs2_quota structures
(CVE-2010-1436)
[ maximilian attems ]
* openvz: printk_cpu have to be "cleared" in __vprintk (v2)
(see: #573460)
* openvz: Fix "Bad throughput of TCP connection after live migration"
(see: #500145)
* ub: incorrect skb is charged in tcp_send_synack.
[ Aurelien Jarno ]
* mips/swarm: fix boot from IDE based media (Sebastian Andrzej Siewior)
(see: #466977).
* backport mips/swarm: fix M3 TLB exception handler.
* backport MIPS FPU emulator: allow Cause bits of FCSR to be writeable
by ctc1. (see: #580602).
-- dann frazier <email address hidden> Mon, 21 Jun 2010 08:27:57 -0600
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+21) stable; urgency=high
* Rebuild against linux-source-2.6.26 (2.6.26-21):
[ Ben Hutchings ]
* Fix false soft lockup reports for the nohz idle loop
* nohz: Fix two bugs that can keep a processor idle and lead to a
system hang (may fix #496917, #538158 and others)
* usbmidi: Fix crash when device is disconnected (Closes: #513050)
* r8169: Apply various upstream bug fixes
* r8169: Add support for RTL8101e (v2), RTL8102e (v1,v2,v3),
RTL8168c/8111c (v3,v4), RTL8168cp/8111cp (v2,v3), RTL8168d (v1)
(Closes: #552465; may fix #516187)
* Revert patch to sanitise <linux/socket.h>, which introduced
different build failures
* usbnet: Set link down initially for drivers that update link state
(Closes: #444043)
* atl1e: Remove broken implementation of TSO for TCP/IPv6
(Closes: #558426) and allow other hardware offloads to be disabled in
case they are also buggy
[ dann frazier ]
* floppy: request and release only the ports we actually use
(Closes: #332942)
* igb: Add 82576 MAC support (Closes: #522922), backport
by Ben Hutchings
* [SCSI] gdth: Prevent negative offsets in ioctl (CVE-2009-3080)
* NFSv4: Fix a problem whereby a buggy server can oops the kernel
(CVE-2009-3726)
* [SCSI] megaraid_sas: remove sysfs dbg_lvl world writeable permissions
(CVE-2009-3889)
* isdn: hfc_usb: Fix read buffer overflow (CVE-2009-4005)
* fuse: prevent fuse_put_request on invalid pointer (CVE-2009-4021)
* hpilo: new PCI ID (Closes: #559064)
* Avoid /proc/$pid/maps visibility during initial setuid ELF loading
(CVE-2009-2691)
* hfs: fix a potential buffer overflow (CVE-2009-4020)
* KVM: x86 emulator: limit instructions to 15 bytes (CVE-2009-4031)
* firewire: ohci: handle receive packets with a data length of zero
(CVE-2009-4138)
* ext4: Avoid null pointer dereference when decoding EROFS w/o a journal
(CVE-2009-4308)
* s390: dasd diag - add support for read-only minidisks (Closes: #550898)
-- dann frazier <email address hidden> Tue, 19 Jan 2010 18:32:16 -0700
user-mode-linux (2.6.32-1um-3) unstable; urgency=low
* Sigh, the new 2.6.32 upload includes the IF_NOTIFY_RESUME patch included
in the previous version so u-m-l failed to build again :(
-- Mattia Dongili <email address hidden> Fri, 08 Jan 2010 21:30:39 +0900
| Superseded in sid-release |
user-mode-linux (2.6.32-1um-2) unstable; urgency=low * Fix build failure due to SUBARCH being passed with a wrong value -- Mattia Dongili <email address hidden> Fri, 08 Jan 2010 07:32:04 +0900
| Superseded in lenny-release |
user-mode-linux (2.6.26-1um-2+19) stable; urgency=high * Rebuild against linux-source-2.6.26 (2.6.26-18) -- dann frazier <email address hidden> Wed, 19 Aug 2009 23:36:19 -0600
user-mode-linux (2.6.30-1um-1) unstable; urgency=low
* New upstream release.
* Remove 07_vde_user_build_fix which has been merged upstream.
* Add 04_remove_irqf_disabled.patch to bring get a working network inside
the guest.
* Removed possibly MIA uploaders (Stefano Melchior) (Closes: #514667).
* Include more config options (i.e.: IP_VS) (Closes: #509434).
* Stop suggesting linux-patch-skas, not in the repository anymore
(Closes: #495651).
* Suggest: vde2 for the vde UML network driver.
* Fix strrchr symbol clash on forced static builds (Closes: #494995).
-- Mattia Dongili <email address hidden> Sun, 05 Jul 2009 11:07:28 +0900
| 1 → 75 of 78 results | First • Previous • Next • Last |
