Change log for linux-ec2 package in Ubuntu

175 of 110 results
Published in lucid-security on 2015-02-24
Published in lucid-updates on 2015-02-24
Deleted in lucid-proposed (Reason: Copied to -updates)
linux-ec2 (2.6.32-376.93) lucid; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-73.140
  * Release Tracking Bug
    - LP: #1420580

  [ Ubuntu: 2.6.32-73.140 ]

  * [Packaging] force "dpkg-source -I -i" behavior
  * isofs: Fix unchecked printing of ER records
    - LP: #1409808
    - CVE-2014-9584
  * KEYS: close race between key lookup and freeing
    - LP: #1409048
    - CVE-2014-9529
 -- Stefan Bader <email address hidden>   Wed, 11 Feb 2015 10:28:04 +0100

Available diffs

Superseded in lucid-security on 2015-02-24
Superseded in lucid-updates on 2015-02-24
Superseded in lucid-proposed on 2015-02-12
linux-ec2 (2.6.32-375.92) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-71.138
  * Xen: x86, 64-bit: Move K8 B step iret fixup to fault entry asm
    - LP: #1403918
  * Xen: x86-64, modify_ldt: Ban 16-bit segments on 64-bit kernels
    - LP: #1403918
  * Xen: x86-32, espfix: Remove filter for espfix32 due to race
    - LP: #1403918
  * Xen: x86-64, espfix: Don't leak bits 31:16 of %esp returning to 16-bit
    stack
    - LP: #1403918
  * Xen: x86, espfix: Make espfix64 a Kconfig option, fix UML
    - LP: #1403918
  * Xen: x86, espfix: Make it possible to disable 16-bit support
    - LP: #1403918
  * Xen: x86_64/entry/xen: Do not invoke espfix64 on Xen
    - LP: #1403918
  * Xen: [Config] Enable CONFIG_X86_16BIT
  * Rebased to Ubuntu-2.6.32-72.139
  * Release Tracking Bug
    - LP: #1411354

  [ Ubuntu: 2.6.32-72.139 ]

  * isofs: Fix infinite looping over CE entries
    - LP: #1407947
    - CVE-2014-9420
  * x86/tls: Validate TLS entries to protect espfix
    - LP: #1403852
    - CVE-2014-8133

  [ Ubuntu: 2.6.32-71.138 ]

  * [Config] updateconfigs CONFIG_X86_16BIT=y after v2.6.32.65 update
  * KVM: x86: Check non-canonical addresses upon WRMSR
    - LP: #1384539
    - CVE-2014-3610
  * KVM: x86: Improve thread safety in pit
    - LP: #1384540
    - CVE-2014-3611
  * net:socket: set msg_namelen to 0 if msg_name is passed as NULL in
    msghdr struct from userland.
    - LP: #1335478
  * x86, 64-bit: Move K8 B step iret fixup to fault entry asm
    - LP: #1403918
  * x86-64: Adjust frame type at paranoid_exit:
    - LP: #1403918
  * x86-64, modify_ldt: Ban 16-bit segments on 64-bit kernels
    - LP: #1403918
  * x86-32, espfix: Remove filter for espfix32 due to race
    - LP: #1403918
  * x86-64, espfix: Don't leak bits 31:16 of %esp returning to 16-bit stack
    - LP: #1403918
  * x86, espfix: Move espfix definitions into a separate header file
    - LP: #1403918
  * x86, espfix: Fix broken header guard
    - LP: #1403918
  * x86, espfix: Make espfix64 a Kconfig option, fix UML
    - LP: #1403918
  * x86, espfix: Make it possible to disable 16-bit support
    - LP: #1403918
  * x86_64/entry/xen: Do not invoke espfix64 on Xen
    - LP: #1403918
  * x86/espfix/xen: Fix allocation of pages for paravirt page tables
    - LP: #1403918
  * x86_64, traps: Fix the espfix64 #DF fixup and rewrite it in C
    - LP: #1403918
  * x86_64, traps: Rework bad_iret
    - LP: #1403918
 -- Stefan Bader <email address hidden>   Thu, 18 Dec 2014 18:20:27 +0100

Available diffs

Superseded in lucid-security on 2015-02-03
Superseded in lucid-updates on 2015-02-03
Superseded in lucid-proposed on 2015-01-16
linux-ec2 (2.6.32-374.91) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-70.137
  * XEN: x86_64, traps: Stop using IST for #SS
    - LP: #1398795
    - CVE-2014-9090
  * Release Tracking Bug
    - LP: #1401050

  [ Ubuntu: 2.6.32-70.137 ]

  * x86_64, traps: Stop using IST for #SS
    - LP: #1398795
    - CVE-2014-9090
  * x86, kvm: Clear paravirt_enabled on KVM guests for espfix32's benefit
    - LP: #1400314
    - CVE-2014-8134
 -- Stefan Bader <email address hidden>   Tue, 09 Dec 2014 14:36:13 +0100

Available diffs

Superseded in lucid-security on 2014-12-11
Superseded in lucid-updates on 2014-12-11
Superseded in lucid-proposed on 2014-12-11
linux-ec2 (2.6.32-373.90) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-69.136
  * Release Tracking Bug
    - LP: #1395971

  [ Ubuntu: 2.6.32-69.136 ]

  * net: sctp: fix skb_over_panic when receiving malformed ASCONF chunks
    - LP: #1386367
    - CVE-2014-3673
  * net: sctp: fix panic on duplicate ASCONF chunks
    - LP: #1386392
    - CVE-2014-3687
  * net: sctp: fix remote memory pressure from excessive queueing
    - LP: #1386393
    - CVE-2014-3688
  * mac80211: fix fragmentation code, particularly for encryption
    - LP: #1392013
    - CVE-2014-8709
  * ttusb-dec: buffer overflow in ioctl
    - LP: #1395187
    - CVE-2014-8884
  * net: sctp: fix NULL pointer dereference in af->from_addr_param on
    malformed packet
    - LP: #1392820
    - CVE-2014-7841
 -- Stefan Bader <email address hidden>   Tue, 25 Nov 2014 11:22:25 +0100

Available diffs

Superseded in lucid-security on 2014-12-11
Superseded in lucid-updates on 2014-12-11
Superseded in lucid-proposed on 2014-11-25
linux-ec2 (2.6.32-372.89) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-68.135
  * Add missing build-dependency for rsync
  * Release Tracking Bug
    - LP: #1389005

  [ Ubuntu: 2.6.32-68.135 ]

  * [Debian] Fix linux-doc dangling symlinks
    - LP: #661306
  * Revert "lzo: properly check for overruns"
    - LP: #1335313
    - CVE-2014-4608
  * lzo: check for length overrun in variable length encoding.
    - LP: #1335313
    - CVE-2014-4608
  * fs: Add a missing permission check to do_umount
    - LP: #1383358
    - CVE-2014-7975
 -- Stefan Bader <email address hidden>   Tue, 04 Nov 2014 08:54:04 +0100
Superseded in lucid-security on 2014-11-24
Superseded in lucid-updates on 2014-11-24
Superseded in lucid-proposed on 2014-11-04
linux-ec2 (2.6.32-371.87) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-67.134
  * Release Tracking Bug
    - LP: #1374635

  [ Ubuntu: 2.6.32-67.134 ]

  * udf: Avoid infinite loop when processing indirect ICBs
    - LP: #1370042
    - CVE-2014-6410

  [ Ubuntu: 2.6.32-67.133 ]

  * Revert "nfsd: correctly handle return value from nfsd_map_name_to_*"
    - LP: #1365914
  * HID: fix a couple of off-by-ones
    - LP: #1370035
    - CVE-2014-3184
  * USB: whiteheat: Added bounds checking for bulk command response
    - LP: #1370036
    - CVE-2014-3185
 -- Stefan Bader <email address hidden>   Mon, 29 Sep 2014 13:05:24 +0200

Available diffs

Superseded in lucid-security on 2014-10-08
Superseded in lucid-updates on 2014-10-08
Superseded in lucid-proposed on 2014-10-01
linux-ec2 (2.6.32-370.86) lucid; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #1364189

  [ Upstream Kernel Changes ]

  * isofs: Fix unbounded recursion when processing relocated directories
    - LP: #1362447, #1362448
    - CVE-2014-5472
 -- Brad Figg <email address hidden>   Tue, 02 Sep 2014 08:34:56 -0700

Available diffs

Superseded in lucid-security on 2014-09-23
Superseded in lucid-updates on 2014-09-23
Superseded in lucid-proposed on 2014-09-08
linux-ec2 (2.6.32-369.85) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-65.129
  * Rebased to Ubuntu-2.6.32-65.131
  * Release Tracking Bug
    - LP: #1357410

  [ Upstream Kernel Changes ]

  * xen: x86_32, entry: Do syscall exit work on badsys (CVE-2014-4508)
    - LP: #1334989
    - CVE-2014-4508
  * xen: x86_32, entry: Store badsys error code in %eax
    - LP: #1334989
    - CVE-2014-4508

  [ Ubuntu: 2.6.32-65.131 ]

  * x86_32, entry: Store badsys error code in %eax
    - LP: #1334989
    - CVE-2014-4508

  [ Ubuntu: 2.6.32-65.129 ]

  * fix autofs/afs/etc. magic mountpoint breakage
    - CVE-2014-0203
  * ALSA: control: Don't access controls outside of protected regions
    - LP: #1339297
    - CVE-2014-4653
  * ALSA: control: Fix replacing user controls
    - LP: #1339303, #1339304
    - CVE-2014-4655
  * ALSA: control: Handle numid overflow
    - LP: #1339306
    - CVE-2014-4656
  * ALSA: control: Make sure that id->index does not overflow
    - LP: #1339306
    - CVE-2014-4656
  * sctp: Fix sk_ack_backlog wrap-around problem
    - CVE-2014-4667
  * x86_32, entry: Do syscall exit work on badsys (CVE-2014-4508)
    - LP: #1334989
    - CVE-2014-4508
  * ALSA: control: Protect user controls against concurrent access
    - LP: #1339294
    - CVE-2014-4652
  * net: sctp: inherit auth_capable on INIT collisions
    - LP: #1349804
    - CVE-2014-5077
 -- Stefan Bader <email address hidden>   Fri, 15 Aug 2014 08:55:05 +0200
Superseded in lucid-security on 2014-08-28
Superseded in lucid-updates on 2014-08-28
Superseded in lucid-proposed on 2014-08-19
linux-ec2 (2.6.32-368.84) lucid; urgency=low

  [ Andy Whitcroft ]

  * pull in missing CVE changelog
  * Ubuntu-2.6.32-368.84

  [ Ubuntu: 2.6.32-64.128 ]

  * l2tp: Privilege escalation in ppp over l2tp sockets
    - LP: #1341472
    - CVE-2014-4943

Superseded in lucid-proposed on 2014-07-16
linux-ec2 (2.6.32-368.83) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-64.127
  * Release Tracking Bug
    - LP: #1339215

  [ Ubuntu: 2.6.32-64.127 ]

  * Merged back Ubuntu-2.6.32-62.126 security release
  * Revert "x86_64,ptrace: Enforce RIP <= TASK_SIZE_MAX (CVE-2014-4699)"
    - LP: #1337339
  * ptrace,x86: force IRET path after a ptrace_stop()
    - LP: #1337339
    - CVE-2014-4699
 -- Stefan Bader <email address hidden>   Wed, 09 Jul 2014 09:34:30 +0200

Available diffs

Superseded in lucid-security on 2014-07-16
Superseded in lucid-updates on 2014-07-16
Superseded in lucid-proposed on 2014-07-06
linux-ec2 (2.6.32-366.81) lucid; urgency=low

  [ Andy Whitcroft ]

  * rebase to Ubuntu-2.6.32-62.126

  [ Ubuntu: 2.6.32-62.126 ]

  * x86_64,ptrace: Enforce RIP <= TASK_SIZE_MAX (CVE-2014-4699)
    - LP: #1337339
    - CVE-2014-4699
 -- Andy Whitcroft <email address hidden>   Fri, 04 Jul 2014 18:32:47 +0100
Superseded in lucid-proposed on 2014-07-09
Deleted in lucid-proposed on 2014-07-05 (Reason: Deleting to make way for security update)
linux-ec2 (2.6.32-367.82) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-63.126
  * Release Tracking Bug
    - LP: #1336142

  [ Ubuntu: 2.6.32-63.126 ]

  * net: check net.core.somaxconn sysctl values
    - LP: #1321293
  * sysctl net: Keep tcp_syn_retries inside the boundary
    - LP: #1321293
  * ethtool: Report link-down while interface is down
    - LP: #1335049
  * futex: Prevent attaching to kernel threads
    - LP: #1335049
  * auditsc: audit_krule mask accesses need bounds checking
    - LP: #1335049
  * net: fix regression introduced in 2.6.32.62 by sysctl fixes
    - LP: #1335049
  * Linux 2.6.32.63
    - LP: #1335049
  * lib/lzo: Rename lzo1x_decompress.c to lzo1x_decompress_safe.c
    - LP: #1335313
    - CVE-2014-4608
  * lib/lzo: Update LZO compression to current upstream version
    - LP: #1335313
    - CVE-2014-4608
  * lzo: properly check for overruns
    - LP: #1335313
    - CVE-2014-4608
 -- Stefan Bader <email address hidden>   Tue, 01 Jul 2014 10:14:23 +0200
Superseded in lucid-security on 2014-07-05
Superseded in lucid-updates on 2014-07-05
Superseded in lucid-proposed on 2014-07-02
linux-ec2 (2.6.32-366.80) lucid; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-62.125
  * Release Tracking Bug
    - LP: #1328287

  [ Upstream Kernel Changes ]

  * blkfront: fixes for 'xm block-detach ... --force'
    - LP: #1326870
  * blkfront: don't access freed struct xenbus_device
    - LP: #1326870
  * blkfront: Clean up vbd release
    - LP: #1326870
  * blkfront: Lock blkfront_info when closing
    - LP: #1326870

  [ Ubuntu: 2.6.32-62.125 ]

  * SAUCE: (no-up) Fix regression introduced by patch, for CVE-2014-3153
    - LP: #1327300
  * [Config] add debian/gbp.conf
  * filter: prevent nla extensions to peek beyond the end of the message
    - LP: #1319561, #1319563
    - CVE-2014-3145
 -- Stefan Bader <email address hidden>   Wed, 11 Jun 2014 11:13:31 +0200

Available diffs

Superseded in lucid-security on 2014-06-19
Superseded in lucid-updates on 2014-06-19
Superseded in lucid-proposed on 2014-06-12
linux-ec2 (2.6.32-365.79) lucid; urgency=low

  [ Brad Figg ]

  * Rebased to Ubuntu-2.6.32-61.124
 -- Brad Figg <email address hidden>   Wed, 04 Jun 2014 15:25:02 -0700
Superseded in lucid-proposed on 2014-06-05
linux-ec2 (2.6.32-365.78) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-61.123
  * Release Tracking Bug
    - LP: #1321928

  [ Ubuntu: 2.6.32-61.123 ]

  * mm: try_to_unmap_cluster() should lock_page() before mlocking
    - LP: #1316268
    - CVE-2014-3122
  * ipc/msg: fix race around refcount
    - LP: #1248713
    - CVE-2013-4483
  * scsi: fix missing include linux/types.h in scsi_netlink.h
    - LP: #1321293
  * Fix lockup related to stop_machine being stuck in __do_softirq.
    - LP: #1321293
  * x86, ptrace: fix build breakage with gcc 4.7 (second try)
    - LP: #1321293
  * ipvs: fix CHECKSUM_PARTIAL for TCP, UDP
    - LP: #1321293
  * intel-iommu: Flush unmaps at domain_exit
    - LP: #1321293
  * staging: comedi: ni_65xx: (bug fix) confine insn_bits to one subdevice
    - LP: #1321293
  * kernel/kmod.c: check for NULL in call_usermodehelper_exec()
    - LP: #1321293
  * HID: check for NULL field when setting values
    - LP: #1321293
  * crypto: api - Fix race condition in larval lookup
    - LP: #1321293
  * ipv6: tcp: fix panic in SYN processing
    - LP: #1321293
  * tcp: must unclone packets before mangling them
    - LP: #1321293
  * net: do not call sock_put() on TIMEWAIT sockets
    - LP: #1321293
  * net: heap overflow in __audit_sockaddr()
    - LP: #1321293
  * proc connector: fix info leaks
    - LP: #1321293
  * can: dev: fix nlmsg size calculation in can_get_size()
    - LP: #1321293
  * net: vlan: fix nlmsg size calculation in vlan_get_size()
    - LP: #1321293
  * connector: use nlmsg_len() to check message length
    - LP: #1321293
  * net: dst: provide accessor function to dst->xfrm
    - LP: #1321293
  * sctp: Use software crc32 checksum when xfrm transform will happen.
    - LP: #1321293
  * sctp: Perform software checksum if packet has to be fragmented.
    - LP: #1321293
  * davinci_emac.c: Fix IFF_ALLMULTI setup
    - LP: #1321293
  * resubmit bridge: fix message_age_timer calculation
    - LP: #1321293
  * ipv6 mcast: use in6_dev_put in timer handlers instead of __in6_dev_put
    - LP: #1321293
  * ipv4 igmp: use in_dev_put in timer handlers instead of __in_dev_put
    - LP: #1321293
  * dm9601: fix IFF_ALLMULTI handling
    - LP: #1321293
  * bonding: Fix broken promiscuity reference counting issue
    - LP: #1321293
  * ll_temac: Reset dma descriptors indexes on ndo_open
    - LP: #1321293
  * tcp: fix tcp_md5_hash_skb_data()
    - LP: #1321293
  * ipv6: fix possible crashes in ip6_cork_release()
    - LP: #1321293
  * ip_tunnel: fix kernel panic with icmp_dest_unreach
    - LP: #1321293
  * net: sctp: fix NULL pointer dereference in socket destruction
    - LP: #1321293
  * packet: packet_getname_spkt: make sure string is always 0-terminated
    - LP: #1321293
  * neighbour: fix a race in neigh_destroy()
    - LP: #1321293
  * net: Swap ver and type in pppoe_hdr
    - LP: #1321293
  * sunvnet: vnet_port_remove must call unregister_netdev
    - LP: #1321293
  * ifb: fix rcu_sched self-detected stalls
    - LP: #1321293
  * dummy: fix oops when loading the dummy failed
    - LP: #1321293
  * ifb: fix oops when loading the ifb failed
    - LP: #1321293
  * vlan: fix a race in egress prio management
    - LP: #1321293
  * arcnet: cleanup sizeof parameter
    - LP: #1321293
  * sysctl net: Keep tcp_syn_retries inside the boundary
    - LP: #1321293
  * sctp: fully initialize sctp_outq in sctp_outq_init
    - LP: #1321293
  * net_sched: Fix stack info leak in cbq_dump_wrr().
    - LP: #1321293
  * af_key: more info leaks in pfkey messages
    - LP: #1321293
  * net_sched: info leak in atm_tc_dump_class()
    - LP: #1321293
  * htb: fix sign extension bug
    - LP: #1321293
  * net: check net.core.somaxconn sysctl values
    - LP: #1321293
  * tcp: cubic: fix bug in bictcp_acked()
    - LP: #1321293
  * ipv6: don't stop backtracking in fib6_lookup_1 if subtree does not
    match
    - LP: #1321293
  * ipv6: drop packets with multiple fragmentation headers
    - LP: #1321293
  * ipv6: Don't depend on per socket memory for neighbour discovery
    messages
    - LP: #1321293
  * ICMPv6: treat dest unreachable codes 5 and 6 as EACCES, not EPROTO
    - LP: #1321293
  * tipc: fix lockdep warning during bearer initialization
    - LP: #1321293
  * net: Fix "ip rule delete table 256"
    - LP: #1321293
  * ipv6: use rt6_get_dflt_router to get default router in rt6_route_rcv
    - LP: #1321293
  * random32: fix off-by-one in seeding requirement
    - LP: #1321293
  * bonding: fix two race conditions in bond_store_updelay/downdelay
    - LP: #1321293
  * isdnloop: use strlcpy() instead of strcpy()
    - LP: #1321293
  * ipv4: fix possible seqlock deadlock
    - LP: #1321293
  * net: add BUG_ON if kernel advertises msg_namelen > sizeof(struct
    sockaddr_storage)
    - LP: #1321293
  * net: clamp ->msg_namelen instead of returning an error
    - LP: #1321293
  * ipv6: fix leaking uninitialized port number of offender sockaddr
    - LP: #1321293
  * atm: idt77252: fix dev refcnt leak
    - LP: #1321293
  * net: core: Always propagate flag changes to interfaces
    - LP: #1321293
  * bridge: flush br's address entry in fdb when remove the bridge dev
    - LP: #1321293
  * inet: fix possible seqlock deadlocks
    - LP: #1321293
  * ipv6: fix possible seqlock deadlock in ip6_finish_output2
    - LP: #1321293
  * {pktgen, xfrm} Update IPv4 header total len and checksum after
    tranformation
    - LP: #1321293
  * net: drop_monitor: fix the value of maxattr
    - LP: #1321293
  * net: unix: allow bind to fail on mutex lock
    - LP: #1321293
  * drivers/net/hamradio: Integer overflow in hdlcdrv_ioctl()
    - LP: #1321293
  * net: llc: fix use after free in llc_ui_recvmsg
    - LP: #1321293
  * inet_diag: fix inet_diag_dump_icsk() timewait socket state logic
    - LP: #1321293
  * net: fix 'ip rule' iif/oif device rename
    - LP: #1321293
  * tg3: Fix deadlock in tg3_change_mtu()
    - LP: #1321293
  * bonding: 802.3ad: make aggregator_identifier bond-private
    - LP: #1321293
  * net: sctp: fix sctp_connectx abi for ia32 emulation/compat mode
    - LP: #1321293
  * virtio-net: alloc big buffers also when guest can receive UFO
    - LP: #1321293
  * tg3: Don't check undefined error bits in RXBD
    - LP: #1321293
  * net: sctp: fix skb leakage in COOKIE ECHO path of chunk->auth_chunk
    - LP: #1321293
  * net: socket: error on a negative msg_namelen
    - LP: #1321293
  * netlink: don't compare the nul-termination in nla_strcmp
    - LP: #1321293
  * isdnloop: several buffer overflows
    - LP: #1321293
  * isdnloop: Validate NUL-terminated strings from user.
    - LP: #1321293
  * sctp: unbalanced rcu lock in ip_queue_xmit()
    - LP: #1321293
  * ipv6: udp packets following an UFO enqueued packet need also be handled
    by UFO
    - LP: #1321293
  * inet: fix possible memory corruption with UDP_CORK and UFO
    - LP: #1321293
  * x86, fpu, amd: Clear exceptions in AMD FXSAVE workaround
    - LP: #1321293
  * gianfar: disable TX vlan based on kernel 2.6.x
    - LP: #1321293
  * powernow-k6: set transition latency value so ondemand governor can be
    used
    - LP: #1321293
  * powernow-k6: disable cache when changing frequency
    - LP: #1321293
  * powernow-k6: correctly initialize default parameters
    - LP: #1321293
  * powernow-k6: reorder frequencies
    - LP: #1321293
  * tcp: fix tcp_trim_head() to adjust segment count with skb MSS
    - LP: #1321293
  * tcp_cubic: limit delayed_ack ratio to prevent divide error
    - LP: #1321293
  * tcp_cubic: fix the range of delayed_ack
    - LP: #1321293
  * qeth: avoid buffer overflow in snmp ioctl
    - LP: #1321293
  * s390: fix kernel crash due to linkage stack instructions
    - LP: #1321293
  * Linux 2.6.32.62
    - LP: #1321293
 -- Stefan Bader <email address hidden>   Thu, 22 May 2014 11:35:37 +0200

Available diffs

Superseded in lucid-security on 2014-06-05
Superseded in lucid-updates on 2014-06-05
Superseded in lucid-proposed on 2014-05-28
linux-ec2 (2.6.32-364.77) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-60.122
  * Release Tracking Bug
    - LP: #1317334

  [ Ubuntu: 2.6.32-60.122 ]

  * merge CVE release 2.6.32-58.121
  * Revert "n_tty: Fix n_tty_write crash when echoing in raw mode"
    - LP: #1314762
  * floppy: ignore kernel-only members in FDRAWCMD ioctl input
    - LP: #1316729
    - CVE-2014-1737
  * floppy: don't write kernel-only members to FDRAWCMD ioctl output
    - LP: #1316735
    - CVE-2014-1738
  * n_tty: Fix n_tty_write crash when echoing in raw mode
    - LP: #1314762
    - CVE-2014-0196
    - switch existing patch for upstream code.

  [ Ubuntu: 2.6.32-59.121 ]

  * rds: prevent dereference of a NULL device in rds_iw_laddr_check
    - LP: #1302222
    - CVE-2014-2678
  * rds: prevent dereference of a NULL device
    - LP: #1297738
    - CVE-2013-7339

  [ Ubuntu: 2.6.32-58.121 ]

  * n_tty: Fix n_tty_write crash when echoing in raw mode
 -- Stefan Bader <email address hidden>   Tue, 06 May 2014 11:05:23 -0500
Superseded in lucid-security on 2014-05-26
Superseded in lucid-updates on 2014-05-26
Superseded in lucid-proposed on 2014-05-12
linux-ec2 (2.6.32-363.77) lucid-proposed; urgency=low

  [ Peter Hurley ]

  * n_tty: Fix n_tty_write crash when echoing in raw mode
 -- Brad Figg <email address hidden>   Thu, 01 May 2014 07:57:13 -0700
Superseded in lucid-security on 2014-05-05
Superseded in lucid-updates on 2014-05-05
Superseded in lucid-proposed on 2014-05-05
linux-ec2 (2.6.32-363.76) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-58.120
  * Release Tracking Bug
    - LP: #1301071

  [ Ubuntu: 2.6.32-58.120 ]

  * netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages
    - LP: #1295090
    - CVE-2014-2523
  * net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable
    - LP: #1293714
    - CVE-2014-0101
 -- Stefan Bader <email address hidden>   Wed, 02 Apr 2014 13:42:12 +0200

Available diffs

Superseded in lucid-updates on 2014-04-24
Superseded in lucid-security on 2014-04-24
Superseded in lucid-proposed on 2014-04-08
linux-ec2 (2.6.32-362.75) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-57.119
  * Release Tracking Bug
    - LP: #1281942

  [ Ubuntu: 2.6.32-57.119 ]

  * ubuntu: AUFS: fsnotify_open() now receives a file
    - LP: #1097680
    - CVE-2013-0160
  * KVM: Improve create VCPU parameter (CVE-2013-4587)
    - LP: #1261564
    - CVE-2013-4587
  * KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367)
    - LP: #1261566
    - CVE-2013-6367
  * xfs: underflow bug in xfs_attrlist_by_handle()
    - LP: #1256091
    - CVE-2013-6382
  * aacraid: prevent invalid pointer dereference
    - LP: #1256083
    - CVE-2013-6380
  * wireless: radiotap: fix parsing buffer overrun
    - LP: #1260622
    - CVE-2013-7027
  * net: rework recvmsg handler msg_name and msg_namelen logic
    - LP: #1267081
    - CVE-2013-7266
  * net: rose: restore old recvmsg behavior
    - LP: #1267081
    - CVE-2013-7266
  * fsnotify: pass a file instead of an inode to open, read, and write
    - LP: #1097680
    - CVE-2013-0160
  * vfs: introduce FMODE_NONOTIFY
    - LP: #1097680
    - CVE-2013-0160
  * fanotify: FMODE_NONOTIFY and __O_SYNC in sparc conflict
    - LP: #1097680
    - CVE-2013-0160
  * TTY: do not update atime/mtime on read/write
    - LP: #1097680
    - CVE-2013-0160
  * TTY: fix atime/mtime regression
    - LP: #1097680
    - CVE-2013-0160
  * tty: fix up atime/mtime mess, take three
    - LP: #1097680
    - CVE-2013-0160
  * farsync: fix info leak in ioctl
    - LP: #1271442
    - CVE-2014-1444
  * wanxl: fix info leak in ioctl
    - LP: #1271444
    - CVE-2014-1445
  * hamradio/yam: fix info leak in ioctl
    - LP: #1271445
    - CVE-2014-1446
  * SELinux: Fix kernel BUG on empty security contexts.
    - CVE-2014-1874
  * exec/ptrace: fix get_dumpable() incorrect tests
    - LP: #1260610
    - CVE-2013-2929
 -- Stefan Bader <email address hidden>   Wed, 19 Feb 2014 16:51:53 +0100

Available diffs

Superseded in lucid-security on 2014-03-05
Superseded in lucid-updates on 2014-03-05
Superseded in lucid-proposed on 2014-02-19
linux-ec2 (2.6.32-361.74) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-56.118
  * Release Tracking Bug
    - LP: #1266612

  [ Ubuntu: 2.6.32-56.118 ]

  * inet: prevent leakage of uninitialized memory to user in recv syscalls
    - LP: #1256919
    - CVE-2013-6405
  * inet: fix addr_len/msg->msg_namelen assignment in recv_error and rxpmtu
    functions
    - LP: #1256919
    - CVE-2013-6405
  * aacraid: missing capable() check in compat ioctl
    - LP: #1256094
    - CVE-2013-6383
 -- Stefan Bader <email address hidden>   Wed, 08 Jan 2014 10:18:44 +0100

Available diffs

Superseded in lucid-security on 2014-02-18
Superseded in lucid-updates on 2014-02-18
Superseded in lucid-proposed on 2014-01-27
linux-ec2 (2.6.32-360.73) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-55.117
  * Release Tracking Bug
    - LP: #1257527

  [ Ubuntu: 2.6.32-55.117 ]

  * ipvs: Add boundary check on ioctl arguments
    - LP: #1252424
    - CVE-2013-4588
  * vm: add vm_iomap_memory() helper function
    - LP: #1252426
    - CVE-2013-6763
  * Fix a few incorrectly checked [io_]remap_pfn_range() calls
    - LP: #1252426
    - CVE-2013-6763
  * crypto: ansi_cprng - Fix off by one error in non-block size request
    - LP: #1229981
    - CVE-2013-4345
  * libertas: potential oops in debugfs
    - LP: #1256080
    - CVE-2013-6378
 -- Stefan Bader <email address hidden>   Wed, 04 Dec 2013 14:12:21 +0100

Available diffs

Superseded in lucid-security on 2014-01-02
Superseded in lucid-updates on 2014-01-02
Superseded in lucid-proposed on 2013-12-05
linux-ec2 (2.6.32-359.72) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-54.116
  * Release Tracking Bug
    - LP: #1250690

  [ Ubuntu: 2.6.32-54.116 ]

  * SAUCE: ACPI battery: fix compiler warning
    - LP: #1247154
  * KVM: unmap pages from the iommu when slots are removed
    - LP: #987569
    - CVE-2012-2121
  * uml: check length in exitcode_proc_write()
    - LP: #1249271
    - CVE-2013-4512
 -- Stefan Bader <email address hidden>   Wed, 13 Nov 2013 11:07:53 +0100

Available diffs

Superseded in lucid-updates on 2013-12-03
Superseded in lucid-security on 2013-12-03
Superseded in lucid-proposed on 2013-11-14
linux-ec2 (2.6.32-358.71) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-53.115
  * Release Tracking Bug
    - LP: #1243918

  [ Ubuntu: 2.6.32-53.115 ]

  * HID: provide a helper for validating hid reports
    - LP: #1220190
    - CVE-2013-2889
  * HID: zeroplus: validate output report details
    - LP: #1220190
    - CVE-2013-2889
  * HID: LG: validate HID output report details
    - LP: #1220190
    - CVE-2013-2893
  * cciss: fix info leak in cciss_ioctl32_passthru()
    - LP: #1188355
    - CVE-2013-2147
  * cpqarray: fix info leak in ida_locked_ioctl()
    - LP: #1188355
    - CVE-2013-2147
  * HID: add usage_index in struct hid_usage.
    - LP: #1220205
    - CVE-CVE-2013-2897
  * HID: validate feature and input report details
    - LP: #1220205
    - CVE-2013-2897
  * dm snapshot: fix data corruption
    - LP: #1241769
    - CVE-2013-4299
 -- Stefan Bader <email address hidden>   Thu, 24 Oct 2013 09:00:55 +0100

Available diffs

Superseded in lucid-security on 2013-11-08
Superseded in lucid-updates on 2013-11-08
Superseded in lucid-proposed on 2013-10-24
linux-ec2 (2.6.32-357.70) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-52.114
  * Release Tracking Bug
    - LP: #1224214

  [ Ubuntu: 2.6.32-52.114 ]

  * HID: pantherlord: validate output report details
    - LP: #1220196
    - CVE-2013-2892
  * HID: validate HID report id size
    - LP: #1220185
    - CVE-2013-2888
  * ipv6: remove max_addresses check from ipv6_create_tempaddr
    - LP: #1143800
    - CVE-2013-0343
 -- Stefan Bader <email address hidden>   Thu, 12 Sep 2013 11:48:17 +0200

Available diffs

Superseded in lucid-security on 2013-09-29
Superseded in lucid-updates on 2013-09-29
Superseded in lucid-proposed on 2013-09-12
linux-ec2 (2.6.32-356.69) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-51.113
  * Release Tracking Bug
    - LP: #1215239

  [ Ubuntu: 2.6.32-51.113 ]

  * remove debian/changelog from git
  * [Packaging] supply perf with appropriate prefix to ensure use of local
    config
    - LP: #1206200
    - CVE-2013-1060
  * Start new release
  * Revert "x86, ptrace: fix build breakage with gcc 4.7"
    - LP: #1199154
  * ipv6: call udp_push_pending_frames when uncorking a socket with AF_INET
    pending data
    - LP: #1205070
    - CVE-2013-4162
  * sctp: deal with multiple COOKIE_ECHO chunks
    - LP: #1194445
    - CVE-2013-2206
  * sctp: Use correct sideffect command in duplicate cookie handling
    - LP: #1194445
    - CVE-2013-2206
  * KVM: Validate userspace_addr of memslot when registered
    - LP: #1191918
    - CVE-2013-1943
  * KVM: add missing void __user * cast to access_ok() call
    - LP: #1191918
    - CVE-2013-1943
 -- Stefan Bader <email address hidden>   Mon, 26 Aug 2013 16:33:40 +0200

Available diffs

Superseded in lucid-security on 2013-09-06
Superseded in lucid-updates on 2013-09-06
Superseded in lucid-proposed on 2013-08-26
linux-ec2 (2.6.32-355.68) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-50.112
  * Release Tracking Bug
    - LP: #1199600

  [ Ubuntu: 2.6.32-50.112 ]

  * block: do not pass disk names as format strings
    - LP: #1189832
    - CVE-2013-2851
  * drivers/cdrom/cdrom.c: use kzalloc() for failing hardware
    - LP: #1191463
    - CVE-2013-2164
  * ipv6: ip6_sk_dst_check() must not assume ipv6 dst
    - LP: #1198293
    - CVE-2013-2232
  * af_key: fix info leaks in notify messages
    - LP: #1198294
    - CVE-2013-2234
  * af_key: initialize satype in key_notify_policy_flush()
    - LP: #1198296
    - CVE-2013-2237
 -- Stefan Bader <email address hidden>   Wed, 10 Jul 2013 12:39:45 +0200

Available diffs

Superseded in lucid-security on 2013-07-29
Superseded in lucid-updates on 2013-07-29
Superseded in lucid-proposed on 2013-07-10
linux-ec2 (2.6.32-354.67) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-49.111
  * SAUCE: ec2: Backport x86/mm: Check if PUD is large when validating a
    kernel address
    - LP: #1193044
  * SAUCE: ec2: Backport x86, ioapic: initialize nr_ioapic_registers early
    in mp_register_ioapic()
    - LP: #1193044
  * Release Tracking Bug
    - LP: #1193202

  [ Ubuntu: 2.6.32-49.111 ]

  * Revert "pcdp: use early_ioremap/early_iounmap to access pcdp table"
    - LP: #1193044
  * Revert "block: improve queue_should_plug() by looking at IO depths"
    - LP: #1193044
  * kernel/signal.c: stop info leak via the tkill and the tgkill syscalls
    - LP: #1187732
    - CVE-2013-2141
  * b43: stop format string leaking into error msgs
    - LP: #1189833
    - CVE-2013-2852
  * 2.6.32.y: timekeeping: Fix nohz issue with commit
    61b76840ddee647c0c223365378c3f394355b7d7
    - LP: #1193044
  * clockevents: Don't allow dummy broadcast timers
    - LP: #1193044
  * posix-cpu-timers: Fix nanosleep task_struct leak
    - LP: #1193044
  * timer: Don't reinitialize the cpu base lock during CPU_UP_PREPARE
    - LP: #1193044
  * tick: Cleanup NOHZ per cpu data on cpu down
    - LP: #1193044
  * kbuild: Fix gcc -x syntax
    - LP: #1193044
  * gen_init_cpio: avoid stack overflow when expanding
    - LP: #1193044
  * coredump: prevent double-free on an error path in core dumper
    - LP: #1193044
  * kernel/sys.c: call disable_nonboot_cpus() in kernel_restart()
    - LP: #1193044
  * ring-buffer: Fix race between integrity check and readers
    - LP: #1193044
  * genalloc: stop crashing the system when destroying a pool
    - LP: #1193044
  * kernel/resource.c: fix stack overflow in __reserve_region_with_split()
    - LP: #1193044
  * Driver core: treat unregistered bus_types as having no devices
    - LP: #1193044
  * cgroup: remove incorrect dget/dput() pair in cgroup_create_dir()
    - LP: #1193044
  * Fix a dead loop in async_synchronize_full()
    - LP: #1193044
  * tracing: Don't call page_to_pfn() if page is NULL
    - LP: #1193044
  * tracing: Fix double free when function profile init failed
    - LP: #1193044
  * mm: Fix PageHead when !CONFIG_PAGEFLAGS_EXTENDED
    - LP: #1193044
  * mm: bugfix: set current->reclaim_state to NULL while returning from
    kswapd()
    - LP: #1193044
  * mm: fix invalidate_complete_page2() lock ordering
    - LP: #1193044
  * mempolicy: fix a race in shared_policy_replace()
    - LP: #1193044
  * ALSA: hda - More ALC663 fixes and support of compatible chips
    - LP: #1193044
  * ALSA: hda - Add a pin-fix for FSC Amilo Pi1505
    - LP: #1193044
  * ALSA: seq: Fix missing error handling in snd_seq_timer_open()
    - LP: #1193044
  * ALSA: ac97 - Fix missing NULL check in snd_ac97_cvol_new()
    - LP: #1193044
  * x86, ioapic: initialize nr_ioapic_registers early in
    mp_register_ioapic()
    - LP: #1193044
  * x86: Don't use the EFI reboot method by default
    - LP: #1193044
  * x86, random: make ARCH_RANDOM prompt if EMBEDDED, not EXPERT
    - LP: #1193044
  * x86/mm: Check if PUD is large when validating a kernel address
    - LP: #1193044
  * x86, mm, paravirt: Fix vmalloc_fault oops during lazy MMU updates
    - LP: #1193044
  * xen/bootup: allow read_tscp call for Xen PV guests.
    - LP: #1193044
  * xen/bootup: allow {read|write}_cr8 pvops call.
    - LP: #1193044
  * KVM: x86: relax MSR_KVM_SYSTEM_TIME alignment check
    - LP: #1193044
  * KVM: x86: invalid opcode oops on SET_SREGS with OSXSAVE bit set
    (CVE-2012-4461)
    - LP: #1193044
  * MCE: Fix vm86 handling for 32bit mce handler
    - LP: #1193044
  * ACPI / cpuidle: Fix NULL pointer issues when cpuidle is disabled
    - LP: #1193044
  * alpha: Add irongate_io to PCI bus resources
    - LP: #1193044
  * PARISC: fix user-triggerable panic on parisc
    - LP: #1193044
  * serial: 8250, increase PASS_LIMIT
    - LP: #1193044
  * drivers/char/ipmi: memcpy, need additional 2 bytes to avoid memory
    overflow
    - LP: #1193044
  * w1: fix oops when w1_search is called from netlink connector
    - LP: #1193044
  * staging: comedi: ni_labpc: correct differential channel sequence for AI
    commands
    - LP: #1193044
  * staging: comedi: ni_labpc: set up command4 register *after* command3
    - LP: #1193044
  * staging: comedi: comedi_test: fix race when cancelling command
    - LP: #1193044
  * staging: comedi: fix memory leak for saved channel list
    - LP: #1193044
  * staging: comedi: s626: don't dereference insn->data
    - LP: #1193044
  * staging: comedi: jr3_pci: fix iomem dereference
    - LP: #1193044
  * staging: comedi: don't dereference user memory for INSN_INTTRIG
    - LP: #1193044
  * staging: comedi: check s->async for poll(), read() and write()
    - LP: #1193044
  * staging: comedi: das08: Correct AO output for das08jr-16-ao
    - LP: #1193044
  * staging: vt6656: [BUG] out of bound array reference in RFbSetPower.
    - LP: #1193044
  * libata: fix Null pointer dereference on disk error
    - LP: #1193044
  * scsi: Silence unnecessary warnings about ioctl to partition
    - LP: #1193044
  * scsi: use __uX types for headers exported to user space
    - LP: #1193044
  * fix crash in scsi_dispatch_cmd()
    - LP: #1193044
  * SCSI: bnx2i: Fixed NULL ptr deference for 1G bnx2 Linux iSCSI offload
    - LP: #1193044
  * crypto: cryptd - disable softirqs in cryptd_queue_worker to prevent
    data corruption
    - LP: #1193044
  * xfrm_user: return error pointer instead of NULL #2
    - LP: #1193044
  * r8169: correct settings of rtl8102e.
    - LP: #1193044
  * r8169: remove the obsolete and incorrect AMD workaround
    - LP: #1193044
  * r8169: Add support for D-Link 530T rev C1 (Kernel Bug 38862)
    - LP: #1193044
  * r8169: incorrect identifier for a 8168dp
    - LP: #1193044
  * b43legacy: Fix crash on unload when firmware not available
    - LP: #1193044
  * tg3: Avoid null pointer dereference in tg3_interrupt in netconsole mode
    - LP: #1193044
  * IPoIB: Fix use-after-free of multicast object
    - LP: #1193044
  * telephony: ijx: buffer overflow in ixj_write_cid()
    - LP: #1193044
  * Bluetooth: HCI - Fix info leak in getsockopt(HCI_FILTER)
    - LP: #1193044
  * xhci: Make handover code more robust
    - LP: #1193044
  * USB: whiteheat: fix memory leak in error path
    - LP: #1193044
  * USB: serial: Fix memory leak in sierra_release()
    - LP: #1193044
  * USB: mos7840: fix urb leak at release
    - LP: #1193044
  * USB: mos7840: fix port-device leak in error path
    - LP: #1193044
  * USB: garmin_gps: fix memory leak on disconnect
    - LP: #1193044
  * USB: serial: ftdi_sio: Handle the old_termios == 0 case e.g.
    uart_resume_port()
    - LP: #1193044
  * USB: ftdi_sio: Quiet sparse noise about using plain integer was NULL
    pointer
    - LP: #1193044
  * epoll: prevent missed events on EPOLL_CTL_MOD
    - LP: #1193044
  * fs/fscache/stats.c: fix memory leak
    - LP: #1193044
  * sysfs: sysfs_pathname/sysfs_add_one: Use strlcat() instead of strcat()
    - LP: #1193044
  * jbd: Delay discarding buffers in journal_unmap_buffer
    - LP: #1193044
  * jbd: Fix assertion failure in commit code due to lacking transaction
    credits
    - LP: #1193044
  * jbd: Fix lock ordering bug in journal_unmap_buffer()
    - LP: #1193044
  * ext4: Fix fs corruption when make_indexed_dir() fails
    - LP: #1193044
  * ext4: don't dereference null pointer when make_indexed_dir() fails
    - LP: #1193044
  * ext4: fix memory leak in ext4_xattr_set_acl()'s error path
    - LP: #1193044
  * ext4: online defrag is not supported for journaled files
    - LP: #1193044
  * ext4: always set i_op in ext4_mknod()
    - LP: #1193044
  * ext4: fix fdatasync() for files with only i_size changes
    - LP: #1193044
  * ext4: lock i_mutex when truncating orphan inodes
    - LP: #1193044
  * ext4: fix race in ext4_mb_add_n_trim()
    - LP: #1193044
  * ext4: limit group search loop for non-extent files
    - LP: #1193044
  * CVE-2012-4508 kernel: ext4: AIO vs fallocate stale data exposure
    - LP: #1193044
    - CVE-2012-4508 kernel: ext4: AIO vs fallocate stale data exposure
  * ext4: make orphan functions be no-op in no-journal mode
    - LP: #1193044
  * ext4: avoid hang when mounting non-journal filesystems with orphan list
    - LP: #1193044
  * udf: fix memory leak while allocating blocks during write
    - LP: #1193044
  * udf: Fix bitmap overflow on large filesystems with small block size
    - LP: #1193044
  * fs/cifs/cifs_dfs_ref.c: fix potential memory leakage
    - LP: #1193044
  * fat: Fix stat->f_namelen
    - LP: #1193044
  * hfsplus: fix potential overflow in hfsplus_file_truncate()
    - LP: #1193044
  * btrfs: use rcu_barrier() to wait for bdev puts at unmount
    - LP: #1193044
  * kernel panic when mount NFSv4
    - LP: #1193044
  * nfsd4: fix oops on unusual readlike compound
    - LP: #1193044
  * net/core: Fix potential memory leak in dev_set_alias()
    - LP: #1193044
  * net: reduce net_rx_action() latency to 2 HZ
    - LP: #1193044
  * softirq: reduce latencies
    - LP: #1193044
  * af_packet: remove BUG statement in tpacket_destruct_skb
    - LP: #1193044
  * bridge: set priority of STP packets
    - LP: #1193044
  * bonding: Fix slave selection bug.
    - LP: #1193044
  * ipv4: check rt_genid in dst_check
    - LP: #1193044
  * net_sched: gact: Fix potential panic in tcf_gact().
    - LP: #1193044
  * net: sched: integer overflow fix
    - LP: #1193044
  * net: prevent setting ttl=0 via IP_TTL
    - LP: #1193044
  * net: guard tcp_set_keepalive() to tcp sockets
    - LP: #1193044
  * inet: add RCU protection to inet->opt
    - LP: #1193044
  * tcp: allow splice() to build full TSO packets
    - LP: #1193044
  * tcp: fix MSG_SENDPAGE_NOTLAST logic
    - LP: #1193044
  * tcp: preserve ACK clocking in TSO
    - LP: #1193044
  * unix: fix a race condition in unix_release()
    - LP: #1193044
  * sctp: fix memory leak in sctp_datamsg_from_user() when copy from user
    space fails
    - LP: #1193044
  * net: sctp: sctp_setsockopt_auth_key: use kzfree instead of kfree
    - LP: #1193044
  * net: sctp: sctp_endpoint_free: zero out secret key data
    - LP: #1193044
  * net: sctp: sctp_auth_key_put: use kzfree instead of kfree
    - LP: #1193044
  * netfilter: nf_ct_ipv4: packets with wrong ihl are invalid
    - LP: #1193044
  * ipvs: allow transmit of GRO aggregated skbs
    - LP: #1193044
  * ipvs: IPv6 MTU checking cleanup and bugfix
    - LP: #1193044
  * isdnloop: fix and simplify isdnloop_init()
    - LP: #1193044
  * mpt2sas: Send default descriptor for RAID pass through in mpt2ctl
    - LP: #1193044
  * x86, ptrace: fix build breakage with gcc 4.7
    - LP: #1193044
  * Linux 2.6.32.61
    - LP: #1193044
 -- Stefan Bader <email address hidden>   Wed, 19 Jun 2013 09:57:14 +0200

Available diffs

Superseded in lucid-security on 2013-07-03
Superseded in lucid-updates on 2013-07-03
Superseded in lucid-proposed on 2013-06-21
linux-ec2 (2.6.32-353.66) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-48.110
  * Release Tracking Bug
    - LP: #1186479

  [ Ubuntu: 2.6.32-48.110 ]

  * (config) Import Xen specific config options from ec2
    - LP: #1177431
  * SAUCE: xen: Send spinlock IPI to all waiters
    - LP: #1011792, #1177431
  * ax25: fix info leak via msg_name in ax25_recvmsg()
    - LP: #1172366
    - CVE-2013-3223
  * Bluetooth: fix possible info leak in bt_sock_recvmsg()
    - LP: #1172368
    - CVE-2013-3224
  * tipc: fix info leaks via msg_name in recv_msg/recv_stream
    - LP: #1172403
    - CVE-2013-3235
  * rose: fix info leak via msg_name in rose_recvmsg()
    - LP: #1172394
    - CVE-2013-3234
  * Bluetooth: RFCOMM - Fix missing msg_namelen update in
    rfcomm_sock_recvmsg()
    - LP: #1172369
    - CVE-2013-3225
  * atm: update msg_namelen in vcc_recvmsg()
    - LP: #1172365
    - CVE-2013-3222
  * KVM: Fix bounds checking in ioapic indirect register reads
    (CVE-2013-1798)
    - LP: #1158262
    - CVE-2013-1798
  * llc: Fix missing msg_namelen update in llc_ui_recvmsg()
    - LP: #1172385
    - CVE-2013-3231
  * netrom: fix info leak via msg_name in nr_recvmsg()
    - LP: #1172386
    - CVE-2013-3232
  * irda: Fix missing msg_namelen update in irda_recvmsg_dgram()
    - LP: #1172380
    - CVE-2013-3228
  * iucv: Fix missing msg_namelen update in iucv_sock_recvmsg()
    - LP: #1172381
    - CVE-2013-3229
 -- Stefan Bader <email address hidden>   Tue, 04 Jun 2013 10:12:05 +0200

Available diffs

Superseded in lucid-updates on 2013-06-13
Superseded in lucid-security on 2013-06-13
Superseded in lucid-proposed on 2013-06-04
linux-ec2 (2.6.32-352.65) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-47.109
  * Release Tracking Bug
    - LP: #1177308

  [ Ubuntu: 2.6.32-47.109 ]

  * [packaging] Bump ABI for every new release
  * fs/compat_ioctl.c: VIDEO_SET_SPU_PALETTE missing error check
    - LP: #1167061
    - CVE-2013-1928
  * dcbnl: fix various netlink info leaks
    - LP: #1158965
    - CVE-2013-2634
  * USB: cdc-wdm: fix buffer overflow
    - LP: #1156784
    - CVE-2013-1860
  * isofs: avoid info leak on export
    - LP: #1156774
    - CVE-2012-6549
  * xfrm_user: return error pointer instead of NULL
    - LP: #1155026
    - CVE-2013-1826
 -- Stefan Bader <email address hidden>   Tue, 07 May 2013 15:39:39 +0200

Available diffs

Superseded in lucid-security on 2013-05-16
Superseded in lucid-updates on 2013-05-16
Superseded in lucid-proposed on 2013-05-07
linux-ec2 (2.6.32-351.64) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-46.108
  * Release Tracking Bug
    - LP: #1168185

  [ Ubuntu: 2.6.32-46.108 ]

  * SAUCE: (no-up) apparmor: Fix quieting of audit messages for network
    mediation
    - LP: #1163259
  * llc: fix info leak via getsockname()
    - LP: #1156743
    - CVE-2012-6542
  * Bluetooth: L2CAP - Fix info leak via getsockname()
    - LP: #1156751
    - CVE-2012-6544
  * Bluetooth: HCI - Fix info leak in getsockopt(HCI_FILTER)
    - LP: #1156751
    - CVE-2012-6544
  * Bluetooth: RFCOMM - Fix info leak via getsockname()
    - LP: #1156757
    - CVE-2012-6545
  * Bluetooth: RFCOMM - Fix info leak in ioctl(RFCOMMGETDEVLIST)
    - LP: #1156757
    - CVE-2012-6545
  * atm: fix info leak via getsockname()
    - LP: #1156759
    - CVE-2012-6546
  * atm: fix info leak in getsockopt(SO_ATMPVC)
    - LP: #1156759
    - CVE-2012-6546
  * udf: avoid info leak on export
    - LP: #1156768
    - CVE-2012-6548
  * KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME
    (CVE-2013-1796)
    - LP: #1158254
    - CVE-2013-1796
  * Bluetooth: Fix incorrect strncpy() in hidp_setup_hid()
    - LP: #1134503
    - CVE-2013-0349
  * USB: io_ti: Fix NULL dereference in chase_port()
    - LP: #1143817
    - CVE-2013-1774
  * x86/xen: don't assume %ds is usable in xen_iret for 32-bit PVOPS.
    - LP: #1143796
    - CVE-2013-0228
 -- Stefan Bader <email address hidden>   Fri, 12 Apr 2013 10:12:13 +0200

Available diffs

Superseded in lucid-security on 2013-04-24
Superseded in lucid-updates on 2013-04-24
Superseded in lucid-proposed on 2013-04-15
linux-ec2 (2.6.32-351.63) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-46.107
  * Release Tracking Bug
    - LP: #1159191

  [ Ubuntu: 2.6.32-46.107 ]

  * SAUCE: signal: Fix use of missing sa_restorer field
    - LP: #1153813
    - CVE-2013-0914
  * ipvs: fix info leak in getsockopt(IP_VS_SO_GET_TIMEOUT)
    - LP: #1156732
    - CVE-2012-6540
  * kernel/signal.c: use __ARCH_HAS_SA_RESTORER instead of SA_RESTORER
    - LP: #1153813
    - CVE-2013-0914

  [ Ubuntu: 2.6.32-46.106 ]

  * tmpfs: fix use-after-free of mempolicy object
    - LP: #1143815
    - CVE-2013-1767
  * keys: fix race with concurrent install_user_keyrings()
    - LP: #1152788
    - CVE-2013-1792
  * signal: always clear sa_restorer on execve
    - LP: #1153813
    - CVE-2013-0914
  * Fix ptrace when task is in task_is_stopped(), state
    - LP: #1145234
  * xfrm_user: fix info leak in copy_to_user_tmpl()
    - LP: #1156716
    - CVE-2012-6537
  * xfrm_user: fix info leak in copy_to_user_policy()
    - LP: #1156716
    - CVE-2012-6537
  * xfrm_user: fix info leak in copy_to_user_state()
    - LP: #1156716
    - CVE-2012-6537
  * net: fix info leak in compat dev_ifconf()
    - LP: #1156728
    - CVE-2012-6539
 -- Stefan Bader <email address hidden>   Mon, 25 Mar 2013 14:38:06 +0100

Available diffs

Superseded in lucid-security on 2013-04-09
Superseded in lucid-updates on 2013-04-09
Superseded in lucid-proposed on 2013-03-25
linux-ec2 (2.6.32-351.62) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-46.105
  * XEN: fix pmd_present for split_huge_page and PROT_NONE with THP
    - LP: #1130943
    - CVE-2013-0309
  * (buildenv) arch/x86/kernel/msr.c is not deviated
  * Release Tracking Bug
    - LP: #1137197

  [ Ubuntu: 2.6.32-46.105 ]

  * x86/msr: Add capabilities check
    - LP: #1123049
    - CVE-2013-0268
  * mm: thp: fix pmd_present for split_huge_page and PROT_NONE with THP
    - LP: #1130943
    - CVE-2013-0309
  * NLS: improve UTF8 -> UTF16 string conversion routine
    - LP: #1134523
    - CVE-2013-1773
 -- Stefan Bader <email address hidden>   Fri, 01 Mar 2013 12:19:21 +0100

Available diffs

Superseded in lucid-security on 2013-03-22
Superseded in lucid-updates on 2013-03-22
Superseded in lucid-proposed on 2013-03-04
linux-ec2 (2.6.32-350.61) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.104
  * Release Tracking Bug
    - LP: #1119764

  [ Ubuntu: 2.6.32-45.104 ]

  * ptrace: ptrace_resume() shouldn't wake up !TASK_TRACED thread
    - LP: #1129192
    - CVE-2013-0871
  * ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up()
    - LP: #1129192
    - CVE-2013-0871
  * ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL
    - LP: #1129192
    - CVE-2013-0871
  * wake_up_process() should be never used to wakeup a TASK_STOPPED/TRACED
    task
    - LP: #1129192
    - CVE-2013-0871
 -- Stefan Bader <email address hidden>   Wed, 20 Feb 2013 09:22:04 +0100

Available diffs

Superseded in lucid-security on 2013-02-21
Superseded in lucid-updates on 2013-02-21
Superseded in lucid-proposed on 2013-02-20
linux-ec2 (2.6.32-350.60) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.103
  * Release Tracking Bug
    - LP: #1119764

  [ Ubuntu: 2.6.32-45.103 ]

  * [debian] Remove dangling symlink from headers package
    - LP: #1112442
  * xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS
    guests.
    - LP: #1102374
    - CVE-2013-0190
 -- Stefan Bader <email address hidden>   Tue, 12 Feb 2013 14:47:51 +0100

Available diffs

Superseded in lucid-security on 2013-02-18
Superseded in lucid-updates on 2013-02-18
Deleted in lucid-proposed on 2013-02-19 (Reason: moved to -updates)
linux-ec2 (2.6.32-350.59) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.102
  * Release Tracking Bug
    - LP: #1095803

  [ Ubuntu: 2.6.32-45.102 ]

  * SAUCE: exec: do not leave bprm->interp on stack
    - LP: #1068888
    - CVE-2012-4530
  * exec: use -ELOOP for max recursion depth
    - LP: #1068888
    - CVE-2012-4530
 -- Stefan Bader <email address hidden>   Mon, 07 Jan 2013 11:34:09 +0100

Available diffs

Superseded in lucid-security on 2013-01-10
Superseded in lucid-updates on 2013-01-10
Deleted in lucid-proposed on 2013-01-11 (Reason: moved to -updates)
linux-ec2 (2.6.32-350.58) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.101
  * Release Tracking Bug
    - LP: #1086183

  [ Ubuntu: 2.6.32-45.101 ]

  * ipv6: discard overlapping fragment
    - LP: #1079859
    - CVE-2012-4444
 -- Stefan Bader <email address hidden>   Wed, 05 Dec 2012 12:35:17 +0100

Available diffs

Superseded in lucid-security on 2012-12-13
Superseded in lucid-updates on 2012-12-13
Deleted in lucid-proposed on 2012-12-14 (Reason: moved to -updates)
linux-ec2 (2.6.32-350.57) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.100
  * Release Tracking Bug
    - LP: #1078882

  [ Ubuntu: 2.6.32-45.100 ]

  * eCryptfs: check for eCryptfs cipher support at mount
    - LP: #338914
  * net: fix divide by zero in tcp algorithm illinois
    - LP: #1077091
    - CVE-2012-4565
 -- Stefan Bader <email address hidden>   Thu, 15 Nov 2012 11:23:05 +0100
Superseded in lucid-updates on 2012-12-04
Deleted in lucid-proposed on 2012-12-05 (Reason: moved to -updates)
linux-ec2 (2.6.32-350.56) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-45.99
  * SAUCE: XEN: Pull in RDRAND changes
    - LP: #1064480
  * SAUCE: XEN: Backport pgd_lock fixes
    - LP: #1064480
  * Release Tracking Bug
    - LP: #1068278

  [ Ubuntu: 2.6.32-45.99 ]

  * SAUCE: omnibook: Expose PWD for standalone builds
    - LP: #505420
  * Revert "xfs: Fix possible memory corruption in xfs_readlink,
    CVE-2011-4077"
    - LP: #1064480
  * UBUNTU SAUCE: apparmor: fix IRQ stack overflow
    - LP: #1056078
  * net/9p: fix virtio transport to correctly update status on connect
    - LP: #676823
  * 9p: Fix the kernel crash on a failed mount
    - LP: #676823
  * netxen: support for GbE port settings
    - LP: #1064480
  * Fix sparc build with newer tools.
    - LP: #1064480
  * powerpc/pmac: Fix SMP kernels on pre-core99 UP machines
    - LP: #1064480
  * Bluetooth: btusb: fix bInterval for high/super speed isochronous
    endpoints
    - LP: #1064480
  * fix pgd_lock deadlock
    - LP: #1064480
  * futex: Fix uninterruptible loop due to gate_area
    - LP: #1064480
  * time: Improve sanity checking of timekeeping inputs
    - LP: #1064480
  * time: Avoid making adjustments if we haven't accumulated anything
    - LP: #1064480
  * time: Move ktime_t overflow checking into timespec_valid_strict
    - LP: #1064480
  * drm/i915: Attempt to fix watermark setup on 85x (v2)
    - LP: #1064480
  * ioat2: kill pending flag
    - LP: #1064480
  * usb: Fix deadlock in hid_reset when Dell iDRAC is reset
    - LP: #1064480
  * oprofile: use KM_NMI slot for kmap_atomic
    - LP: #1064480
  * tty_audit: fix tty_audit_add_data live lock on audit disabled
    - LP: #1064480
  * bonding: 802.3ad - fix agg_device_up
    - LP: #1064480
  * usbnet: increase URB reference count before usb_unlink_urb
    - LP: #1064480
  * usbnet: don't clear urb->dev in tx_complete
    - LP: #1064480
  * sched: Fix signed unsigned comparison in check_preempt_tick()
    - LP: #1064480
  * x86/PCI: amd: factor out MMCONFIG discovery
    - LP: #1064480
  * PNP: fix "work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB"
    - LP: #1064480
  * KVM: x86: disallow multiple KVM_CREATE_IRQCHIP
    - LP: #1064480
  * KVM: ia64: fix build due to typo
    - LP: #1064480
  * xfs: Fix possible memory corruption in xfs_readlink
    - LP: #1064480
  * xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink()
    - LP: #1064480
  * dl2k: use standard #defines from mii.h.
    - LP: #1064480
  * tcp: Don't change unlocked socket state in tcp_v4_err().
    - LP: #1064480
  * x86: Derandom delay_tsc for 64 bit
    - LP: #1064480
  * ipsec: be careful of non existing mac headers
    - LP: #1064480
  * block, sx8: fix pointer math issue getting fw version
    - LP: #1064480
  * nilfs2: fix NULL pointer dereference in nilfs_load_super_block()
    - LP: #1064480
  * USB: ftdi_sio: fix problem when the manufacture is a NULL string
    - LP: #1064480
  * ntp: Fix integer overflow when setting time
    - LP: #1064480
  * SUNRPC: We must not use list_for_each_entry_safe() in rpc_wake_up()
    - LP: #1064480
  * ext4: check for zero length extent
    - LP: #1064480
  * xfs: Fix oops on IO error during xlog_recover_process_iunlinks()
    - LP: #1064480
  * nfsd: don't allow zero length strings in cache_parse()
    - LP: #1064480
  * sched/x86: Fix overflow in cyc2ns_offset
    - LP: #1064480
  * Bluetooth: add NULL pointer check in HCI
    - LP: #1064480
  * Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close
    - LP: #1064480
  * sparc64: Fix bootup crash on sun4v.
    - LP: #1064480
  * video:uvesafb: Fix oops that uvesafb try to execute NX-protected page
    - LP: #1064480
  * USB: serial: fix race between probe and open
    - LP: #1064480
  * xhci: Don't write zeroed pointers to xHC registers.
    - LP: #1064480
  * xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI
    - LP: #1064480
  * crypto: sha512 - Fix byte counter overflow in SHA-512
    - LP: #1064480
  * PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs
    - LP: #1064480
  * phonet: Check input from user before allocating
    - LP: #1064480
  * netlink: fix races after skb queueing
    - LP: #1064480
  * net: fix a race in sock_queue_err_skb()
    - LP: #1064480
  * atl1: fix kernel panic in case of DMA errors
    - LP: #1064480
  * net/ethernet: ks8851_mll fix rx frame buffer overflow
    - LP: #1064480
  * net_sched: gred: Fix oops in gred_dump() in WRED mode
    - LP: #1064480
  * ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve
    - LP: #1064480
  * netem: fix possible skb leak
    - LP: #1064480
  * ALSA: echoaudio: Remove incorrect part of assertion
    - LP: #1064480
  * NFSv4: Revalidate uid/gid after open
    - LP: #1064480
  * ext3: Fix error handling on inode bitmap corruption
    - LP: #1064480
  * ext4: fix error handling on inode bitmap corruption
    - LP: #1064480
  * xhci: Reset reserved command ring TRBs on cleanup.
    - LP: #1064480
  * SCSI: fix scsi_wait_scan
    - LP: #1064480
  * powerpc: Fix kernel panic during kernel module load
    - LP: #1064480
  * fuse: fix stat call on 32 bit platforms
    - LP: #1064480
  * udf: Improve table length check to avoid possible overflow
    - LP: #1064480
  * stable: Allow merging of backports for serious user-visible performance
    issues
    - LP: #1064480
  * eCryptfs: Properly check for O_RDONLY flag before doing privileged open
    - LP: #1064480
  * USB: cdc-wdm: fix lockup on error in wdm_read
    - LP: #1064480
  * ntp: Fix STA_INS/DEL clearing bug
    - LP: #1064480
  * MIPS: Properly align the .data..init_task section.
    - LP: #1064480
  * powerpc/ftrace: Fix assembly trampoline register usage
    - LP: #1064480
  * powerpc: Add "memory" attribute for mfmsr()
    - LP: #1064480
  * SCSI: libsas: continue revalidation
    - LP: #1064480
  * SCSI: libsas: fix sas_discover_devices return code handling
    - LP: #1064480
  * SCSI: fix eh wakeup (scsi_schedule_eh vs scsi_restart_operations)
    - LP: #1064480
  * SCSI: Avoid dangling pointer in scsi_requeue_command()
    - LP: #1064480
  * usbdevfs: Correct amount of data copied to user in processcompl_compat
    - LP: #1064480
  * locks: fix checking of fcntl_setlease argument
    - LP: #1064480
  * ACPI/AC: prevent OOPS on some boxes due to missing check
    power_supply_register() return value check
    - LP: #1064480
  * Btrfs: call the ordered free operation without any locks held
    - LP: #1064480
  * nfsd4: our filesystems are normally case sensitive
    - LP: #1064480
  * ext4: don't let i_reserved_meta_blocks go negative
    - LP: #1064480
  * sctp: Fix list corruption resulting from freeing an association on a
    list
    - LP: #1064480
  * cipso: don't follow a NULL pointer when setsockopt() is called
    - LP: #1064480
  * wanmain: comparing array with NULL
    - LP: #1064480
  * USB: kaweth.c: use GFP_ATOMIC under spin_lock
    - LP: #1064480
  * tcp: perform DMA to userspace only if there is a task waiting for it
    - LP: #1064480
  * net/tun: fix ioctl() based info leaks
    - LP: #1064480
  * USB: echi-dbgp: increase the controller wait time to come out of halt.
    - LP: #1064480
  * ALSA: mpu401: Fix missing initialization of irq field
    - LP: #1064480
  * futex: Test for pi_mutex on fault in futex_wait_requeue_pi()
    - LP: #1064480
  * futex: Fix bug in WARN_ON for NULL q.pi_state
    - LP: #1064480
  * futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi()
    - LP: #1064480
  * pcdp: use early_ioremap/early_iounmap to access pcdp table
    - LP: #1064480
  * mm: mmu_notifier: fix freed page still mapped in secondary MMU
    - LP: #1064480
  * fuse: verify all ioctl retry iov elements
    - LP: #1064480
  * xhci: Increase reset timeout for Renesas 720201 host.
    - LP: #1064480
  * usb: serial: mos7840: Fixup mos7840_chars_in_buffer()
    - LP: #1064480
  * ALSA: hda - fix Copyright debug message
    - LP: #1064480
  * vfs: missed source of ->f_pos races
    - LP: #1064480
  * NFSv3: Ensure that do_proc_get_root() reports errors correctly
    - LP: #1064480
  * NFS: Alias the nfs module to nfs4
    - LP: #1064480
  * svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping
    - LP: #1064480
  * svcrpc: sends on closed socket should stop immediately
    - LP: #1064480
  * cciss: fix incorrect scsi status reporting
    - LP: #1064480
  * USB: CDC ACM: Fix NULL pointer dereference
    - LP: #1064480
  * Remove user-triggerable BUG from mpol_to_str
    - LP: #1064480
  * udf: Fix data corruption for files in ICB
    - LP: #1064480
  * ext3: Fix fdatasync() for files with only i_size changes
    - LP: #1064480
  * PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts
    - LP: #1064480
  * dccp: check ccid before dereferencing
    - LP: #1064480
  * ia64: Add accept4() syscall
    - LP: #1064480
  * tcp: do_tcp_sendpages() must try to push data out on oom conditions
    - LP: #1064480
  * tcp: drop SYN+FIN messages
    - LP: #1064480
  * xen: correctly check for pending events when restoring irq flags
    - LP: #1064480
  * x86, amd, xen: Avoid NULL pointer paravirt references
    - LP: #1064480
  * x86, tls: Off by one limit check
    - LP: #1064480
  * sparc64: Eliminate obsolete __handle_softirq() function
    - LP: #1064480
  * udf: fix retun value on error path in udf_load_logicalvol
    - LP: #1064480
  * mtd: cafe_nand: fix an & vs | mistake
    - LP: #1064480
  * epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree()
    - LP: #1064480
  * epoll: ep_unregister_pollwait() can use the freed pwq->whead
    - LP: #1064480
  * epoll: limit paths
    - LP: #1064480
  * Don't limit non-nested epoll paths
    - LP: #1064480
  * epoll: clear the tfile_check_list on -ELOOP
    - LP: #1064480
  * random: Reorder struct entropy_store to remove padding on 64bits
    - LP: #1064480
  * random: update interface comments to reflect reality
    - LP: #1064480
  * random: simplify fips mode
    - LP: #1064480
  * x86, cpu: Add CPU flags for F16C and RDRND
    - LP: #1064480
  * x86, cpufeature: Update CPU feature RDRND to RDRAND
    - LP: #1064480
  * random: Add support for architectural random hooks
    - LP: #1064480
  * x86, random: Architectural inlines to get random integers with RDRAND
    - LP: #1064480
  * x86, random: Verify RDRAND functionality and allow it to be disabled
    - LP: #1064480
  * fix typo/thinko in get_random_bytes()
    - LP: #1064480
  * random: Use arch_get_random_int instead of cycle counter if avail
    - LP: #1064480
  * random: Use arch-specific RNG to initialize the entropy store
    - LP: #1064480
  * random: Adjust the number of loops when initializing
    - LP: #1064480
  * drivers/char/random.c: fix boot id uniqueness race
    - LP: #1064480
  * random: make 'add_interrupt_randomness()' do something sane
    - LP: #1064480
  * random: use lockless techniques in the interrupt path
    - LP: #1064480
  * random: create add_device_randomness() interface
    - LP: #1064480
  * random: use the arch-specific rng in xfer_secondary_pool
    - LP: #1064480
  * random: add new get_random_bytes_arch() function
    - LP: #1064480
  * random: mix in architectural randomness in extract_buf()
    - LP: #1064480
  * MAINTAINERS: Theodore Ts'o is taking over the random driver
    - LP: #1064480
  * usb: feed USB device information to the /dev/random driver
    - LP: #1064480
  * net: feed /dev/random with the MAC address when registering a device
    - LP: #1064480
  * random: remove rand_initialize_irq()
    - LP: #1064480
  * random: Add comment to random_initialize()
    - LP: #1064480
  * rtc: wm831x: Feed the write counter into device_add_randomness()
    - LP: #1064480
  * mfd: wm831x: Feed the device UUID into device_add_randomness()
    - LP: #1064480
  * dmi: Feed DMI table to /dev/random driver
    - LP: #1064480
  * Linux 2.6.32.60
    - LP: #1064480
 -- Stefan Bader <email address hidden>   Mon, 22 Oct 2012 15:21:02 +0200

Available diffs

Superseded in lucid-security on 2012-12-04
Superseded in lucid-updates on 2012-11-08
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-349.55) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Revert "SAUCE: EC2: Backport changes to limit GSO segments"
    - LP: #1037456
    - CVE-2012-3412
  * Rebased to Ubuntu-2.6.32-44.98
  * Release Tracking Bug
    - LP: #1056081

  [ Ubuntu: 2.6.32-44.98 ]

  * SAUCE: drm/vmwgfx: add MODULE_DEVICE_TABLE so vmwgfx loads at boot
    - LP: #1039157
  * Revert "sfc: Fix maximum number of TSO segments and minimum TX queue
    size"
    - LP: #1037456
    - CVE-2012-3412
  * Revert "sfc: Replace some literal constants with
    EFX_PAGE_SIZE/EFX_BUF_SIZE"
    - LP: #1037456
    - CVE-2012-3412
  * Revert "tcp: Apply device TSO segment limit earlier"
    - LP: #1037456
    - CVE-2012-3412
  * Revert "tcp: do not scale TSO segment size with reordering degree"
    - LP: #1037456
    - CVE-2012-3412
  * Revert "net: Allow driver to limit number of GSO segments per skb"
    - LP: #1037456
    - CVE-2012-3412
  * cred: copy_process() should clear child->replacement_session_keyring
    - LP: #1023535
    - CVE-2012-2745
  * KVM: Change irq routing table to use gsi indexed array
    - LP: #1016298
    - CVE-2012-2137
  * KVM: Fix buffer overflow in kvm_set_irq()
    - LP: #1016298
    - CVE-2012-2137
  * xen: just completely disable XSAVE
    - LP: #1044550
  * xen: Allow PV-OPS kernel to detect whether XSAVE is supported
    - LP: #1044550
  * sfc: Fix maximum number of TSO segments and minimum TX queue size
    - LP: #1037456
    - CVE-2012-3412
 -- Stefan Bader <email address hidden>   Fri, 28 Sep 2012 15:24:48 +0200

Available diffs

Superseded in lucid-security on 2012-10-04
Superseded in lucid-updates on 2012-10-04
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-348.54) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-43.97
  * SAUCE: EC2: Backport changes to limit GSO segments
    - LP: #1037456
    - CVE-2012-3412
  * Release Tracking Bug
    - LP: #1046656

  [ Ubuntu: 2.6.32-43.97 ]

  * rds: set correct msg_namelen
    - LP: #1031112
    - CVE-2012-3430
  * eCryptfs: Initialize empty lower files when opening them
    - LP: #911507
  * net: Allow driver to limit number of GSO segments per skb
    - LP: #1037456
    - CVE-2012-3412
  * tcp: do not scale TSO segment size with reordering degree
    - LP: #1037456
    - CVE-2012-3412
  * tcp: Apply device TSO segment limit earlier
    - LP: #1037456
    - CVE-2012-3412
  * sfc: Replace some literal constants with EFX_PAGE_SIZE/EFX_BUF_SIZE
    - LP: #1037456
    - CVE-2012-3412
  * sfc: Fix maximum number of TSO segments and minimum TX queue size
    - LP: #1037456
    - CVE-2012-3412
  * mm: Hold a file reference in madvise_remove
    - LP: #1042447
    - CVE-2012-3511
  * ulimit: raise default hard ulimit on number of files to 4096
    - LP: #663090
 -- Stefan Bader <email address hidden>   Fri, 07 Sep 2012 09:16:52 +0200

Available diffs

Superseded in lucid-security on 2012-09-18
Superseded in lucid-updates on 2012-09-18
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-347.53) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-42.96
  * Release Tracking Bug
    - LP: #1038971


  [ Ubuntu: 2.6.32-42.96 ]

  * SAUCE: rds_ib_send() -- prevent local pings triggering BUG_ON()
    - LP: #1016299
    - CVE-2012-2372
  * udf: Fortify loading of sparing table
    - LP: #1024497
    - CVE-2012-3400
  * udf: Avoid run away loop when partition table length is corrupted
    - LP: #1024497
    - CVE-2012-3400
  * eCryptfs: Gracefully refuse miscdev file ops on inherited/passed files
    - LP: #994247
  * eCryptfs: Copy up POSIX ACL and read-only flags from lower mount
    - LP: #1009207
  * drm: integer overflow in drm_mode_dirtyfb_ioctl()
    - LP: #917838
    - CVE-2012-0044
 -- Stefan Bader <email address hidden>   Mon, 20 Aug 2012 18:32:20 +0200

Available diffs

Superseded in lucid-security on 2012-09-06
Superseded in lucid-updates on 2012-09-06
Deleted in lucid-proposed on 2012-09-07 (Reason: moved to -updates)
linux-ec2 (2.6.32-347.52) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-42.95
  * Release Tracking Bug
    - LP: #1029177

  [ Ubuntu: 2.6.32-42.95 ]

  * hugetlb: fix resv_map leak in error path
    - LP: #1004621
    - CVE-2012-2390
  * mm: fix vma_resv_map() NULL pointer
    - LP: #1004621
    - CVE-2012-2390
  * net: sock: validate data_len before allocating skb in
    sock_alloc_send_pskb()
    - LP: #1006622
    - CVE-2012-2136
  * 2.6.32.x: ntp: Fix leap-second hrtimer livelock
    - LP: #1020285
  * 2.6.32.x: ntp: Correct TAI offset during leap second
    - LP: #1020285
  * 2.6.32.x: timekeeping: Fix CLOCK_MONOTONIC inconsistency during
    leapsecond
    - LP: #1020285
  * 2.6.32.x: time: Move common updates to a function
    - LP: #1020285
  * 2.6.32.x: hrtimer: Provide clock_was_set_delayed()
    - LP: #1020285
  * 2.6.32.x: timekeeping: Fix leapsecond triggered load spike issue
    - LP: #1020285
  * 2.6.32.x: timekeeping: Maintain ktime_t based offsets for hrtimers
    - LP: #1020285
  * 2.6.32.x: hrtimers: Move lock held region in hrtimer_interrupt()
    - LP: #1020285
  * 2.6.32.x: timekeeping: Provide hrtimer update function
    - LP: #1020285
  * 2.6.32.x: hrtimer: Update hrtimer base offsets each hrtimer_interrupt
    - LP: #1020285
  * 2.6.32.x: timekeeping: Add missing update call in timekeeping_resume()
    - LP: #1020285

  [ Ubuntu: 2.6.32-41.94 ]

  * fix ABI directory naming
 -- Stefan Bader <email address hidden>   Thu, 26 Jul 2012 18:38:08 +0200
Superseded in lucid-updates on 2012-08-10
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-346.51) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * SAUCE: Update spinlock handling code
    - LP: #929941
  * SAUCE: Use ticket locks for Xen 3.0.2+
    - LP: #929941
  * Rebased to Ubuntu-2.6.32-41.93
  * Release Tracking Bug
    - LP: #1021084

  [ Ubuntu: 2.6.32-41.93 ]

  * No change upload to fix .ddeb generation in the PPA.

  [ Ubuntu: 2.6.32-41.92 ]

  * drm/i915: Move Pineview CxSR and watermark code into update_wm hook.
    - LP: #1004707
  * drm/i915: Add CxSR support on Pineview DDR3
    - LP: #1004707
 -- Stefan Bader <email address hidden>   Mon, 25 Jun 2012 11:20:40 +0200

Available diffs

Superseded in lucid-security on 2012-08-10
Superseded in lucid-updates on 2012-07-23
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-345.50) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-41.91
  * Release Tracking Bug
    - LP: #1012812

  [ Ubuntu: 2.6.32-41.91 ]

  * SAUCE: async_populate_rootfs: fix build warnings
    - LP: #1003417
  * dl2k: Clean up rio_ioctl
    - CVE-2012-2313
  * hfsplus: Fix potential buffer overflows
    - CVE-2012-2319
 -- Stefan Bader <email address hidden>   Thu, 14 Jun 2012 19:50:34 +0200

Available diffs

Superseded in lucid-security on 2012-06-28
Superseded in lucid-updates on 2012-06-28
Deleted in lucid-proposed on 2012-06-29 (Reason: moved to -updates)
linux-ec2 (2.6.32-345.49) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-41.90
  * Release Tracking Bug
    - LP: #1003061

  [ Ubuntu: 2.6.32-41.90 ]

  * [Config] control.stub is an intermediate product not a dependancy
    - LP: #992414
  * [Config] perarch and indep tools builds need separate build directories
  * hugepages: fix use after free bug in "quota" handling
    - LP: #990368
    - CVE-2012-2133
 -- Stefan Bader <email address hidden>   Wed, 23 May 2012 15:34:49 +0200

Available diffs

Superseded in lucid-security on 2012-06-12
Superseded in lucid-updates on 2012-06-12
Deleted in lucid-proposed on 2012-06-13 (Reason: moved to -updates)
linux-ec2 (2.6.32-345.48) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-41.89
  * Release Tracking Bug
    - LP: #991770

  [ Ubuntu: 2.6.32-41.89 ]

  * SAUCE: (no-up) remove __initdata from vesafb_fix
    - LP: #969309
  * jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer
    - LP: #929781
    - CVE-2011-4086
  * fcaps: clear the same personality flags as suid when fcaps are used
    - LP: #987571
    - CVE-2012-2123
  * lucid security: fix compile error in commoncap.c
    - LP: #987571
    - CVE-2012-2123
  * KVM: Clean up error handling during VCPU creation
    - LP: #971685
    - CVE-2012-1601
  * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings
    - LP: #971685
    - CVE-2012-1601
 -- Stefan Bader <email address hidden>   Wed, 02 May 2012 12:14:39 +0200

Available diffs

Superseded in lucid-security on 2012-05-25
Superseded in lucid-updates on 2012-05-25
Deleted in lucid-proposed on 2012-05-26 (Reason: moved to -updates)
linux-ec2 (2.6.32-345.47) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-41.88
  * Release Tracking Bug
    - LP: #968780

  [ Ubuntu: 2.6.32-41.88 ]

  * [Config] restore build-% shortcut
  * SAUCE: ubuntu drivers: use UMH_WAIT_PROC consistently
    - LP: #963685
  * Revert "Revert "USB: xhci - fix unsafe macro definitions""
    - LP: #948139
  * Revert "Revert "USB: xhci - fix math in xhci_get_endpoint_interval()""
    - LP: #948139
  * Revert "Revert "xhci: Fix full speed bInterval encoding.""
    - LP: #948139
  * bsg: fix sysfs link remove warning
    - LP: #946928
  * hwmon: (f75375s) Fix bit shifting in f75375_write16
    - LP: #948139
  * lib: proportion: lower PROP_MAX_SHIFT to 32 on 64-bit kernel
    - LP: #948139
  * relay: prevent integer overflow in relay_open()
    - LP: #948139
  * mac80211: timeout a single frame in the rx reorder buffer
    - LP: #948139
  * kernel.h: fix wrong usage of __ratelimit()
    - LP: #948139
  * printk_ratelimited(): fix uninitialized spinlock
    - LP: #948139
  * hwmon: (f75375s) Fix automatic pwm mode setting for F75373 & F75375
    - LP: #948139
  * crypto: sha512 - Use binary and instead of modulus
    - LP: #948139
  * crypto: sha512 - Avoid stack bloat on i386
    - LP: #948139
  * crypto: sha512 - use standard ror64()
    - LP: #948139
  * SCSI: 3w-9xxx fix bug in sgl loading
    - LP: #948139
  * ARM: 7321/1: cache-v7: Disable preemption when reading CCSIDR
    - LP: #948139
  * ARM: 7325/1: fix v7 boot with lockdep enabled
    - LP: #948139
  * USB: Added Kamstrup VID/PIDs to cp210x serial driver.
    - LP: #948139
  * USB: Fix handoff when BIOS disables host PCI device.
    - LP: #948139
  * xhci: Fix encoding for HS bulk/control NAK rate.
    - LP: #948139
  * hdpvr: fix race conditon during start of streaming
    - LP: #948139
  * cdrom: use copy_to_user() without the underscores
    - LP: #948139
  * autofs: work around unhappy compat problem on x86-64
    - LP: #948139
  * Fix autofs compile without CONFIG_COMPAT
    - LP: #948139
  * compat: fix compile breakage on s390
    - LP: #948139
  * PM: Print a warning if firmware is requested when tasks are frozen
    - LP: #948139
  * firmware loader: allow builtin firmware load even if usermodehelper is
    disabled
    - LP: #948139
  * PM / Sleep: Fix freezer failures due to racy
    usermodehelper_is_disabled()
    - LP: #948139
  * PM / Sleep: Fix read_unlock_usermodehelper() call.
    - LP: #948139
  * Linux 2.6.32.58
    - LP: #948139
  * regset: Prevent null pointer reference on readonly regsets
    - LP: #949905
    - CVE-2012-1097
  * regset: Return -EFAULT, not -EIO, on host-side memory fault
    - LP: #949905
    - CVE-2012-1097
  * KVM: Remove ability to assign a device without iommu support
    - LP: #897812
    - CVE-2011-4347
  * eCryptfs: Copy up lower inode attrs after setting lower xattr
  * eCryptfs: Improve statfs reporting
    - LP: #885744
  * drm/i915: no lvds quirk for AOpen MP45
    - LP: #955078
  * drm/radeon/kms: fix MSI re-arm on rv370+
    - LP: #955078
  * Linux 2.6.32.58+drm33.24
    - LP: #955078
  * KVM: x86: extend "struct x86_emulate_ops" with "get_cpuid"
    - LP: #917842
    - CVE-2012-0045
  * KVM: x86: fix missing checks in syscall emulation
    - LP: #917842
    - CVE-2012-0045
  * eCryptfs: Clear ECRYPTFS_NEW_FILE flag during truncate
    - LP: #745836
  * compat: Re-add missing asm/compat.h include to fix compile breakage on
    s390
    - LP: #959252
  * IA64: Remove COMPAT_IA32 support
    - LP: #959252
  * writeback: fixups for !dirty_writeback_centisecs
    - LP: #959252
  * KEYS: Enable the compat keyctl wrapper on s390x
    - LP: #959252
  * cifs: fix dentry refcount leak when opening a FIFO on lookup
    - LP: #959252
  * net/usbnet: avoid recursive locking in usbnet_stop()
    - LP: #959252
  * watchdog: hpwdt: clean up set_memory_x call for 32 bit
    - LP: #959252
  * blkfront: Fix backtrace in del_gendisk
    - LP: #959252
  * Linux 2.6.32.59
    - LP: #959252
  * USB: EHCI: go back to using the system clock for QH unlinks
    - LP: #624510
  * kmod: fix resource leak in call_usermodehelper_pipe()
    - LP: #963685
  * kmod: add init function to usermodehelper
    - LP: #963685
  * usermodehelper: use UMH_WAIT_PROC consistently
    - LP: #963685
  * usermodehelper: introduce umh_complete(sub_info)
    - LP: #963685
  * usermodehelper: implement UMH_KILLABLE
    - LP: #963685
  * usermodehelper: kill umh_wait, renumber UMH_* constants
    - LP: #963685
  * usermodehelper: ____call_usermodehelper() doesn't need do_exit()
    - LP: #963685
  * kmod: introduce call_modprobe() helper
    - LP: #963685
  * kmod: make __request_module() killable
    - LP: #963685
 -- Stefan Bader <email address hidden>   Fri, 30 Mar 2012 13:34:20 +0200

Available diffs

Superseded in lucid-security on 2012-04-23
Superseded in lucid-updates on 2012-04-23
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-344.46) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-40.87
  * Release Tracking Bug
    - LP: #948277

  [ Ubuntu: 2.6.32-40.87 ]

  * IB/mlx4: pass SMP vendor-specific attribute MADs to firmware
    - LP: #932043
  * mm/filemap_xip.c: fix race condition in xip_file_fault()
    - LP: #932043
  * NFSv4: Fix up the callers of nfs4_state_end_reclaim_reboot
    - LP: #932043
  * NFSv4: The state manager shouldn't exit on errors that were handled
    - LP: #932043
  * NFSv4: Ensure the state manager handles NFS4ERR_NO_GRACE correctly
    - LP: #932043
  * NFSv4: Handle NFS4ERR_GRACE when recovering an expired lease.
    - LP: #932043
  * NFSv4: Fix open recovery
    - LP: #932043
  * rpc client can not deal with ENOSOCK, so translate it into ENOCONN
    - LP: #932043
  * udf: Mark LVID buffer as uptodate before marking it dirty
    - LP: #932043
  * eCryptfs: Infinite loop due to overflow in ecryptfs_write()
    - LP: #932043
  * atmel_lcdfb: fix usage of CONTRAST_CTR in suspend/resume
    - LP: #932043
  * Staging: asus_oled: fix image processing
    - LP: #932043
  * Staging: android: binder: Don't call dump_stack in binder_vma_open
    - LP: #932043
  * Staging: android: binder: Fix crashes when sharing a binder file
    between processes
    - LP: #932043
  * usb: gadget: zero: fix bug in loopback autoresume handling
    - LP: #932043
  * usb: Skip PCI USB quirk handling for Netlogic XLP
    - LP: #932043
  * USB: usbserial: add new PID number (0xa951) to the ftdi driver
    - LP: #932043
  * mmc: cb710 core: Add missing spin_lock_init for irq_lock of struct
    cb710_chip
    - LP: #932043
  * net: fix sk_forward_alloc corruptions
    - LP: #932043
  * net: sock_queue_err_skb() dont mess with sk_forward_alloc
    - LP: #932043
  * Linux 2.6.32.57
    - LP: #932043
  * Ban ecryptfs over ecryptfs
    - LP: #932987
  * eCryptfs: Remove mmap from directory operations
    - LP: #400443
  * eCryptfs: Use notify_change for truncating lower inodes
    - LP: #451368
  * ecryptfs: read on a directory should return EISDIR if not supported
    - LP: #719691
  * eCryptfs: Remove extra d_delete in ecryptfs_rmdir
    - LP: #723518
  * eCryptfs: Clear i_nlink in rmdir
    - LP: #723518
  * KVM: Device assignment permission checks
    - LP: #897812
    - CVE-2011-4347
  * block: Fix io_context leak after clone with CLONE_IO
    - LP: #940743
    - CVE-2012-0879
  * block: Fix io_context leak after failure of clone with CLONE_IO
    - LP: #940743
    - CVE-2012-0879
  * eCryptfs: Handle failed metadata read in lookup
    - LP: #509180
  * drm/i915: Fix TV Out refresh rate.
    - LP: #945114
  * Linux 2.6.32.57+drm33.23
    - LP: #945114
 -- Stefan Bader <email address hidden>   Wed, 07 Mar 2012 10:26:52 +0100

Available diffs

Superseded in lucid-updates on 2012-03-22
Superseded in lucid-security on 2012-03-22
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-343.45) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebase to Ubuntu-2.6.32-39.86
  * Release Tracking Bug
    - LP: #931914

  [ Ubuntu: 2.6.32-39.86 ]

  * ext4: fix undefined behavior in ext4_fill_flex_info()
    - LP: #922315
  * ALSA: snd-usb-us122l: Delete calls to preempt_disable
    - LP: #922315
  * ALSA: ice1724 - Check for ac97 to avoid kernel oops
    - LP: #922315
  * ALSA: hda - Return the error from get_wcaps_type() for invalid NIDs
    - LP: #922315
  * HID: bump maximum global item tag report size to 96 bytes
    - LP: #724831, #922315
  * UBI: fix use-after-free on error path
    - LP: #922315
  * PCI: Fix PCI_EXP_TYPE_RC_EC value
    - LP: #922315
  * PCI: msi: Disable msi interrupts when we initialize a pci device
    - LP: #922315
  * xen/xenbus: Reject replies with payload > XENSTORE_PAYLOAD_MAX.
    - LP: #922315
  * ima: free duplicate measurement memory
    - LP: #922315
  * PNP: work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB
    - LP: #922315
  * x86: Fix mmap random address range
    - LP: #922315
  * UBI: fix nameless volumes handling
    - LP: #922315
  * i2c: Fix error value returned by several bus drivers
    - LP: #922315
  * V4L/DVB: v4l2-ioctl: integer overflow in video_usercopy()
    - LP: #922315
  * svcrpc: fix double-free on shutdown of nfsd after changing pool mode
    - LP: #922315
  * svcrpc: destroy server sockets all at once
    - LP: #922315
  * nfsd: Fix oops when parsing a 0 length export
    - LP: #922315
  * USB: cdc-wdm: fix misuse of logical operation in place of bitop
    - LP: #922315
  * fix cputime overflow in uptime_proc_show
    - LP: #922315
  * USB: Fix 'bad dma' problem on WDM device disconnect
    - LP: #922315
  * block: add and use scsi_blk_cmd_ioctl
    - LP: #922315
  * kernel.h: add printk_ratelimited and pr_<level>_rl
    - LP: #922315
  * ALSA: HDA: Fix internal microphone on Dell Studio 16 XPS 1645
    - LP: #795823, #922315
  * sym53c8xx: Fix NULL pointer dereference in slave_destroy
    - LP: #922315
  * score: fix off-by-one index into syscall table
    - LP: #922315
  * kprobes: initialize before using a hlist
    - LP: #922315
  * Linux 2.6.32.55
    - LP: #922315
  * eCryptfs: Sanitize write counts of /dev/ecryptfs
    - LP: #926321
  * ecryptfs: Improve metadata read failure logging
    - LP: #926321
  * eCryptfs: Make truncate path killable
    - LP: #926321
  * crypto: sha512 - make it work, undo percpu message schedule
    - LP: #926321
  * crypto: sha512 - reduce stack usage to safe number
    - LP: #926321
  * block: fail SCSI passthrough ioctls on partition devices
    - LP: #926321
  * dm: do not forward ioctls from logical volumes to the underlying device
    - LP: #926321
  * USB: ftdi_sio: fix TIOCSSERIAL baud_base handling
    - LP: #926321
  * USB: ftdi_sio: add PID for TI XDS100v2 / BeagleBone A3
    - LP: #926321
  * USB: serial: ftdi additional IDs
    - LP: #926321
  * USB: ftdi_sio: Add more identifiers
    - LP: #926321
  * USB: cdc-wdm: updating desc->length must be protected by spin_lock
    - LP: #926321
  * usb: io_ti: Make edge_remove_sysfs_attrs the port_remove method.
    - LP: #926321
  * USB: usbsevseg: fix max length
    - LP: #926321
  * hwmon: (f71805f) Fix clamping of temperature limits
    - LP: #926321
  * hwmon: (sht15) fix bad error code
    - LP: #926321
  * USB: serial: CP210x: Added USB-ID for the Link Instruments MSO-19
    - LP: #926321
  * USB: cp210x: do not map baud rates to B0
    - LP: #926321
  * USB: ftdi_sio: fix initial baud rate
    - LP: #926321
  * Linux 2.6.32.56
    - LP: #926321
  * drm: Fix authentication kernel crash
    - LP: #931415
  * Linux 2.6.32.56+drm33.22
    - LP: #931415

Superseded in lucid-proposed on 2012-02-17
linux-ec2 (2.6.32-342.44) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-38.85
  * Release Tracking Bug
    - LP: #921882

  [ Ubuntu: 2.6.32-38.85 ]

  * Revert "ARM: 7220/1: mmc: mmci: Fixup error handling for dma"
    - LP: #921113

  [ Ubuntu: 2.6.32-38.84 ]

  * KVM: x86: Prevent starting PIT timers in the absence of irqchip support
    - LP: #911303
    - CVE-2011-4622
  * cfq-iosched: fix cfq_cic_link() race confition
    - LP: #913463
  * SCSI: mpt2sas: _scsih_smart_predicted_fault uses GFP_KERNEL in
    interrupt context
    - LP: #913463
  * MXC PWM: should active during DOZE/WAIT/DBG mode
    - LP: #913463
  * vfs: __read_cache_page should use gfp argument rather than GFP_KERNEL
    - LP: #913463
  * ARM:imx:fix pwm period value
    - LP: #913463
  * ARM: 7220/1: mmc: mmci: Fixup error handling for dma
    - LP: #913463
  * watchdog: hpwdt: Changes to handle NX secure bit in 32bit path
    - LP: #913463
  * hung_task: fix false positive during vfork
    - LP: #913463
  * ath9k: Fix kernel panic in AR2427 in AP mode
    - LP: #913463
  * Linux 2.6.32.53
    - LP: #913463
  * MAINTAINERS: stable: Update address
    - LP: #915900
  * Documentation: Update stable address
    - LP: #915900
  * firmware: Fix an oops on reading fw_priv->fw in sysfs loading file
    - LP: #915900
  * offb: Fix setting of the pseudo-palette for >8bpp
    - LP: #915900
  * offb: Fix bug in calculating requested vram size
    - LP: #915900
  * asix: new device id
    - LP: #915900
  * reiserfs: Fix quota mount option parsing
    - LP: #915900
  * reiserfs: Force inode evictions before umount to avoid crash
    - LP: #915900
  * USB: update documentation for usbmon
    - LP: #915900
  * drivers/usb/class/cdc-acm.c: clear dangling pointer
    - LP: #915900
  * USB: isight: fix kernel bug when loading firmware
    - LP: #915900
  * usb: usb-storage doesn't support dynamic id currently, the patch
    disables the feature to fix an oops
    - LP: #915900
  * USB: add quirk for another camera
    - LP: #915900
  * USB: omninet: fix write_room
    - LP: #915900
  * USB: Add USB-ID for Multiplex RC serial adapter to cp210x.c
    - LP: #915900
  * asix: fix infinite loop in rx_fixup()
    - LP: #915900
  * PM / Sleep: Fix race between CPU hotplug and freezer
    - LP: #915900
  * SCSI: scsi_dh: check queuedata pointer before proceeding further
    - LP: #915900
  * xfs: validate acl count
    - LP: #915900
  * xfs: fix acl count validation in xfs_acl_from_disk()
    - LP: #915900
  * Linux 2.6.32.54
    - LP: #915900
 -- Stefan Bader <email address hidden>   Thu, 26 Jan 2012 15:17:59 +0100

Available diffs

Superseded in lucid-security on 2012-03-05
Superseded in lucid-updates on 2012-03-05
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-342.43) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-38.83
  * XEN: x86/mpparse: Account for bus types other than ISA and PCI
    - LP: #902317
  * Release Tracking Bug
    - LP: #911230

  [ Ubuntu: 2.6.32-38.83 ]

  * Revert "clockevents: Set noop handler in clockevents_exchange_device()"
    - LP: #911392
  * Linux 2.6.32.52
    - LP: #911392

  [ Ubuntu: 2.6.32-38.82 ]

  * SAUCE: netns: Add quota for number of NET_NS instances.
  * [Config] CONFIG_NET_NS=y
    - LP: #790863
  * Revert "core: Fix memory leak/corruption on VLAN GRO_DROP,
    CVE-2011-1576"
  * hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops, CVE-2011-2203
    - LP: #899466
    - CVE-2011-2203
  * net: ipv4: relax AF_INET check in bind()
    - LP: #900396
  * KEYS: Fix a NULL pointer deref in the user-defined key type,
    CVE-2011-4110
    - LP: #894369
    - CVE-2011-4110
  * i2c-algo-bit: Generate correct i2c address sequence for 10-bit target
    - LP: #902317
  * eCryptfs: Extend array bounds for all filename chars
    - LP: #902317
  * PCI hotplug: shpchp: don't blindly claim non-AMD 0x7450 device IDs
    - LP: #902317
  * ARM: 7161/1: errata: no automatic store buffer drain
    - LP: #902317
  * ALSA: lx6464es - fix device communication via command bus
    - LP: #902317
  * SUNRPC: Ensure we return EAGAIN in xs_nospace if congestion is cleared
    - LP: #902317
  * timekeeping: add arch_offset hook to ktime_get functions
    - LP: #902317
  * p54spi: Add missing spin_lock_init
    - LP: #902317
  * p54spi: Fix workqueue deadlock
    - LP: #902317
  * nl80211: fix MAC address validation
    - LP: #902317
  * gro: reset vlan_tci on reuse
    - LP: #902317
  * staging: usbip: bugfix for deadlock
    - LP: #902317
  * staging: comedi: fix oops for USB DAQ devices.
    - LP: #902317
  * Staging: comedi: fix signal handling in read and write
    - LP: #902317
  * USB: whci-hcd: fix endian conversion in qset_clear()
    - LP: #902317
  * usb: ftdi_sio: add PID for Propox ISPcable III
    - LP: #902317
  * usb: option: add SIMCom SIM5218
    - LP: #902317
  * USB: usb-storage: unusual_devs entry for Kingston DT 101 G2
    - LP: #902317
  * SCSI: scsi_lib: fix potential NULL dereference
    - LP: #902317
  * SCSI: Silencing 'killing requests for dead queue'
    - LP: #902317
  * cifs: fix cifs stable patch cifs-fix-oplock-break-handling-try-2.patch
    - LP: #902317
  * sched, x86: Avoid unnecessary overflow in sched_clock
    - LP: #902317
  * x86/mpparse: Account for bus types other than ISA and PCI
    - LP: #902317
  * oprofile, x86: Fix crash when unloading module (nmi timer mode)
    - LP: #902317
  * genirq: Fix race condition when stopping the irq thread
    - LP: #902317
  * tick-broadcast: Stop active broadcast device when replacing it
    - LP: #902317
  * clockevents: Set noop handler in clockevents_exchange_device()
    - LP: #902317
  * Linux 2.6.32.50
    - LP: #902317
  * nfsd4: permit read opens of executable-only files
    - LP: #833300
  * ipv6: Allow inet6_dump_addr() to handle more than 64 addresses
    - LP: #863394
  * ALSA: sis7019 - give slow codecs more time to reset
    - LP: #907774
  * ALSA: hda/realtek - Fix Oops in alc_mux_select()
    - LP: #907774
  * ARM: davinci: dm646x evm: wrong register used in
    setup_vpif_input_channel_mode
    - LP: #907774
  * oprofile: Free potentially owned tasks in case of errors
    - LP: #907774
  * oprofile: Fix locking dependency in sync_start()
    - LP: #907774
  * percpu: fix chunk range calculation
    - LP: #907774
  * xfrm: Fix key lengths for rfc3686(ctr(aes))
    - LP: #907774
  * linux/log2.h: Fix rounddown_pow_of_two(1)
    - LP: #907774
  * jbd/jbd2: validate sb->s_first in journal_get_superblock()
    - LP: #907774
  * hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops
    - LP: #907774
  * export __get_user_pages_fast() function
    - LP: #907774
  * oprofile, x86: Fix nmi-unsafe callgraph support
    - LP: #907774
  * oprofile, x86: Fix crash when unloading module (timer mode)
    - LP: #907774
  * ext4: avoid hangs in ext4_da_should_update_i_disksize()
    - LP: #907774
  * USB: cdc-acm: add IDs for Motorola H24 HSPA USB module.
    - LP: #907774
  * Linux 2.6.32.51
    - LP: #907774
 -- Stefan Bader <email address hidden>   Wed, 04 Jan 2012 17:57:42 +0100

Available diffs

Superseded in lucid-security on 2012-01-11
Superseded in lucid-updates on 2012-01-11
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-341.42) lucid-proposed; urgency=low

  [Stefan Bader]

  * Release Tracking Bug
    - LP: #900752
  * XEN: xen-blkfront: fix data size for xenbus_gather in blkfront_connect
    - LP: #888042

Available diffs

Superseded in lucid-security on 2011-12-12
Superseded in lucid-updates on 2011-12-12
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-340.40) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to Ubuntu-2.6.32-36.79
  * Release Tracking Bug
    - LP: #888700

  [ Ubuntu: 2.6.32-36.79 ]

  * net_sched: Fix qdisc_notify() - CVE-2011-2525
    - LP: #869250
    - CVE-2011-2525
  * ipv6: restore correct ECN handling on TCP xmit
    - LP: #872179
  * nl80211: fix overflow in ssid_len - CVE-2011-2517
    - LP: #869245
    - CVE-2011-2517
  * vm: fix vm_pgoff wrap in stack expansion - CVE-2011-2496
    - LP: #869243
    - CVE-2011-2496
  * vm: fix vm_pgoff wrap in upward expansion - CVE-2011-2496
    - LP: #869243
    - CVE-2011-2496
  * drm: mm: fix range restricted allocations
    - LP: #873130
  * NLM: Don't hang forever on NLM unlock requests - CVE-2011-2491
    - LP: #869237
    - CVE-2011-2491
 -- Stefan Bader <email address hidden>   Mon, 14 Nov 2011 17:04:46 +0100

Available diffs

Superseded in lucid-security on 2011-11-21
Superseded in lucid-updates on 2011-11-21
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-319.39) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.32-35.78
  * Release Tracking Bug
    - LP: #873063

  [ Ubuntu: 2.6.32-35.78 ]

  * [Config] Force perf to use libiberty for demangling
    - LP: #783660
  * [Config] Simplify binary-udebs dependencies
    - LP: #832352
  * [Config] kernel preparation cannot be parallelized
    - LP: #832352
  * [Config] Linearize module/abi checks
    - LP: #832352
  * [Config] Linearize and simplify tree preparation rules
    - LP: #832352
  * [Config] Build kernel image in parallel with modules
    - LP: #832352
  * [Config] Set concurrency for kmake invocations
    - LP: #832352
  * [Config] Improve install-arch-headers speed
    - LP: #832352
  * [Config] Fix binary-perarch dependencies
    - LP: #832352
  * [Config] Removed stamp-flavours target
    - LP: #832352
  * [Config] Serialize binary indep targets
    - LP: #832352
  * [Config] Use build stamp directly
    - LP: #832352
  * [Config] Restore prepare-% target
    - LP: #832352
  * [Config] Fix binary-% build target
  * [Config] Fix install-headers target
    - LP: #832352
  * SAUCE: igb: Protect stats update
    - LP: #829566
  * SAUCE: rtl8192se spams log
    - LP: #859702
  * Add mount option to check uid of device being mounted = expect uid,
    CVE-2011-1833
    - LP: #732628
    - CVE-2011-1833
  * crypto: Move md5_transform to lib/md5.c
    - LP: #827462
  * net: Compute protocol sequence numbers and fragment IDs using MD5.
    - LP: #827462
  * ALSA: timer - Fix Oops at closing slave timer
    - LP: #827462
  * ALSA: snd-usb-caiaq: Fix keymap for RigKontrol3
    - LP: #827462
  * powerpc: Fix device tree claim code
    - LP: #827462
  * powerpc: pseries: Fix kexec on machines with more than 4TB of RAM
    - LP: #827462
  * Linux 2.6.32.45+drm33.19
    - LP: #827462
  * ipv6: make fragment identifications less predictable, CVE-2011-2699
    - LP: #827685
    - CVE-2011-2699
  * tunnels: fix netns vs proto registration ordering
    - LP: #823296
  * Fix broken backport for IPv6 tunnels in 2.6.32-longterm kernels.
  * USB: xhci: fix OS want to own HC
    - LP: #837669
  * USB: assign instead of equal in usbtmc.c
    - LP: #837669
  * USB: usb-storage: unusual_devs entry for ARM V2M motherboard.
    - LP: #837669
  * USB: Serial: Added device ID for Qualcomm Modem in Sagemcom's HiLo3G
    - LP: #837669
  * atm: br2864: sent packets truncated in VC routed mode
    - LP: #837669
  * hwmon: (ibmaem) add missing kfree
    - LP: #837669
  * ALSA: snd-usb-caiaq: Correct offset fields of outbound iso_frame_desc
    - LP: #837669
  * mm: fix wrong vmap address calculations with odd NR_CPUS values
    - LP: #837669
  * perf tools: do not look at ./config for configuration
    - LP: #837669
  * fs/partitions/efi.c: corrupted GUID partition tables can cause kernel
    oops
    - LP: #837669
  * befs: Validate length of long symbolic links.
    - LP: #837669
  * ALSA: snd_usb_caiaq: track submitted output urbs
    - LP: #837669
  * ALSA: ac97: Add HP Compaq dc5100 SFF(PT003AW) to Headphone Jack Sense
    whitelist
    - LP: #826081, #837669
  * futex: Fix regression with read only mappings
    - LP: #837669
  * x86-32, vdso: On system call restart after SYSENTER, use int $0x80
    - LP: #837669
  * x86, UV: Remove UV delay in starting slave cpus
    - LP: #837669
  * drm/ttm: fix ttm_bo_add_ttm(user) failure path
    - LP: #837669
  * fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message
    - LP: #837669
  * igb: Fix lack of flush after register write and before delay
    - LP: #837669
  * Linux 2.6.32.46
    - LP: #837669
  * cifs: fix possible memory corruption in CIFSFindNext, CVE-2011-3191
    - LP: #834135
    - CVE-2011-3191
  * Bluetooth: Prevent buffer overflow in l2cap config request,
    CVE-2011-2497
    - LP: #838423
    - CVE-2011-2497
  * core: Fix memory leak/corruption on VLAN GRO_DROP, CVE-2011-1576
    - LP: #844361
    - CVE-2011-1576
  * ext4: Fix max file size and logical block counting of extent format
    file, CVE-2011-2695
    - LP: #819574
    - CVE-2011-2695
  * drm/i915: prepare for fair lru eviction
    - LP: #843904
  * drm/i915: Move the eviction logic to its own file.
    - LP: #843904
  * drm/i915: Implement fair lru eviction across both rings. (v2)
    - LP: #843904
  * drm/i915: Maintain LRU order of inactive objects upon access by CPU
    (v2)
    - LP: #843904
  * drm/i915/evict: Ensure we completely cleanup on failure
    - LP: #843904
  * drm/i915: Periodically flush the active lists and requests
    - LP: #843904
  * Make TASKSTATS require root access, CVE-2011-2494
    - LP: #866021
    - CVE-2011-2494
  * proc: fix a race in do_io_accounting(), CVE-2011-2495
    - LP: #866025
    - CVE-2011-2495
  * drm/i915: Remove BUG_ON from i915_gem_evict_something
    - LP: #828550
  * drm/i915: Hold a reference to the object whilst unbinding the eviction
    list
    - LP: #843904
  * drm/i915: Fix refleak during eviction.
    - LP: #843904
  * Linux 2.6.32.46+drm33.20

  [ Ubuntu: 2.6.32-34.77 ]

  * Revert "drm/i915: Remove BUG_ON from i915_gem_evict_something"
  * Revert "drm/i915: Periodically flush the active lists and requests"
  * Revert "drm/i915/evict: Ensure we completely cleanup on failure"
  * Revert "drm/i915: Maintain LRU order of inactive objects upon access by
    CPU (v2)"
  * Revert "drm/i915: Implement fair lru eviction across both rings. (v2)"
  * Revert "drm/i915: Move the eviction logic to its own file."
  * Revert "drm/i915: prepare for fair lru eviction"
 -- Stefan Bader <email address hidden>   Fri, 14 Oct 2011 17:14:29 +0100

Available diffs

Superseded in lucid-security on 2011-10-25
Superseded in lucid-updates on 2011-10-25
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-318.38) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.32-34.76
  * Release Tracking Bug
    - LP: #837804

  [ Ubuntu: 2.6.32-34.76 ]

  * Revert "drm/nv50-nvc0: work around an evo channel hang that some people
    see"
  * Revert "eCryptfs: Handle failed metadata read in lookup"
  * Revert "tunnels: fix netns vs proto registration ordering"

  [ Ubuntu: 2.6.32-34.75 ]

  * drm/i915: Remove BUG_ON from i915_gem_evict_something
    - LP: #828550

Available diffs

Superseded in lucid-proposed on 2011-09-02
linux-ec2 (2.6.32-318.37) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #829162
  * XEN: exec: delay address limit change until point of no return
    - LP: #802383
  * Rebased to 2.6.32-34.74

  [ Ubuntu: 2.6.32-34.74 ]

  * proc: fix oops on invalid /proc/<pid>/maps access, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020

  [ Ubuntu: 2.6.32-34.73 ]

  * SAUCE: rtl8192se: Force a build for a 2.6/3.0 kernel
    - LP: #805494
  * [Config] Add enic/fnic to udebs
    - LP: #801610
  * tty: icount changeover for other main devices, CVE-2010-4076,
    CVE-2010-4077
    - LP: #720189
    - CVE-2010-4077
  * fs/partitions/efi.c: corrupted GUID partition tables can cause kernel
    oops
    - LP: #795418
    - CVE-2011-1577
  * ftrace: Only update the function code on write to filter files
    - LP: #802383
  * kmemleak: Do not return a pointer to an object that kmemleak did not
    get
    - LP: #802383
  * CPU hotplug, re-create sysfs directory and symlinks
    - LP: #802383
  * Fix memory leak in cpufreq_stat
    - LP: #802383
  * powerpc/kexec: Fix memory corruption from unallocated slaves
    - LP: #802383
  * powerpc/oprofile: Handle events that raise an exception without
    overflowing
    - LP: #802383
  * mtd: mtdconcat: fix NAND OOB write
    - LP: #802383
  * x86, 64-bit: Fix copy_[to/from]_user() checks for the userspace address
    limit
    - LP: #802383
  * ext3: Fix fs corruption when make_indexed_dir() fails
    - LP: #802383
  * jbd: Fix forever sleeping process in do_get_write_access()
    - LP: #802383
  * jbd: fix fsync() tid wraparound bug
    - LP: #802383
  * ext4: release page cache in ext4_mb_load_buddy error path
    - LP: #802383
  * Fix Ultrastor asm snippet
    - LP: #802383
  * x86, amd: Do not enable ARAT feature on AMD processors below family
    0x12
    - LP: #802383
  * x86, amd: Use _safe() msr access for GartTlbWlk disable code
    - LP: #802383
  * rcu: Fix unpaired rcu_irq_enter() from locking selftests
    - LP: #802383
  * staging: usbip: fix wrong endian conversion
    - LP: #802383
  * Fix for buffer overflow in ldm_frag_add not sufficient
    - LP: #802383
  * seqlock: Don't smp_rmb in seqlock reader spin loop
    - LP: #802383
  * ALSA: HDA: Use one dmic only for Dell Studio 1558
    - LP: #731706, #802383
  * ASoC: Ensure output PGA is enabled for line outputs in wm_hubs
    - LP: #802383
  * ASoC: Add some missing volume update bit sets for wm_hubs devices
    - LP: #802383
  * mm/page_alloc.c: prevent unending loop in __alloc_pages_slowpath()
    - LP: #802383
  * loop: limit 'max_part' module param to DISK_MAX_PARTS
    - LP: #802383
  * loop: handle on-demand devices correctly
    - LP: #802383
  * USB: CP210x Add 4 Device IDs for AC-Services Devices
    - LP: #802383
  * USB: moto_modem: Add USB identifier for the Motorola VE240.
    - LP: #802383
  * USB: serial: ftdi_sio: adding support for TavIR STK500
    - LP: #802383
  * USB: gamin_gps: Fix for data transfer problems in native mode
    - LP: #802383
  * usb/gadget: at91sam9g20 fix end point max packet size
    - LP: #802383
  * usb: gadget: rndis: don't test against req->length
    - LP: #802383
  * OHCI: fix regression caused by nVidia shutdown workaround
    - LP: #802383
  * p54usb: add zoom 4410 usbid
    - LP: #802383
  * eCryptfs: Allow 2 scatterlist entries for encrypted filenames
    - LP: #802383
  * UBIFS: fix a rare memory leak in ro to rw remounting path
    - LP: #802383
  * i8k: Avoid lahf in 64-bit code
    - LP: #802383
  * cpuidle: menu: fixed wrapping timers at 4.294 seconds
    - LP: #802383
  * dm table: reject devices without request fns
    - LP: #802383
  * atm: expose ATM device index in sysfs
    - LP: #802383
  * brd: limit 'max_part' module param to DISK_MAX_PARTS
    - LP: #802383
  * brd: handle on-demand devices correctly
    - LP: #802383
  * SUNRPC: Deal with the lack of a SYN_SENT sk->sk_state_change
    callback...
    - LP: #802383
  * PCI: Add quirk for setting valid class for TI816X Endpoint
    - LP: #802383
  * xen mmu: fix a race window causing leave_mm BUG()
    - LP: #802383
  * netfilter: nf_conntrack_reasm: properly handle packets fragmented into
    a single fragment
    - LP: #802383
  * fix memory leak in scsi_report_lun_scan
    - LP: #802383
  * fix refcounting bug in scsi_get_host_dev
    - LP: #802383
  * fix duplicate removal on error path in scsi_sysfs_add_sdev
    - LP: #802383
  * UBIFS: fix shrinker object count reports
    - LP: #802383
  * UBIFS: fix memory leak on error path
    - LP: #802383
  * nbd: limit module parameters to a sane value
    - LP: #802383
  * mm: fix ENOSPC returned by handle_mm_fault()
    - LP: #802383
  * PCI: Set PCIE maxpayload for card during hotplug insertion
    - LP: #802383
  * nl80211: fix check for valid SSID size in scan operations
    - LP: #802383
  * lockdep: Fix lock_is_held() on recursion
    - LP: #802383
  * drm/i915: Add a no lvds quirk for the Asus EeeBox PC EB1007
    - LP: #802383
  * drm/radeon/kms: fix for radeon on systems >4GB without hardware iommu
    - LP: #802383
  * fat: Fix corrupt inode flags when remove ATTR_SYS flag
    - LP: #802383
  * xen: off by one errors in multicalls.c
    - LP: #802383
  * x86/amd-iommu: Fix 3 possible endless loops
    - LP: #802383
  * USB: cdc-acm: Adding second ACM channel support for Nokia E7 and C7
    - LP: #802383
  * USB: core: Tolerate protocol stall during hub and port status read
    - LP: #802383
  * USB: serial: add another 4N-GALAXY.DE PID to ftdi_sio driver
    - LP: #802383
  * ALSA: hda: Fix quirk for Dell Inspiron 910
    - LP: #792712, #802383
  * oprofile, dcookies: Fix possible circular locking dependency
    - LP: #802383
  * CPUFREQ: Remove cpufreq_stats sysfs entries on module unload.
    - LP: #802383
  * md: check ->hot_remove_disk when removing disk
    - LP: #802383
  * md/raid5: fix raid5_set_bi_hw_segments
    - LP: #802383
  * md/raid5: fix FUA request handling in ops_run_io()
    - LP: #802383
  * ata: use pci_dev->revision
    - LP: #802383
  * pata_cmd64x: fix PIO setup
    - LP: #802383
  * pata_cmd64x: cmd648_bmdma_stop() fix
    - LP: #802383
  * pata_cmd64x: remove unused definitions
    - LP: #802383
  * pata_cm64x: fix boot crash on parisc
    - LP: #802383
  * ACPI: use _HID when supplied by root-level devices
    - LP: #802383
  * xfs: properly account for reclaimed inodes
    - LP: #802383
  * exec: delay address limit change until point of no return
    - LP: #802383
  * netfilter: IPv6: initialize TOS field in REJECT target module
    - LP: #802383
  * netfilter: IPv6: fix DSCP mangle code
    - LP: #802383
  * genirq: Add IRQF_FORCE_RESUME
    - LP: #802383
  * xen: Use IRQF_FORCE_RESUME
    - LP: #802383
  * time: Compensate for rounding on odd-frequency clocksources
    - LP: #802383
  * Linux 2.6.32.42
    - LP: #802383
  * taskstats: don't allow duplicate entries in listener mode,
    CVE-2011-2484
    - LP: #806390
    - CVE-2011-2484
  * drm_mm: extract check_free_mm_node
    - LP: #599017, #807508
  * drm: implement helper functions for scanning lru list
    - LP: #599017, #807508
  * drm/i915: prepare for fair lru eviction
    - LP: #599017, #807508
  * drm/i915: Move the eviction logic to its own file.
    - LP: #599017, #807508
  * drm/i915: Implement fair lru eviction across both rings. (v2)
    - LP: #599017, #807508
  * drm/i915: Maintain LRU order of inactive objects upon access by CPU
    (v2)
    - LP: #599017, #807508
  * drm/i915/evict: Ensure we completely cleanup on failure
    - LP: #599017, #807508
  * drm/i915: Periodically flush the active lists and requests
    - LP: #599017, #807508
  * Linux 2.6.32.42+drm33.19
    - LP: #807508
  * net: add limit for socket backlog CVE-2010-4251
    - LP: #807462
  * tcp: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * ipv6: udp: Optimise multicast reception
    - LP: #807462
  * ipv4: udp: Optimise multicast reception
    - LP: #807462
  * udp: multicast RX should increment SNMP/sk_drops counter in allocation
    failures CVE-2010-4251
    - LP: #807462
  * udp: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * llc: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * sctp: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * tipc: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * x25: use limited socket backlog CVE-2010-4251
    - LP: #807462
  * net: backlog functions rename CVE-2010-4251
    - LP: #807462
  * net: sk_add_backlog() take rmem_alloc into account CVE-2010-4805
    - LP: #809318
  * ksm: fix NULL pointer dereference in scan_get_next_rmap_item()
    - LP: #810425
  * migrate: don't account swapcache as shmem
    - LP: #810425
  * clocksource: Make watchdog robust vs. interruption
    - LP: #810425
  * TTY: ldisc, do not close until there are readers
    - LP: #810425
  * xhci: Reject double add of active endpoints.
    - LP: #810425
  * PM: Free memory bitmaps if opening /dev/snapshot fails
    - LP: #810425
  * ath5k: fix memory leak when fewer than N_PD_CURVES are in use
    - LP: #810425
  * mm: fix negative commitlimit when gigantic hugepages are allocated
    - LP: #810425
  * uvcvideo: Remove buffers from the queues when freeing
    - LP: #810425
  * watchdog: mtx1-wdt: request gpio before using it
    - LP: #810425
  * debugobjects: Fix boot crash when kmemleak and debugobjects enabled
    - LP: #810425
  * cfq-iosched: fix locking around ioc->ioc_data assignment
    - LP: #810425
  * cfq-iosched: fix a rcu warning
    - LP: #810425
  * i2c-taos-evm: Fix log messages
    - LP: #810425
  * md: avoid endless recovery loop when waiting for fail device to
    complete.
    - LP: #810425
  * SUNRPC: Ensure the RPC client only quits on fatal signals
    - LP: #810425
  * 6pack,mkiss: fix lock inconsistency
    - LP: #810425
  * USB: don't let errors prevent system sleep
    - LP: #810425
  * USB: don't let the hub driver prevent system sleep
    - LP: #810425
  * uml: fix CONFIG_STATIC_LINK=y build failure with newer glibc
    - LP: #810425
  * um: os-linux/mem.c needs sys/stat.h
    - LP: #810425
  * inet_diag: fix inet_diag_bc_audit()
    - LP: #810425
  * PM / Hibernate: Avoid hitting OOM during preallocation of memory
    - LP: #810425
  * PM / Hibernate: Fix free_unnecessary_pages()
    - LP: #810425
  * bug.h: Add WARN_RATELIMIT
    - LP: #810425
  * net: filter: Use WARN_RATELIMIT
    - LP: #810425
  * af_packet: prevent information leak
    - LP: #810425
  * net/ipv4: Check for mistakenly passed in non-IPv4 address
    - LP: #810425
  * ipv6/udp: Use the correct variable to determine non-blocking condition
    - LP: #810425
  * udp/recvmsg: Clear MSG_TRUNC flag when starting over for a new packet
    - LP: #810425
  * mm: prevent concurrent unmap_mapping_range() on the same inode
    - LP: #810425
  * xen: set max_pfn_mapped to the last pfn mapped
    - LP: #810425
  * xen: partially revert "xen: set max_pfn_mapped to the last pfn mapped"
    - LP: #810425
  * Linux 2.6.32.43
    - LP: #810425
  * eCryptfs: Handle failed metadata read in lookup
    - LP: #509180
  * pagemap: close races with suid execve, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * report errors in /proc/*/*map* sanely, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * close race in /proc/*/environ, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * auxv: require the target to be tracable (or yourself), CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * deal with races in /proc/*/{syscall, stack, personality}, CVE-2011-1020
    - LP: #813026
    - CVE-2011-1020
  * rose_loopback_timer sets VC number <= ROSE_DEFAULT_MAXVC, CVE-2011-1493
    - LP: #816550
    - CVE-2011-1493
  * rose: Add length checks to CALL_REQUEST parsing, CVE-2011-1493
    - LP: #816550
    - CVE-2011-1493
  * Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace.
    - LP: #819569
    - CVE-2011-2492
  * drm/nv50-nvc0: work around an evo channel hang that some people see
    - LP: #583760
  * ASoC: Fix Blackfin I2S _pointer() implementation return in bounds
    values
    - LP: #823296
  * v4l2-ioctl.c: prefill tuner type for g_frequency and g/s_tuner
    - LP: #823296
  * pvrusb2: fix g/s_tuner support
    - LP: #823296
  * bttv: fix s_tuner for radio
    - LP: #823296
  * gro: Only reset frag0 when skb can be pulled
    - LP: #823296
  * NFSv4.1: update nfs4_fattr_bitmap_maxsz
    - LP: #823296
  * SUNRPC: Fix a race between work-queue and rpc_killall_tasks
    - LP: #823296
  * SUNRPC: Fix use of static variable in rpcb_getport_async
    - LP: #823296
  * si4713-i2c: avoid potential buffer overflow on si4713
    - LP: #823296
  * hwmon: (max1111) Fix race condition causing NULL pointer exception
    - LP: #823296
  * bridge: send proper message_age in config BPDU
    - LP: #823296
  * davinci: DM365 EVM: fix video input mux bits
    - LP: #823296
  * libata: fix unexpectedly frozen port after ata_eh_reset()
    - LP: #823296
  * x86: Make Dell Latitude E5420 use reboot=pci
    - LP: #823296
  * USB: pl2303: add AdLink ND-6530 USB IDs
    - LP: #823296
  * USB: pl2303.h: checkpatch cleanups
    - LP: #823296
  * USB: serial: add IDs for WinChipHead USB->RS232 adapter
    - LP: #823296
  * staging: comedi: fix infoleak to userspace
    - LP: #823296
  * USB: OHCI: fix another regression for NVIDIA controllers
    - LP: #823296
  * usb: musb: restore INDEX register in resume path
    - LP: #823296
  * USB: dummy-hcd needs the has_tt flag
    - LP: #823296
  * ARM: pxa/cm-x300: fix V3020 RTC functionality
    - LP: #823296
  * jme: Fix unmap error (Causing system freeze)
    - LP: #823296
  * libsas: remove expander from dev list on error
    - LP: #823296
  * mac80211: Restart STA timers only on associated state
    - LP: #823296
  * Blacklist Traxdata CDR4120 and IOMEGA Zip drive to avoid lock ups.
    - LP: #823296
  * ses: requesting a fault indication
    - LP: #823296
  * pmcraid: reject negative request size
    - LP: #823296
  * kexec, x86: Fix incorrect jump back address if not preserving context
    - LP: #823296
  * powerpc/kdump: Fix timeout in crash_kexec_wait_realmode
    - LP: #823296
  * PCI: ARI is a PCIe v2 feature
    - LP: #823296
  * cciss: do not attempt to read from a write-only register
    - LP: #823296
  * xtensa: prevent arbitrary read in ptrace
    - LP: #823296
  * ext3: Fix oops in ext3_try_to_allocate_with_rsv()
    - LP: #823296
  * svcrpc: fix list-corrupting race on nfsd shutdown
    - LP: #823296
  * EHCI: only power off port if over-current is active
    - LP: #823296
  * EHCI: fix direction handling for interrupt data toggles
    - LP: #823296
  * powerpc/pseries/hvconsole: Fix dropped console output
    - LP: #823296
  * x86: Hpet: Avoid the comparator readback penalty
    - LP: #823296
  * x86: HPET: Chose a paranoid safe value for the ETIME check
    - LP: #823296
  * cifs: clean up cifs_find_smb_ses (try #2)
    - LP: #823296
  * cifs: fix NULL pointer dereference in cifs_find_smb_ses
    - LP: #823296
  * cifs: check for NULL session password
    - LP: #823296
  * gre: fix netns vs proto registration ordering
    - LP: #823296
  * netns xfrm: fixup xfrm6_tunnel error propagation
    - LP: #823296
  * tunnels: fix netns vs proto registration ordering
    - LP: #823296
  * alpha: fix several security issues
    - LP: #823296
  * proc: restrict access to /proc/PID/io
    - LP: #823296
  * ALSA: sound/core/pcm_compat.c: adjust array index
    - LP: #823296
  * dm mpath: fix potential NULL pointer in feature arg processing
    - LP: #823296
  * dm: fix idr leak on module removal
    - LP: #823296
  * perf: overflow/perf_count_sw_cpu_clock crashes recent kernels
    - LP: #823296
  * atm: [br2684] allow routed mode operation again
    - LP: #823296
  * Linux 2.6.32.44
    - LP: #823296

  [ Ubuntu: 2.6.32-33.72 ]

  * Revert "fix oops in scsi_run_queue()"
    - LP: #811745
  * Revert "put stricter guards on queue dead checks"
    - LP: #811745

  [ Ubuntu: 2.6.32-33.71 ]

  * splice: direct_splice_actor() should not use pos in sd
    - LP: #588861
 -- Stefan Bader <email address hidden>   Thu, 18 Aug 2011 11:08:03 +0200

Available diffs

Superseded in lucid-security on 2011-09-26
Superseded in lucid-updates on 2011-09-26
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-317.36) lucid-proposed; urgency=low

  [Stefan Bader]

  * Release Tracking Bug
    - LP: #807505

  [ Stefan Bader ]

  * Revert "XEN: x86: Flush TLB if PGD entry is changed in i386 PAE mode"
    - LP: #805209
  * Rebased to 2.6.32-33.70

  [ Ubuntu: 2.6.32-33.70 ]

  * Revert "x86: Flush TLB if PGD entry is changed in i386 PAE mode"
    - LP: #805209

Available diffs

Superseded in lucid-proposed on 2011-07-11
linux-ec2 (2.6.32-317.34) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #794420
  * Rebased to 2.6.32-33.66

  [ Ubuntu: 2.6.32-33.66 ]

  * Revert "xhci: Fix full speed bInterval encoding."
  * Revert "USB: xhci - fix math in xhci_get_endpoint_interval()"
  * Revert "USB: xhci - fix unsafe macro definitions"

Available diffs

Superseded in lucid-proposed on 2011-06-09
linux-ec2 (2.6.32-317.33) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Release Tracking Bug
    - LP: #793566
  * Rebased to 2.6.32-33.65

  [ Ubuntu: 2.6.32-33.65 ]

  * xhci: Fix full speed bInterval encoding.
    - LP: #792959

Available diffs

Superseded in lucid-security on 2011-07-13
Superseded in lucid-updates on 2011-07-13
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-316.31) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * XEN: x86: Flush TLB if PGD entry is changed in i386 PAE mode
    - LP: #742056
  * XEN: x86: Emit "mem=nopentium ignored" warning when not supported
    - LP: #742056
  * XEN: x86: Fix panic when handling "mem={invalid}" param
    - LP: #742056
  * XEN: x86/mm: Handle mm_fault_error() in kernel space
    - LP: #742056
  * SAUCE: XEN: Do not force sched_clock_stable
    - LP: #727459

Available diffs

Superseded in lucid-proposed on 2011-05-18
linux-ec2 (2.6.32-316.30) lucid-proposed; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #718869

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #767978

  [ Brad Figg ]

  * Rebased to 2.6.32-32.62

  [ Ubuntu: 2.6.32-32.62 ]

  * Release Tracking Bug
    - LP: #767370
  * (config) Disable CONFIG_NET_NS
    - LP: #720095
  * Revert "drm/radeon/kms: Fix retrying ttm_bo_init() after it failed
    once."
    - LP: #736234
  * Revert "drm/radeon: fall back to GTT if bo creation/validation in VRAM
    fails."
    - LP: #736234
  * x86: pvclock: Move scale_delta into common header
  * KVM: x86: Fix a possible backwards warp of kvmclock
  * KVM: x86: Fix kvmclock bug
  * cpuset: add a missing unlock in cpuset_write_resmask()
    - LP: #736234
  * keyboard: integer underflow bug
    - LP: #736234
  * RxRPC: Fix v1 keys
    - LP: #736234
  * ixgbe: fix for 82599 erratum on Header Splitting
    - LP: #736234
  * mm: fix possible cause of a page_mapped BUG
    - LP: #736234
  * powerpc/kdump: CPUs assume the context of the oopsing CPU
    - LP: #736234
  * powerpc/kdump: Use chip->shutdown to disable IRQs
    - LP: #736234
  * powerpc: Use more accurate limit for first segment memory allocations
    - LP: #736234
  * powerpc/pseries: Add hcall to read 4 ptes at a time in real mode
    - LP: #736234
  * powerpc/kexec: Speedup kexec hash PTE tear down
    - LP: #736234
  * powerpc/crashdump: Do not fail on NULL pointer dereferencing
    - LP: #736234
  * powerpc/kexec: Fix orphaned offline CPUs across kexec
    - LP: #736234
  * netfilter: nf_log: avoid oops in (un)bind with invalid nfproto values
    - LP: #736234
  * nfsd: wrong index used in inner loop
    - LP: #736234
  * r8169: use RxFIFO overflow workaround for 8168c chipset.
    - LP: #736234
  * Staging: comedi: jr3_pci: Don't ioremap too much space. Check result.
    - LP: #736234
  * net: don't allow CAP_NET_ADMIN to load non-netdev kernel modules,
    CVE-2011-1019
    - LP: #736234
    - CVE-2011-1019
  * ip6ip6: autoload ip6 tunnel
    - LP: #736234
  * Linux 2.6.32.33
    - LP: #736234
  * drm/radeon: fall back to GTT if bo creation/validation in VRAM fails.
    - LP: #652934, #736234
  * drm/radeon/kms: Fix retrying ttm_bo_init() after it failed once.
    - LP: #652934, #736234
  * drm: fix unsigned vs signed comparison issue in modeset ctl ioctl,
    CVE-2011-1013
    - LP: #736234
    - CVE-2011-1013
  * Linux 2.6.32.33+drm33.15
    - LP: #736234
  * econet: Fix crash in aun_incoming(). CVE-2010-4342
    - LP: #736394
    - CVE-2010-4342
  * igb: only use vlan_gro_receive if vlans are registered, CVE-2010-4263
    - LP: #737024
    - CVE-2010-4263
  * irda: prevent integer underflow in IRLMP_ENUMDEVICES, CVE-2010-4529
    - LP: #737823
    - CVE-2010-4529
  * hwmon/f71882fg: Set platform drvdata to NULL later
    - LP: #742056
  * mtd: add "platform:" prefix for platform modalias
    - LP: #742056
  * libata: no special completion processing for EH commands
    - LP: #742056
  * MIPS: MTX-1: Make au1000_eth probe all PHY addresses
    - LP: #742056
  * x86/mm: Handle mm_fault_error() in kernel space
    - LP: #742056
  * ftrace: Fix memory leak with function graph and cpu hotplug
    - LP: #742056
  * x86: Fix panic when handling "mem={invalid}" param
    - LP: #553464, #742056
  * x86: Emit "mem=nopentium ignored" warning when not supported
    - LP: #553464, #742056
  * ahci: AHCI and RAID mode SATA patch for Intel Patsburg DeviceIDs
    - LP: #742056
  * ahci: AHCI mode SATA patch for Intel DH89xxCC DeviceIDs
    - LP: #742056
  * ahci: AHCI mode SATA patch for Intel Patsburg SATA RAID controller
    - LP: #742056
  * RDMA/cma: Fix crash in request handlers
    - LP: #742056
  * IB/cm: Bump reference count on cm_id before invoking callback
    - LP: #742056
  * ath9k_hw: Fix incorrect macversion and macrev checks
    - LP: #742056
  * USB: serial/kobil_sct, fix potential tty NULL dereference
    - LP: #742056
  * USB: serial: ch341: add new id
    - LP: #742056
  * xhci: Fix cycle bit calculation during stall handling.
    - LP: #742056
  * ALSA: hda - fix digital mic selection in mixer on 92HD8X codecs
    - LP: #742056
  * PCI: remove quirk for pre-production systems
    - LP: #742056
  * PCI: add more checking to ICH region quirks
    - LP: #742056
  * PCI: do not create quirk I/O regions below PCIBIOS_MIN_IO for ICH
    - LP: #742056
  * PCI: sysfs: Fix failure path for addition of "vpd" attribute
    - LP: #742056
  * ALSA: ctxfi - Fix incorrect SPDIF status bit mask
    - LP: #742056
  * ALSA: ctxfi - Fix SPDIF status retrieval
    - LP: #742056
  * ALSA: ctxfi - Clear input settings before initialization
    - LP: #742056
  * SUNRPC: Ensure we always run the tk_callback before tk_action
    - LP: #742056
  * perf, powerpc: Handle events that raise an exception without
    overflowing
    - LP: #742056
  * ext3: Always set dx_node's fake_dirent explicitly.
    - LP: #742056
  * call_function_many: fix list delete vs add race
    - LP: #742056
  * call_function_many: add missing ordering
    - LP: #742056
  * x86: Flush TLB if PGD entry is changed in i386 PAE mode
    - LP: #742056
  * isdn: avoid calling tty_ldisc_flush() in atomic context
    - LP: #742056
  * smp_call_function_many: handle concurrent clearing of mask
    - LP: #742056
  * fix per-cpu flag problem in the cpu affinity checkers
    - LP: #742056
  * i2c: Fix typo in instantiating-devices document
    - LP: #742056
  * mmc: sdio: remember new card RCA when redetecting card
    - LP: #742056
  * powerpc/kexec: Fix race in kexec shutdown
    - LP: #742056
  * powerpc/kdump: Fix race in kdump shutdown
    - LP: #742056
  * powerpc: rtas_flash needs to use rtas_data_buf
    - LP: #742056
  * x86, binutils, xen: Fix another wrong size directive
    - LP: #742056
  * hwmon: (sht15) Fix integer overflow in humidity calculation
    - LP: #742056
  * Linux 2.6.32.34
    - LP: #742056
  * Linux 2.6.32.35
    - LP: #742056
  * aio: wake all waiters when destroying ctx
    - LP: #744921
  * shmem: let shared anonymous be nonlinear again
    - LP: #744921
  * PCI hotplug: acpiphp: set current_state to D0 in register_slot
    - LP: #744921
  * xen: set max_pfn_mapped to the last pfn mapped
    - LP: #744921
  * PCI: return correct value when writing to the "reset" attribute
    - LP: #744921
  * Prevent rt_sigqueueinfo and rt_tgsigqueueinfo from spoofing the signal
    code
    - LP: #744921
  * ext3: skip orphan cleanup on rocompat fs
    - LP: #744921
  * procfs: fix /proc/<pid>/maps heap check
    - LP: #744921
  * proc: protect mm start_code/end_code in /proc/pid/stat, CVE-2011-0726
    - LP: #744921
    - CVE-2011-0726
  * fbcon: Bugfix soft cursor detection in Tile Blitting
    - LP: #744921
  * nfsd41: modify the members value of nfsd4_op_flags
    - LP: #744921
  * nfsd: wrong index used in inner loop
    - LP: #744921
  * uvcvideo: Fix uvc_fixup_video_ctrl() format search
    - LP: #744921
  * ehci-hcd: Bug fix: don't set a QH's Halt bit
    - LP: #744921
  * USB: uss720 fixup refcount position
    - LP: #744921
  * USB: cdc-acm: fix memory corruption / panic
    - LP: #744921
  * USB: cdc-acm: fix potential null-pointer dereference
    - LP: #744921
  * USB: cdc-acm: fix potential null-pointer dereference on disconnect
    - LP: #744921
  * Input: xen-kbdfront - advertise either absolute or relative coordinates
    - LP: #744921
  * SUNRPC: Never reuse the socket port after an xs_close()
    - LP: #744921
  * fs: call security_d_instantiate in d_obtain_alias V2
    - LP: #744921
  * dcdbas: force SMI to happen when expected
    - LP: #744921
  * Linux 2.6.32.36
    - LP: #744921
  * drm/radeon/kms: check AA resolve registers on r300, CVE-2011-1016
    - LP: #745686
    - CVE-2011-1016
  * drm/radeon: fix regression with AA resolve checking, CVE-2011-1016
    - LP: #745686
    - CVE-2011-1016
  * xen: events: do not unmask event channels on resume
    - LP: #681083
  * drm/radeon/kms: check AA resolve registers on r300
    - LP: #754584
  * drm/radeon: fix regression with AA resolve checking
    - LP: #754584
  * Linux 2.6.32.36+drm33.16
    - LP: #754584
  * ALSA: hda - Fix SPDIF out regression on ALC889
    - LP: #764685
  * ALSA: Fix yet another race in disconnection
    - LP: #764685
  * perf: Better fit max unprivileged mlock pages for tools needs
    - LP: #764685
  * myri10ge: fix rmmod crash
    - LP: #764685
  * cciss: fix lost command issue
    - LP: #764685
  * sound/oss/opl3: validate voice and channel indexes
    - LP: #764685
  * mac80211: initialize sta->last_rx in sta_info_alloc
    - LP: #764685
  * ses: show devices for enclosures with no page 7
    - LP: #764685
  * ses: Avoid kernel panic when lun 0 is not mapped
    - LP: #764685
  * eCryptfs: Unlock page in write_begin error path
    - LP: #764685
  * eCryptfs: ecryptfs_keyring_auth_tok_for_sig() bug fix
    - LP: #764685
  * staging: usbip: bugfixes related to kthread conversion
    - LP: #764685
  * staging: usbip: bugfix add number of packets for isochronous frames
    - LP: #764685
  * staging: usbip: bugfix for isochronous packets and optimization
    - LP: #764685
  * staging: hv: Fix GARP not sent after Quick Migration
    - LP: #764685
  * staging: hv: use sync_bitops when interacting with the hypervisor
    - LP: #764685
  * Relax si_code check in rt_sigqueueinfo and rt_tgsigqueueinfo
    - LP: #764685
  * xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1
    - LP: #764685
  * irda: validate peer name and attribute lengths
    - LP: #764685
  * irda: prevent heap corruption on invalid nickname
    - LP: #764685
  * nilfs2: fix data loss in mmap page write for hole blocks
    - LP: #764685
  * ASoC: Explicitly say registerless widgets have no register
    - LP: #764685
  * ALSA: ens1371: fix Creative Ectiva support
    - LP: #764685
  * ROSE: prevent heap corruption with bad facilities
    - LP: #764685
  * Btrfs: Fix uninitialized root flags for subvolumes
    - LP: #764685
  * x86, mtrr, pat: Fix one cpu getting out of sync during resume
    - LP: #764685
  * ath9k: fix a chip wakeup related crash in ath9k_start
    - LP: #764685
  * UBIFS: do not read flash unnecessarily
    - LP: #764685
  * UBIFS: fix oops on error path in read_pnode
    - LP: #764685
  * UBIFS: fix debugging failure in dbg_check_space_info
    - LP: #764685
  * quota: Don't write quota info in dquot_commit()
    - LP: #764685
  * mm: avoid wrapping vm_pgoff in mremap()
    - LP: #764685
  * p54usb: IDs for two new devices
    - LP: #764685
  * b43: allocate receive buffers big enough for max frame len + offset
    - LP: #764685
  * Bluetooth: sco: fix information leak to userspace
    - LP: #764685
  * bridge: netfilter: fix information leak
    - LP: #764685
  * Bluetooth: bnep: fix buffer overflow
    - LP: #764685
  * Bluetooth: add support for Apple MacBook Pro 8,2
    - LP: #764685
  * Treat writes as new when holes span across page boundaries
    - LP: #764685
  * char/tpm: Fix unitialized usage of data buffer
    - LP: #764685
  * netfilter: ip_tables: fix infoleak to userspace
    - LP: #764685
  * netfilter: arp_tables: fix infoleak to userspace
    - LP: #764685
  * netfilter: ipt_CLUSTERIP: fix buffer overflow
    - LP: #764685
  * ipv6: netfilter: ip6_tables: fix infoleak to userspace
    - LP: #764685
  * mfd: ab3100: world-writable debugfs *_priv files
    - LP: #764685
  * drivers/rtc/rtc-ds1511.c: world-writable sysfs nvram file
    - LP: #764685
  * drivers/misc/ep93xx_pwm.c: world-writable sysfs files
    - LP: #764685
  * econet: 4 byte infoleak to the network
    - LP: #764685
  * sound/oss: remove offset from load_patch callbacks
    - LP: #764685
  * sound: oss: midi_synth: check get_user() return value
    - LP: #764685
  * repair gdbstub to match the gdbserial protocol specification
    - LP: #764685
  * gro: Reset dev pointer on reuse
    - LP: #764685
  * gro: reset skb_iif on reuse
    - LP: #764685
  * x86, amd-ucode: Remove needless log messages
    - LP: #764685
  * x86, microcode, AMD: Extend ucode size verification
    - LP: #764685
  * powerpc/kexec: Add ifdef CONFIG_PPC_STD_MMU_64 to PPC64 code
    - LP: #764685
  * powerpc: Fix default_machine_crash_shutdown #ifdef botch
    - LP: #764685
  * Squashfs: handle corruption of directory structure
    - LP: #764685
  * sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set
    - LP: #764685
  * atm/solos-pci: Don't include frame pseudo-header on transmit hex-dump
    - LP: #764685
  * ext4: fix credits computing for indirect mapped files
    - LP: #764685
  * nfsd: fix auth_domain reference leak on nlm operations
    - LP: #764685
  * CAN: Use inode instead of kernel address for /proc file
    - LP: #764685
  * exec: make argv/envp memory visible to oom-killer
    - LP: #764685
  * exec: copy-and-paste the fixes into compat_do_execve() paths
    - LP: #764685
  * xfs: zero proper structure size for geometry calls
    - LP: #764685
  * Linux 2.6.32.37
    - LP: #764685
  * Linux 2.6.32.38
    - LP: #764685

Available diffs

Superseded in lucid-proposed on 2011-04-25
linux-ec2 (2.6.32-315.29) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.32-31.61

  [ Ubuntu: 2.6.32-31.61 ]

  * Release Tracking Bug
    - LP: #754842
  * x86, quirk: Fix SB600 revision check
    - LP: #742056

Available diffs

Obsolete in karmic-security on 2013-03-04
Obsolete in karmic-updates on 2013-03-04
Deleted in karmic-proposed on 2013-03-04 (Reason: moved to -updates)
linux-ec2 (2.6.31-308.29) karmic-proposed; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #737761

  [ Brad Figg ]

  * Rebased to 2.6.31-23.75

  [ Ubuntu: 2.6.31-23.75 ]

  * Release Tracking Bug
    - LP: #737663
  * do_exit(): make sure that we run with get_fs() == USER_DS,
    CVE-2010-4258
    - LP: #723945
    - CVE-2010-4258
  * xfs: always use iget in bulkstat
    - LP: #692848
  * x25: Prevent crashing when parsing bad X.25 facilities CVE-2010-4164
    - LP: #731199
    - CVE-2010-4164
  * Revised [CVE-2010-4345 Karmic] install_special_mapping skips
    security_file_mmap check. CVE-2010-4346
    - LP: #731971
    - CVE-2010-4346
  * econet: Fix crash in aun_incoming(). CVE-2010-4342
    - LP: #736394
    - CVE-2010-4342
 -- Brad Figg <email address hidden>   Fri, 18 Mar 2011 11:55:37 -0700

Available diffs

Superseded in lucid-proposed on 2011-04-19
linux-ec2 (2.6.32-315.28) lucid-proposed; urgency=low

  [ Upstream Kernel Changes ]

  * Rebased to 2.6.32-31.60

  [ Ubuntu: 2.6.32-31.60 ]

  * Release Tracking Bug
    - LP: #734950
  * SAUCE: Clear new_profile in error path
    - LP: #732700
  * [Config] CONFIG_BOOT_PRINTK_DELAY=y
    - LP: #733191
  * Revert "drm/radeon/bo: add some fallback placements for VRAM only
    objects."
    - LP: #652934
  * drm/radeon: fall back to GTT if bo creation/validation in VRAM fails.
    - LP: #652934
  * drm/radeon/kms: Fix retrying ttm_bo_init() after it failed once.
    - LP: #652934
  * xfs: always use iget in bulkstat
    - LP: #692848
  * drm/radeon/kms: make the mac rv630 quirk generic
    - LP: #728687
  * drm/radeon/kms: add pll debugging output
    - LP: #728687
  * drm/radeon: remove 0x4243 pci id
    - LP: #728687
  * drm/radeon/kms: fix s/r issues with bios scratch regs
    - LP: #728687
  * drm/i915/lvds: Add AOpen i915GMm-HFS to the list of false-positive LVDS
    - LP: #728687
  * drm/i915: Add dependency on CONFIG_TMPFS
    - LP: #728687
  * Linux 2.6.32.29+drm33.14
    - LP: #728687
  * NFSD: memory corruption due to writing beyond the stat array
    - LP: #728687
  * mptfusion: mptctl_release is required in mptctl.c
    - LP: #728687
  * mptfusion: Fix Incorrect return value in mptscsih_dev_reset
    - LP: #728687
  * ocfs2_connection_find() returns pointer to bad structure
    - LP: #728687
  * x25: decrement netdev reference counts on unload
    - LP: #728687
  * x86, hpet: Disable per-cpu hpet timer if ARAT is supported
    - LP: #728687
  * OHCI: work around for nVidia shutdown problem
    - LP: #728687
  * x86/pvclock: Zero last_value on resume
    - LP: #728687
  * av7110: check for negative array offset
    - LP: #728687
  * CRED: Fix get_task_cred() and task_state() to not resurrect dead
    credentials
    - LP: #728687
  * bonding/vlan: Avoid mangled NAs on slaves without VLAN tag insertion
    - LP: #728687
  * CRED: Fix kernel panic upon security_file_alloc() failure.
    - LP: #728687
  * CRED: Fix BUG() upon security_cred_alloc_blank() failure
    - LP: #728687
  * CRED: Fix memory and refcount leaks upon security_prepare_creds()
    failure
    - LP: #728687
  * sendfile(): check f_op.splice_write() rather than f_op.sendpage()
    - LP: #728687
  * isdn: hisax: Replace the bogus access to irq stats
    - LP: #728687
  * ixgbe: add support for 82599 based Express Module X520-P2
    - LP: #728687
  * ixgbe: prevent speculative processing of descriptors before ready
    - LP: #728687
  * scsi_dh_alua: add netapp to dev list
    - LP: #728687
  * scsi_dh_alua: Add IBM Power Virtual SCSI ALUA device to dev list
    - LP: #728687
  * dm raid1: fail writes if errors are not handled and log fails
    - LP: #728687
  * GFS2: Fix bmap allocation corner-case bug
    - LP: #728687
  * dm raid1: fix null pointer dereference in suspend
    - LP: #728687
  * sunrpc/cache: fix module refcnt leak in a failure path
    - LP: #728687
  * be2net: Maintain tx and rx counters in driver
    - LP: #728687
  * tcp: Make TCP_MAXSEG minimum more correct.
    - LP: #728687
  * nfsd: correctly handle return value from nfsd_map_name_to_*
    - LP: #728687
  * s390: remove task_show_regs
    - LP: #728687
  * PM / Hibernate: Return error code when alloc_image_page() fails
    - LP: #728687
  * fs/partitions: Validate map_count in Mac partition tables
    - LP: #728687
  * ALSA: HDA: Add position_fix quirk for an Asus device
    - LP: #718402, #728687
  * ALSA: caiaq - Fix possible string-buffer overflow
    - LP: #728687
  * radio-aimslab.c needs #include <linux/delay.h>
    - LP: #728687
  * ARM: Ensure predictable endian state on signal handler entry
    - LP: #728687
  * acer-wmi: Fix capitalisation of GUID
    - LP: #728687
  * eCryptfs: Copy up lower inode attrs in getattr
    - LP: #728687
  * platform: x86: acer-wmi: world-writable sysfs threeg file
    - LP: #728687
  * platform: x86: asus_acpi: world-writable procfs files
    - LP: #728687
  * platform: x86: tc1100-wmi: world-writable sysfs wireless and jogdial
    files
    - LP: #728687
  * genirq: Disable the SHIRQ_DEBUG call in request_threaded_irq for now
    - LP: #728687
  * usb: musb: omap2430: fix kernel panic on reboot
    - LP: #728687
  * USB: add quirks entry for Keytouch QWERTY Panel
    - LP: #728687
  * USB: Add Samsung SGH-I500/Android modem ID switch to visor driver
    - LP: #728687
  * USB: Add quirk for Samsung Android phone modem
    - LP: #728687
  * p54pci: update receive dma buffers before and after processing
    - LP: #728687
  * sierra: add new ID for Airprime/Sierra USB IP modem
    - LP: #728687
  * staging: usbip: vhci: update reference count for usb_device
    - LP: #728687
  * staging: usbip: vhci: give back URBs from in-flight unlink requests
    - LP: #728687
  * staging: usbip: vhci: refuse to enqueue for dead connections
    - LP: #728687
  * staging: usbip: vhci: use urb->dev->portnum to find port
    - LP: #728687
  * epoll: prevent creating circular epoll structures
    - LP: #728687
  * ldm: corrupted partition table can cause kernel oops
    - LP: #728687
  * md: correctly handle probe of an 'mdp' device.
    - LP: #728687
  * x86 quirk: Fix polarity for IRQ0 pin2 override on SB800 systems
    - LP: #728687
  * xhci: Avoid BUG() in interrupt context
    - LP: #728687
  * xhci: Clarify some expressions in the TRB math
    - LP: #728687
  * xhci: Fix errors in the running total calculations in the TRB math
    - LP: #728687
  * xhci: Fix an error in count_sg_trbs_needed()
    - LP: #728687
  * x25: Do not reference freed memory.
    - LP: #728687
  * Linux 2.6.32.30
    - LP: #728687
  * Linux 2.6.32.31
    - LP: #728687
  * Ocfs2/refcounttree: Fix a bug for refcounttree to writeback clusters in
    a right number.
    - LP: #731226
  * mfd: Fix NULL pointer due to non-initialized ucb1x00-ts absinfo
    - LP: #731226
  * x86: Use u32 instead of long to set reset vector back to 0
    - LP: #731226
  * fuse: fix hang of single threaded fuseblk filesystem
    - LP: #731226
  * clockevents: Prevent oneshot mode when broadcast device is periodic
    - LP: #731226
  * ext2: Fix link count corruption under heavy link+rename load
    - LP: #731226
  * sctp: Fix oops when sending queued ASCONF chunks
    - LP: #731226
  * virtio: set pci bus master enable bit
    - LP: #731226
  * netxen: fix set mac addr
    - LP: #731226
  * HID: add support for Acan FG-8100 barcode reader
    - LP: #731226
  * p54usb: add Senao NUB-350 usbid
    - LP: #731226
  * dccp: fix oops on Reset after close
    - LP: #731226
  * e1000e: disable broken PHY wakeup for ICH10 LOMs, use MAC wakeup
    instead
    - LP: #731226
  * r8169: disable ASPM
    - LP: #731226
  * usb: iowarrior: don't trust report_size for buffer size
    - LP: #731226
  * arp_notify: unconditionally send gratuitous ARP for
    NETDEV_NOTIFY_PEERS.
    - LP: #731226
  * CIFS: Fix oplock break handling (try #2)
    - LP: #731226
  * Linux 2.6.32.32
    - LP: #731226
 -- Stefan Bader <email address hidden>   Fri, 18 Mar 2011 18:23:16 +0100

Available diffs

Superseded in lucid-security on 2011-05-31
Superseded in lucid-updates on 2011-05-31
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-314.27) lucid-proposed; urgency=low

  [ Steve Conklin ]

  * Release Tracking Bug
    - LP: #728089

  [ Stefan Bader ]

  * SAUCE: XEN: Import f9dee15f07cc3e6625734f3cf667054a5ff5ac2b
    - LP: #717177
  * SAUCE: XEN: Import 65d64895d4ed4250448ac6906de25777470b5180
    - LP: #717177
  * SAUCE: XEN: Import cf383fb0c59287a81d6e71ebb7fafffd104a3983
    - LP: #717177
  * SAUCE: XEN: Import ffd91af58e011821332cc56019d1709f7d9a8a54
    - LP: #717177
  * SAUCE: XEN: Import 97a21d3ae6477ef00e39f21e47ce767a8ca1a22a
    - LP: #717177
  * SAUCE: XEN: Import b5d6492343e5897eba863ed1d08ca51552657d1f
    - LP: #717177
  * SAUCE: XEN: Import 9fb860778805809529f4c27b896370f2a945e945
    - LP: #717177
  * SAUCE: XEN: Import 20af80bf13116eb2d0d4bd6a307a4260cd277095
    - LP: #717177
  * SAUCE: XEN: Import 481710c9b5d154e81d388e9460fa2851a4ea7c94
    - LP: #717177
  * SAUCE: XEN: Import 9512754e274895426d5305d09a4c667d8621f420
    - LP: #717177
  * SAUCE: XEN: Update import 2444b629ee518745f54c2f7cf9e4de3d48e834cb
    - LP: #717177
  * SAUCE: XEN: Import 28995d0c0ef1958ecffdcc80091c46233daea29a
    - LP: #717177
  * SAUCE: XEN: Import fc04955bae3662eecaa8216694fd82b36256cfc6
    - LP: #717177
  * SAUCE: XEN: Import 4bbd3ea6754dc11fdb96a8ab9dfa13e24b1a6599
    - LP: #717177
  * SAUCE: XEN: Import 5a6ca212d5400dfcd8734da1f282b83a01a04d9e
    - LP: #717177
  * SAUCE: XEN: Import cde0c191416d1470a2aa30d893f7ea987363386b
    - LP: #717177
  * SAUCE: XEN: Import fe304738902627ec07c5195664ddb7a6f7750272
    - LP: #717177
  * SAUCE: XEN: Import 941f392437b3005d2d220a7254d48fbc342b6829
    - LP: #717177
  * SAUCE: XEN: Import 7ad50ac196fde9cf57a55b5908764227d9d7f8e6
    - LP: #717177
  * SAUCE: XEN: Import eeb31bcc98f8497dc83c5e7c8ef5c9a9438cb689
    - LP: #717177
  * SAUCE: XEN: Import d5324680becdc93bd37cbbc9581c727959c57ad9
    - LP: #717177
  * SAUCE: XEN: Import f2bb11b1573330fca6ddba33a5cff3695d1a690c
    - LP: #717177
  * SAUCE: XEN: Import 7e3ff59bf997c554ebd14b17b9ba4246448e80c7
    - LP: #717177
  * SAUCE: XEN: Import c19aaf77a85ba61de84de2bf6922e269d78223a0
    - LP: #717177
  * SAUCE: XEN: Import 77b49ffdcd22f66180778085716512d508ab2617
    - LP: #717177
  * SAUCE: XEN: Import 34ebf644aafc699db42a5c2d109b6f057ee6b4f3
    - LP: #717177
  * SAUCE: XEN: Import c4dad435c692830c634ab7001b62b6a90b5ae530
    - LP: #717177
  * SAUCE: XEN: Import 52c82b295371158c61f8b06d7a03daaaeedfea00
    - LP: #717177
  * SAUCE: XEN: Import f3a8bea7094f487ed6139a6b6254d0e4147a866d
    - LP: #717177
  * SAUCE: XEN: Import 2e911f0f7f1590fc8c4cb2a331ac1c1799a8385b
    - LP: #717177
  * SAUCE: XEN: Import 7aa0c2220a675805f38b43313228544a0cce7488
    - LP: #717177
  * SAUCE: XEN: Import a805c0009da4770f72dab3f3c71cd263f79894aa
    - LP: #717177
  * SAUCE: XEN: Import 26ab8408157fbbc669e1aab1f271bb3cb1c433d0
    - LP: #717177
  * SAUCE: XEN: Import ca51d9445c9b51d6b1c800c9c04e5472d55f0845
    - LP: #717177
  * SAUCE: XEN: Import 831d52bc153971b70e64eccfbed2b232394f22f8
    - LP: #723819

  [ Upstream Kernel Changes ]

  * Rebased to 2.6.32-30.59

  [ Ubuntu: 2.6.32-30.59 ]

  * Release Tracking Bug
    - LP: #727336
  * [Config] CONFIG_IRQ_TIME_ACCOUNTING=n
    - LP: #723819
  * virtio_net: Add schedule check to napi_enable call
    - LP: #579276
  * NFS: fix the return value of nfs_file_fsync()
    - LP: #585657
  * block: check for proper length of iov entries earlier in
    blk_rq_map_user_iov(), CVE-2010-4163
    - LP: #721504
    - CVE-2010-4163
  * filter: make sure filters dont read uninitialized memory
    - LP: #721282
    - CVE-2010-4158
  * tty: Make tiocgicount a handler, CVE-2010-4076, CVE-2010-4077
    - LP: #720189
    - CVE-2010-4077
  * staging: usbip: remove double giveback of URB
    - LP: #723819
  * USB: EHCI: ASPM quirk of ISOC on AMD SB800
    - LP: #723819
  * rt2x00: add device id for windy31 usb device
    - LP: #723819
  * ALSA: snd-usb-us122l: Fix missing NULL checks
    - LP: #723819
  * hwmon: (via686a) Initialize fan_div values
    - LP: #723819
  * USB: serial: handle Data Carrier Detect changes
    - LP: #723819
  * USB: CP210x Add two device IDs
    - LP: #723819
  * USB: CP210x Removed incorrect device ID
    - LP: #723819
  * USB: usb-storage: unusual_devs update for Cypress ATACB
    - LP: #723819
  * USB: usb-storage: unusual_devs update for TrekStor DataStation maxi g.u
    external hard drive enclosure
    - LP: #723819
  * USB: usb-storage: unusual_devs entry for CamSport Evo
    - LP: #723819
  * USB: usb-storage: unusual_devs entry for Coby MP3 player
    - LP: #723819
  * USB: serial: Updated support for ICOM devices
    - LP: #723819
  * USB: adding USB support for Cinterion's HC2x, EU3 and PH8 products
    - LP: #723819
  * USB: EHCI: ASPM quirk of ISOC on AMD Hudson
    - LP: #723819
  * USB: EHCI: fix DMA deallocation bug
    - LP: #723819
  * USB: g_printer: fix bug in module parameter definitions
    - LP: #723819
  * USB: io_edgeport: fix the reported firmware major and minor
    - LP: #723819
  * USB: ti_usb: fix module removal
    - LP: #723819
  * USB: Storage: Add unusual_devs entry for VTech Kidizoom
    - LP: #723819
  * USB: ftdi_sio: add ST Micro Connect Lite uart support
    - LP: #723819
  * USB: cdc-acm: Adding second ACM channel support for Nokia N8
    - LP: #723819
  * USB: ftdi_sio: Add VID=0x0647, PID=0x0100 for Acton Research
    spectrograph
    - LP: #723819
  * USB: prevent buggy hubs from crashing the USB stack
    - LP: #723819
  * staging: comedi: add support for newer jr3 1-channel pci board
    - LP: #723819
  * staging: comedi: ni_labpc: Use shared IRQ for PCMCIA card
    - LP: #723819
  * Staging: hv: fix sysfs symlink on hv block device
    - LP: #723819
  * staging: hv: Enable sending GARP packet after live migration
    - LP: #723819
  * hvc_iucv: allocate memory buffers for IUCV in zone DMA
    - LP: #723819
  * iwlagn: enable only rfkill interrupt when device is down
    - LP: #723819
  * ath9k: Fix bug in delimiter padding computation
    - LP: #723819
  * correct vdso version string
    - LP: #723819
  * fix medium error problems with some arrays which can cause data
    corruption
    - LP: #723819
  * libsas: fix runaway error handler problem
    - LP: #723819
  * mpt2sas: Fix device removal handshake for zoned devices
    - LP: #723819
  * mpt2sas: Correct resizing calculation for max_queue_depth
    - LP: #723819
  * mpt2sas: Kernel Panic during Large Topology discovery
    - LP: #723819
  * radio-aimslab.c: Fix gcc 4.5+ bug
    - LP: #723819
  * em28xx: Fix audio input for Terratec Grabby
    - LP: #723819
  * ALSA : au88x0 - Limit number of channels to fix Oops via OSS emu
    - LP: #723819
  * ALSA: HDA: Fix dmesg output of HDMI supported bits
    - LP: #723819
  * ALSA: hda - Fix memory leaks in conexant jack arrays
    - LP: #723819
  * input: bcm5974: Add support for MacBookAir3
    - LP: #723819
  * ALSA: hrtimer: handle delayed timer interrupts
    - LP: #723819
  * ASoC: WM8990: msleep() takes milliseconds not jiffies
    - LP: #723819
  * ASoC: Blackfin AC97: fix build error after multi-component update
    - LP: #723819
  * NFS: Fix "kernel BUG at fs/aio.c:554!"
    - LP: #723819
  * rtc-cmos: fix suspend/resume
    - LP: #723819
  * iwlagn: Re-enable RF_KILL interrupt when down
    - LP: #723819
  * rapidio: fix hang on RapidIO doorbell queue full condition
    - LP: #723819
  * PCI: pci-stub: ignore zero-length id parameters
    - LP: #723819
  * virtio: remove virtio-pci root device
    - LP: #723819
  * ds2760_battery: Fix calculation of time_to_empty_now
    - LP: #723819
  * p54: fix sequence no. accounting off-by-one error
    - LP: #723819
  * i2c: Unregister dummy devices last on adapter removal
    - LP: #723819
  * serial: unbreak billionton CF card
    - LP: #723819
  * ptrace: use safer wake up on ptrace_detach()
    - LP: #723819
  * x86, mtrr: Avoid MTRR reprogramming on BP during boot on UP platforms
    - LP: #723819
  * fix jiffy calculations in calibrate_delay_direct to handle overflow
    - LP: #723819
  * USB: serial: pl2303: Hybrid reader Uniform HCR331
    - LP: #723819
  * drivers: update to pl2303 usb-serial to support Motorola cables
    - LP: #723819
  * klist: Fix object alignment on 64-bit.
    - LP: #723819
  * powerpc: Fix some 6xx/7xxx CPU setup functions
    - LP: #723819
  * parisc : Remove broken line wrapping handling pdc_iodc_print()
    - LP: #723819
  * kernel/smp.c: fix smp_call_function_many() SMP race
    - LP: #723819
  * hostap_cs: fix sleeping function called from invalid context
    - LP: #723819
  * md: fix regression with re-adding devices to arrays with no metadata
    - LP: #723819
  * pata_mpc52xx: inherit from ata_bmdma_port_ops
    - LP: #723819
  * TPM: Long default timeout fix
    - LP: #723819
  * tpm_tis: Use timeouts returned from TPM
    - LP: #723819
  * SELinux: define permissions for DCB netlink messages
    - LP: #723819
  * SELinux: do not compute transition labels on mountpoint labeled
    filesystems
    - LP: #723819
  * ieee80211: correct IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK macro
    - LP: #723819
  * dm: dont take i_mutex to change device size
    - LP: #723819
  * dm mpath: disable blk_abort_queue
    - LP: #723819
  * x86, mm: avoid possible bogus tlb entries by clearing prev mm_cpumask
    after switching mm
    - LP: #723819
  * usb: Realloc xHCI structures after a hub is verified.
    - LP: #723819
  * sched: Remove USER_SCHED
    - LP: #723819
  * sched: Remove remaining USER_SCHED code
    - LP: #723819
  * sched: Move sched_avg_update() to update_cpu_load()
    - LP: #723819
  * sched: Increment cache_nice_tries only on periodic lb
    - LP: #723819
  * sched: Try not to migrate higher priority RT tasks
    - LP: #723819
  * sched: Give CPU bound RT tasks preference
    - LP: #723819
  * sched: suppress RCU lockdep splat in task_fork_fair
    - LP: #723819
  * sched: fix RCU lockdep splat from task_group()
    - LP: #723819
  * sched: Do not consider SCHED_IDLE tasks to be cache hot
    - LP: #723819
  * sched: Set group_imb only a task can be pulled from the busiest cpu
    - LP: #723819
  * sched: Force balancing on newidle balance if local group has capacity
    - LP: #723819
  * sched: Drop group_capacity to 1 only if local group has extra capacity
    - LP: #723819
  * sched: Fix softirq time accounting
    - LP: #723819
  * sched: Consolidate account_system_vtime extern declaration
    - LP: #723819
  * sched: Remove unused PF_ALIGNWARN flag
    - LP: #723819
  * sched: Add a PF flag for ksoftirqd identification
    - LP: #723819
  * sched: Add IRQ_TIME_ACCOUNTING, finer accounting of irq time
    - LP: #723819
  * x86: Add IRQ_TIME_ACCOUNTING
    - LP: #723819
  * sched: Do not account irq time to current task
    - LP: #723819
  * sched: Remove irq time from available CPU power
    - LP: #723819
  * sched: Call tick_check_idle before __irq_enter
    - LP: #723819
  * sched: Export account_system_vtime()
    - LP: #723819
  * sched, cgroup: Fixup broken cgroup movement
    - LP: #723819
  * sched: Use group weight, idle cpu metrics to fix imbalances during idle
    - LP: #723819
  * sched: Fix cross-sched-class wakeup preemption
    - LP: #723819
  * sched: Fix volanomark performance regression
    - LP: #723819
  * sched: Fix idle balancing
    - LP: #723819
  * sched: Fix wake_affine() vs RT tasks
    - LP: #723819
  * sched: Remove some dead code
    - LP: #723819
  * kernel/user.c: add lock release annotation on free_user()
    - LP: #723819
  * Linux 2.6.32.29
    - LP: #723819
  * rds: Integer overflow in RDS cmsg handling, CVE-2010-4175
    - LP: #721455
    - CVE-2010-4175
 -- Stefan Bader <email address hidden>   Wed, 02 Mar 2011 14:59:29 +0100

Available diffs

Superseded in karmic-security on 2011-05-19
Superseded in karmic-updates on 2011-05-19
Deleted in karmic-proposed on 2011-05-20 (Reason: moved to -updates)
linux-ec2 (2.6.31-308.28) karmic-proposed; urgency=low

  [ Steve Conklin ]

  * Release Tracking Bug
    - LP: #726786
  * Rebased to 2.6.31-23.74

  [ Ubuntu: 2.6.31-23.74 ]

  * Release Tracking Bug
    - LP: #725232
  * bluetooth: Fix missing NULL check, CVE-2010-4242
    - LP: #714846
    - CVE-2010-4242
  * bio: take care not overflow page count when mapping/copying user data,
    CVE-2010-4162
    - LP: #721441
    - CVE-2010-4162
  * filter: make sure filters dont read uninitialized memory
    - LP: #721282
    - CVE-2010-4158
  * tty: Make tiocgicount a handler, CVE-2010-4076, CVE-2010-4077
    - LP: #720189
    - CVE-2010-4077
  * block: check for proper length of iov entries in blk_rq_map_user_iov(),
    CVE-2010-4163
    - LP: #721504
    - CVE-2010-4163
  * block: check for proper length of iov entries earlier in
    blk_rq_map_user_iov(), CVE-2010-4163
    - LP: #721504
    - CVE-2010-4163
  * rds: Integer overflow in RDS cmsg handling, CVE-2010-4175
    - LP: #721455
    - CVE-2010-4175
 -- Steve Conklin <email address hidden>   Mon, 28 Feb 2011 14:16:50 -0600

Available diffs

Superseded in lucid-security on 2011-03-08
Superseded in lucid-updates on 2011-03-08
Superseded in lucid-proposed on 2011-03-03
linux-ec2 (2.6.32-313.26) lucid-proposed; urgency=low

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #716657

  [ Brad Figg ]

  * Release Tracking Bug
    - LP: #712864

  [ Brad Figg ]

  * Rebased to 2.6.32-29.58

  [ Ubuntu: 2.6.32-29.58 ]

  * Release Tracking Bug
    - LP: #716551
  * net: fix rds_iovec page count overflow, CVE-2010-3865
    - LP: #709153
    - CVE-2010-3865
  * net: ax25: fix information leak to userland, CVE-2010-3875
    - LP: #710714
    - CVE-2010-3875
  * net: ax25: fix information leak to userland harder, CVE-2010-3875
    - LP: #710714
    - CVE-2010-3875
  * net: packet: fix information leak to userland, CVE-2010-3876
    - LP: #710714
    - CVE-2010-3876
  * net: tipc: fix information leak to userland, CVE-2010-3877
    - LP: #711291
    - CVE-2010-3877
  * inet_diag: Make sure we actually run the same bytecode we audited,
    CVE-2010-3880
    - LP: #711865
    - CVE-2010-3880

Available diffs

Superseded in karmic-security on 2011-03-17
Superseded in karmic-updates on 2011-03-17
Deleted in karmic-proposed on 2013-02-27 (Reason: moved to -updates)
linux-ec2 (2.6.31-307.27) karmic-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.31-22.73

  [ Ubuntu: 2.6.31-22.73 ]

  * Release Tracking Bug
    - LP: #716648
  * net: Limit socket I/O iovec total length to INT_MAX., CVE-2010-3859
    - LP: #708839, #711855
    - CVE-2010-4160
  * net: Truncate recvfrom and sendto length to INT_MAX., CVE-2010-3859
    - LP: #708839, #711855
    - CVE-2010-4160
  * net: fix rds_iovec page count overflow, CVE-2010-3865
    - LP: #709153
    - CVE-2010-3865
  * net: ax25: fix information leak to userland, CVE-2010-3875
    - LP: #710714
    - CVE-2010-3875
  * net: ax25: fix information leak to userland harder, CVE-2010-3875
    - LP: #710714
    - CVE-2010-3875
  * can-bcm: fix minor heap overflow
    - LP: #710680
    - CVE-2010-3874
  * memory corruption in X.25 facilities parsing, CVE-2010-3873
    - LP: #709372
    - CVE-2010-3873
  * net: packet: fix information leak to userland, CVE-2010-3876
    - LP: #710714
    - CVE-2010-3876
  * net: tipc: fix information leak to userland, CVE-2010-3877
    - LP: #711291
    - CVE-2010-3877
  * KVM: VMX: fix vmx null pointer dereference on debug register access,
    CVE-2010-0435
    - LP: #712615
    - CVE-2010-0435
  * gdth: integer overflow in ioctl, CVE-2010-4157
    - LP: #711797
    - CVE-2010-4157
  * posix-cpu-timers: workaround to suppress the problems with mt exec,
    CVE-2010-4248
    - LP: #712609
    - CVE-2010-4248
  * ALSA: sound/pci/rme9652: prevent reading uninitialized stack memory,
    CVE-2010-4080, CVE-2010-4081
    - LP: #712723, #712737
    - CVE-2010-4081
  * drivers/video/via/ioctl.c: prevent reading uninitialized stack memory,
    CVE-2010-4082
    - LP: #712744
    - CVE-2010-4082
  * sys_semctl: fix kernel stack leakage, CVE-2010-4083
    - LP: #712749
    - CVE-2010-4083
  * inet_diag: Make sure we actually run the same bytecode we audited,
    CVE-2010-3880
    - LP: #711865
    - CVE-2010-3880
 -- Stefan Bader <email address hidden>   Fri, 11 Feb 2011 09:22:20 +0100

Available diffs

Superseded in lucid-proposed on 2011-02-15
linux-ec2 (2.6.32-313.25) lucid-proposed; urgency=low

  [ Brad Figg ]

  * Tracking Bug
    - LP: #708890

  [ Andrew Dickinson ]

  * SAUCE: sched: Prevent divide by zero when cpu_power is 0
    - LP: #614853

  [ Brad Figg ]

  * Rebased to 2.6.32-29.57

  [ Stefan Bader ]

  * SAUCE: sched: Try tp catch cpu_power being set to 0
    - LP: #614853

  [ Upstream Kernel Changes ]

  * SRU: xen: events: do not unmask event channels on resume
    - LP: #681083

  [ Ubuntu: 2.6.32-29.57 ]

  * Tracking Bug
    - LP: #708864
  * [Config] Set CONFIG_NR_CPUS=256 for amd64 server
    - LP: #706058
  * Input: i8042 - introduce 'notimeout' blacklist for Dell Vostro V13
    - LP: #380126
  * tun: avoid BUG, dump packet on GSO errors
    - LP: #698883
  * TTY: Fix error return from tty_ldisc_open()
    - LP: #705045
  * x86, hotplug: Use mwait to offline a processor, fix the legacy case
    - LP: #705045
  * fuse: verify ioctl retries
    - LP: #705045
  * fuse: fix ioctl when server is 32bit
    - LP: #705045
  * ALSA: hda: Use model=lg quirk for LG P1 Express to enable playback and
    capture
    - LP: #595482, #705045
  * nohz: Fix printk_needs_cpu() return value on offline cpus
    - LP: #705045
  * nohz: Fix get_next_timer_interrupt() vs cpu hotplug
    - LP: #705045
  * nfsd: Fix possible BUG_ON firing in set_change_info
    - LP: #705045
  * NFS: Fix fcntl F_GETLK not reporting some conflicts
    - LP: #705045
  * sunrpc: prevent use-after-free on clearing XPT_BUSY
    - LP: #705045
  * hwmon: (adm1026) Allow 1 as a valid divider value
    - LP: #705045
  * hwmon: (adm1026) Fix setting fan_div
    - LP: #705045
  * amd64_edac: Fix interleaving check
    - LP: #705045
  * IB/uverbs: Handle large number of entries in poll CQ
    - LP: #705045
  * PM / Hibernate: Fix PM_POST_* notification with user-space suspend
    - LP: #705045
  * ACPICA: Fix Scope() op in module level code
    - LP: #705045
  * ACPI: EC: Add another dmi match entry for MSI hardware
    - LP: #705045
  * orinoco: fix TKIP countermeasure behaviour
    - LP: #705045
  * orinoco: clear countermeasure setting on commit
    - LP: #705045
  * x86, amd: Fix panic on AMD CPU family 0x15
    - LP: #705045
  * md: fix bug with re-adding of partially recovered device.
    - LP: #705045
  * tracing: Fix panic when lseek() called on "trace" opened for writing
    - LP: #705045
  * x86, gcc-4.6: Use gcc -m options when building vdso
    - LP: #705045
  * x86: Enable the intr-remap fault handling after local APIC setup
    - LP: #705045
  * x86, vt-d: Handle previous faults after enabling fault handling
    - LP: #705045
  * x86, vt-d: Fix the vt-d fault handling irq migration in the x2apic mode
    - LP: #705045
  * x86, vt-d: Quirk for masking vtd spec errors to platform error handling
    logic
    - LP: #705045
  * hvc_console: Fix race between hvc_close and hvc_remove
    - LP: #705045
  * hvc_console: Fix race between hvc_close and hvc_remove, again
    - LP: #705045
  * HID: hidraw: fix window in hidraw_release
    - LP: #705045
  * bfa: fix system crash when reading sysfs fc_host statistics
    - LP: #705045
  * net: release dst entry while cache-hot for GSO case too
    - LP: #705045
  * install_special_mapping skips security_file_mmap check.
    - LP: #705045
  * USB: misc: uss720.c: add another vendor/product ID
    - LP: #705045
  * USB: ftdi_sio: Add D.O.Tec PID
    - LP: #705045
  * USB: usb-storage: unusual_devs entry for the Samsung YP-CP3
    - LP: #705045
  * p54usb: add 5 more USBIDs
    - LP: #705045
  * p54usb: New USB ID for Gemtek WUBI-100GW
    - LP: #705045
  * sound: Prevent buffer overflow in OSS load_mixer_volumes
    - LP: #705045
  * mv_xor: fix race in tasklet function
    - LP: #705045
  * ima: fix add LSM rule bug
    - LP: #705045
  * ALSA: hda: Use LPIB for Dell Latitude 131L
    - LP: #530346, #705045
  * ALSA: hda: Use LPIB quirk for Dell Inspiron m101z/1120
    - LP: #705045
  * block: Deprecate QUEUE_FLAG_CLUSTER and use queue_limits instead
    - LP: #705045
  * sctp: Fix a race between ICMP protocol unreachable and connect()
    - LP: #705045
  * posix-cpu-timers: workaround to suppress the problems with mt exec
    - LP: #705045
  * Linux 2.6.32.28
    - LP: #705045
  * dell-laptop: Add another Dell laptop family to the DMI whitelist
    - LP: #693078
  * dell-laptop: Add another Dell laptop family to the DMI whitelist
    - LP: #693078
  * drm/ttm: Clear the ghost cpu_writers flag on
    ttm_buffer_object_transfer.
    - LP: #708769
  * drm/kms: remove spaces from connector names (v2)
    - LP: #708769
  * Linux 2.6.32.28+drm33.13
    - LP: #708769

  [ Ubuntu: 2.6.32-28.56 ]

  * Tracking Bug
    - LP: #705565
  * Just a build number increment for a new upload. There was an issue
    in the previous upload that prevented ARMEL from building. The
    issue has been resolved in the PPA and a new upload should produce
    the requisite images.

  [ Ubuntu: 2.6.32-28.55 ]

  * Another version bump because of abi check failure
  * Tracking Bug
    - LP: #699885

  [ Ubuntu: 2.6.32-28.54 ]

  * Another version bump because of upload failure

  [ Ubuntu: 2.6.32-28.53 ]

  * Another version bump because of upload failure
 -- Brad Figg <email address hidden>   Wed, 19 Jan 2011 12:23:49 -0800

Available diffs

Superseded in lucid-security on 2011-03-02
Superseded in lucid-updates on 2011-03-02
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-312.24) lucid-proposed; urgency=low

  [ Brad Figg ]

  * Tracking bug
  - LP: #698345

  [ Brad Figg ]

  * Rebased to 2.6.32-28.52

  [ Ubuntu: 2.6.32-28.52 ]


  [ Ubuntu: 2.6.32-28.51 ]

  * bumped version due to build fail

  [ Ubuntu: 2.6.32-28.50 ]

  * SAUCE: Change nodelayacct boot parameter polarity.
    - LP: #493156
  * [Config] CONFIG_TASK_DELAY_ACCT=y
    - LP: #493156
  * ipc: initialize structure memory to zero for compat functions
  * tcp: Increase TCP_MAXSEG socket option minimum.
    - CVE-2010-4165
  * perf_events: Fix perf_counter_mmap() hook in mprotect()
    - CVE-2010-4169
  * af_unix: limit unix_tot_inflight
    - CVE-2010-4249
  * AppArmor: fix the upper bound check for the next/check table
    - LP: #581525
  * NFS: Fix panic after nfs_umount()
    - LP: #683938
  * block: Ensure physical block size is unsigned int
    - LP: #688669
  * block: limit vec count in bio_kmalloc() and bio_alloc_map_data()
    - LP: #688669
  * block: take care not to overflow when calculating total iov length
    - LP: #688669
  * block: check for proper length of iov entries in blk_rq_map_user_iov()
    - LP: #688669
  * jme: Fix PHY power-off error
    - LP: #688669
  * irda: Fix parameter extraction stack overflow
    - LP: #688669
  * irda: Fix heap memory corruption in iriap.c
    - LP: #688669
  * i2c-pca-platform: Change device name of request_irq
    - LP: #688669
  * microblaze: Fix build with make 3.82
    - LP: #688669
  * Staging: asus_oled: fix up some sysfs attribute permissions
    - LP: #688669
  * Staging: asus_oled: fix up my fixup for some sysfs attribute
    permissions
    - LP: #688669
  * Staging: line6: fix up some sysfs attribute permissions
    - LP: #688669
  * hpet: fix unwanted interrupt due to stale irq status bit
    - LP: #688669
  * hpet: unmap unused I/O space
    - LP: #688669
  * olpc_battery: Fix endian neutral breakage for s16 values
    - LP: #688669
  * percpu: fix list_head init bug in __percpu_counter_init()
    - LP: #688669
  * um: remove PAGE_SIZE alignment in linker script causing kernel
    segfault.
    - LP: #688669
  * um: fix global timer issue when using CONFIG_NO_HZ
    - LP: #688669
  * numa: fix slab_node(MPOL_BIND)
    - LP: #688669
  * hwmon: (lm85) Fix ADT7468 frequency table
    - LP: #688669
  * mm: fix return value of scan_lru_pages in memory unplug
    - LP: #688669
  * mm: fix is_mem_section_removable() page_order BUG_ON check
    - LP: #688669
  * ssb: b43-pci-bridge: Add new vendor for BCM4318
    - LP: #688669
  * sgi-xpc: XPC fails to discover partitions with all nasids above 128
    - LP: #688669
  * xen: ensure that all event channels start off bound to VCPU 0
    - LP: #688669
  * xen: don't bother to stop other cpus on shutdown/reboot
    - LP: #688669
  * sys_semctl: fix kernel stack leakage
    - LP: #688669
  * net: NETIF_F_HW_CSUM does not imply FCoE CRC offload
    - LP: #688669
  * drivers/char/vt_ioctl.c: fix VT_OPENQRY error value
    - LP: #688669
  * viafb: use proper register for colour when doing fill ops
    - LP: #688669
  * eCryptfs: Clear LOOKUP_OPEN flag when creating lower file
    - LP: #688669
  * md/raid1: really fix recovery looping when single good device fails.
    - LP: #688669
  * md: fix return value of rdev_size_change()
    - LP: #688669
  * x86: AMD Northbridge: Verify NB's node is online
    - LP: #688669
  * tty: prevent DOS in the flush_to_ldisc
    - LP: #688669
  * TTY: restore tty_ldisc_wait_idle
    - LP: #688669
  * tty_ldisc: Fix BUG() on hangup
    - LP: #688669
  * TTY: ldisc, fix open flag handling
    - LP: #688669
  * KVM: VMX: fix vmx null pointer dereference on debug register access
    - LP: #688669
    - CVE-2010-0435
  * KVM: x86: fix information leak to userland
    - LP: #688669
  * firewire: cdev: fix information leak
    - LP: #688669
  * firewire: core: fix an information leak
    - LP: #688669
  * firewire: ohci: fix buffer overflow in AR split packet handling
    - LP: #688669
  * firewire: ohci: fix race in AR split packet handling
    - LP: #688669
  * ALSA: ac97: Apply quirk for Dell Latitude D610 binding Master and
    Headphone controls
    - LP: #669279, #688669
  * ALSA: HDA: Add an extra DAC for Realtek ALC887-VD
    - LP: #688669
  * ALSA: hda: Use "alienware" model quirk for another SSID
    - LP: #683695, #688669
  * netfilter: nf_conntrack: allow nf_ct_alloc_hashtable() to get highmem
    pages
    - LP: #688669
  * latencytop: fix per task accumulator
    - LP: #688669
  * mm/vfs: revalidate page->mapping in do_generic_file_read()
    - LP: #688669
  * bio: take care not overflow page count when mapping/copying user data
    - LP: #688669
  * libata-scsi passthru: fix bug which truncated LBA48 return values
    - LP: #688669
  * libata: fix NULL sdev dereference race in atapi_qc_complete()
    - LP: #688669
  * PCI: fix size checks for mmap() on /proc/bus/pci files
    - LP: #688669
  * PCI: fix offset check for sysfs mmapped files
    - LP: #688669
  * efifb: check that the base address is plausible on pci systems
    - LP: #688669
  * USB: gadget: AT91: fix typo in atmel_usba_udc driver
    - LP: #688669
  * USB: ftdi_sio: add device IDs for Milkymist One JTAG/serial
    - LP: #688669
  * USB: option: fix when the driver is loaded incorrectly for some Huawei
    devices.
    - LP: #688669
  * usb: misc: sisusbvga: fix information leak to userland
    - LP: #688669
  * usb: misc: iowarrior: fix information leak to userland
    - LP: #688669
  * usb: core: fix information leak to userland
    - LP: #688669
  * USB: EHCI: fix obscure race in ehci_endpoint_disable
    - LP: #688669
  * USB: storage: sierra_ms: fix sysfs file attribute
    - LP: #688669
  * USB: atm: ueagle-atm: fix up some permissions on the sysfs files
    - LP: #688669
  * USB: misc: cypress_cy7c63: fix up some sysfs attribute permissions
    - LP: #688669
  * USB: misc: usbled: fix up some sysfs attribute permissions
    - LP: #688669
  * USB: ftdi_sio: revert "USB: ftdi_sio: fix DTR/RTS line modes"
    - LP: #688669
  * USB: misc: trancevibrator: fix up a sysfs attribute permission
    - LP: #688669
  * USB: misc: usbsevseg: fix up some sysfs attribute permissions
    - LP: #688669
  * USB: ftdi_sio: Add ID for RT Systems USB-29B radio cable
    - LP: #688669
  * USB: serial: ftdi_sio: Vardaan USB RS422/485 converter PID added
    - LP: #688669
  * acpi-cpufreq: fix a memleak when unloading driver
    - LP: #688669
  * ACPI: EC: add Vista incompatibility DMI entry for Toshiba Satellite
    L355
    - LP: #688669
  * fuse: fix attributes after open(O_TRUNC)
    - LP: #688669
  * do_exit(): make sure that we run with get_fs() == USER_DS
    - LP: #688669
  * uml: disable winch irq before freeing handler data
    - LP: #688669
  * backlight: grab ops_lock before testing bd->ops
    - LP: #688669
  * nommu: yield CPU while disposing VM
    - LP: #688669
  * DECnet: don't leak uninitialized stack byte
    - LP: #688669
  * ARM: 6489/1: thumb2: fix incorrect optimisation in usracc
    - LP: #688669
  * ARM: 6482/2: Fix find_next_zero_bit and related assembly
    - LP: #688669
  * Staging: frontier: fix up some sysfs attribute permissions
    - LP: #688669
  * staging: rtl8187se: Change panic to warn when RF switch turned off
    - LP: #688669
  * HID: hidraw, fix a NULL pointer dereference in hidraw_ioctl
    - LP: #688669
  * HID: hidraw, fix a NULL pointer dereference in hidraw_write
    - LP: #688669
  * gianfar: Fix crashes on RX path (Was Re: [Bugme-new] [Bug 19692] New:
    linux-2.6.36-rc5 crash with gianfar ethernet at full line rate traffic)
    - LP: #688669
  * Limit sysctl_tcp_mem and sysctl_udp_mem initializers to prevent integer
    overflows.
    - LP: #688669
  * sparc64: Fix race in signal instruction flushing.
    - LP: #688669
  * sparc: Don't mask signal when we can't setup signal frame.
    - LP: #688669
  * sparc: Prevent no-handler signal syscall restart recursion.
    - LP: #688669
  * x86, UV: Delete unneeded boot messages
    - LP: #688669
  * x86, UV: Fix initialization of max_pnode
    - LP: #688669
  * drivers/video/efifb.c: support framebuffer for NVIDIA 9400M in MacBook
    Pro 5,1
    - LP: #688669
  * efifb: support the EFI framebuffer on more Apple hardware
    - LP: #688669
  * V4L/DVB (13154): uvcvideo: Handle garbage at the end of streaming
    interface descriptors
    - LP: #688669
  * Input: i8042 - add Sony VAIO VPCZ122GX to nomux list
    - LP: #688669
  * x25: Patch to fix bug 15678 - x25 accesses fields beyond end of packet.
    - LP: #688669
  * memory corruption in X.25 facilities parsing
    - LP: #688669
  * can-bcm: fix minor heap overflow
    - LP: #688669
  * V4L/DVB: ivtvfb: prevent reading uninitialized stack memory
    - LP: #688669
  * x25: Prevent crashing when parsing bad X.25 facilities
    - LP: #688669
  * crypto: padlock - Fix AES-CBC handling on odd-block-sized input
    - LP: #688669
  * x86-32: Separate 1:1 pagetables from swapper_pg_dir
    - LP: #688669
  * x86, mm: Fix CONFIG_VMSPLIT_1G and 2G_OPT trampoline
    - LP: #688669
  * x86-32: Fix dummy trampoline-related inline stubs
    - LP: #688669
  * rds: Integer overflow in RDS cmsg handling
    - LP: #688669
  * net: Truncate recvfrom and sendto length to INT_MAX.
    - LP: #688669
  * net: Limit socket I/O iovec total length to INT_MAX.
    - LP: #688669
  * nmi: fix clock comparator revalidation
    - LP: #688669
  * UV - XPC: pass nasid instead of nid to gru_create_message_queue
    - LP: #688669
  * x86: uv: XPC receive message reuse triggers invalid BUG_ON()
    - LP: #688669
  * X86: uv: xpc_make_first_contact hang due to not accepting ACTIVE state
    - LP: #688669
  * x86: uv: xpc NULL deref when mesq becomes empty
    - LP: #688669
  * Linux 2.6.32.27
    - LP: #688669
 -- Brad Figg <email address hidden>   Thu, 06 Jan 2011 14:07:09 -0800

Available diffs

Superseded in karmic-proposed on 2011-02-15
linux-ec2 (2.6.31-307.24) karmic-proposed; urgency=low

  [ Brad Figg ]

  - LP: #698298

  [ Brad Figg ]

  * Rebased to 2.6.31-22.71

  [ Ubuntu: 2.6.31-22.71 ]

  * ipc: initialize structure memory to zero for compat functions
  * tcp: Increase TCP_MAXSEG socket option minimum.
    - CVE-2010-4165
  * perf_events: Fix perf_counter_mmap() hook in mprotect()
    - CVE-2010-4169
  * af_unix: limit unix_tot_inflight
    - CVE-2010-4249
 -- Brad Figg <email address hidden>   Thu, 06 Jan 2011 11:31:12 -0800

Available diffs

Superseded in karmic-updates on 2011-02-23
Superseded in karmic-security on 2011-02-23
Superseded in karmic-proposed on 2011-01-11
linux-ec2 (2.6.31-307.23) karmic-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.31-22.70

  [ Upstream Kernel Changes ]

  * xen, compat: Test %rax for the syscall number, not %eax
    - CVE-2010-3301
  * xen, compat: Retruncate rax after ia32 syscall entry tracing
    - CVE-2010-3301

  [ Ubuntu: 2.6.31-22.70 ]

  * Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
    dereference"
  * Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
  * Revert "SAUCE: AF_ECONET prevent kernel stack overflow"
  * Btrfs: fix checks in BTRFS_IOC_CLONE_RANGE
    - CVE-2010-2538
  * xfs: validate untrusted inode numbers during lookup
    - CVE-2010-2943
  * xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
    - CVE-2010-2943
  * xfs: remove block number from inode lookup code
    - CVE-2010-2943
  * xfs: fix untrusted inode number lookup
    - CVE-2010-2943
  * drm/i915: Sanity check pread/pwrite
    - CVE-2010-2962
  * drm/i915: Rephrase pwrite bounds checking to avoid any potential
    overflow
    - CVE-2010-2962
  * tracing: Do not allow llseek to set_ftrace_filter
    - CVE-2010-3079
  * drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack
    memory
    - CVE-2010-3296
  * drivers/net/eql.c: prevent reading uninitialized stack memory
    - CVE-2010-3297
  * drivers/net/usb/hso.c: prevent reading uninitialized memory
    - CVE-2010-3298
  * setup_arg_pages: diagnose excessive argument size
    - CVE-2010-3858
  * net: clear heap allocation for ETHTOOL_GRXCLSRLALL
    - CVE-2010-3861
  * ipc: shm: fix information leak to userland
    - CVE-2010-4072
  * econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
    - CVE-2010-3849
  * econet: fix CVE-2010-3850
    - CVE-2010-3850
  * econet: fix CVE-2010-3848
    - CVE-2010-3848
 -- Stefan Bader <email address hidden>   Wed, 01 Dec 2010 11:17:04 +0100
Superseded in lucid-security on 2011-02-01
Superseded in lucid-updates on 2011-01-26
Deleted in lucid-proposed (Reason: moved to -updates)
linux-ec2 (2.6.32-311.23) lucid-proposed; urgency=low

  [ Stefan Bader ]

  * Rebased to 2.6.32-27.49

  [ Upstream Kernel Changes ]

  * xen, compat: Test %rax for the syscall number, not %eax
    - CVE-2010-3301
  * xen, compat: Retruncate rax after ia32 syscall entry tracing
    - CVE-2010-3301
  * xen: Match cpu_get_cap() with upstream changes
    - LP: #668380

  [ Ubuntu: 2.6.32-27.49 ]

  * Revert "SAUCE: AF_ECONET prevent kernel stack overflow"
  * Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
  * Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
    dereference"
  * [Config] Added be2net, be2scsi to udebs
    - LP: #628776
  * [Config] Use correct be2iscsi module name in d-i/modules/scsi-modules
    - LP: #628776
  * Revert "(pre-stable) ACPI: enable repeated PCIEXP wakeup by clearing
    PCIEXP_WAKE_STS on resume"
  * Revert "mm: (pre-stable) Move vma_stack_continue into mm.h"
  * x86, cpu: After uncapping CPUID, re-run CPU feature detection
    - LP: #668380
  * ALSA: sound/pci/rme9652: prevent reading uninitialized stack memory
    - LP: #668380
  * ALSA: oxygen: fix analog capture on Claro halo cards
    - LP: #668380
  * ALSA: hda - Add Dell Latitude E6400 model quirk
    - LP: #643891, #668380
  * ALSA: rawmidi: fix oops (use after free) when unloading a driver module
    - LP: #668380
  * USB: fix bug in initialization of interface minor numbers
    - LP: #668380
  * usb: musb: gadget: fix kernel panic if using out ep with FIFO_TXRX
    style
    - LP: #668380
  * usb: musb: gadget: restart request on clearing endpoint halt
    - LP: #668380
  * oprofile: Add Support for Intel CPU Family 6 / Model 29
    - LP: #668380
  * RDMA/cxgb3: Turn off RX coalescing for iWARP connections
    - LP: #668380
  * mmc: sdhci-s3c: fix NULL ptr access in sdhci_s3c_remove
    - LP: #668380
  * x86/amd-iommu: Set iommu configuration flags in enable-loop
    - LP: #668380
  * x86/amd-iommu: Fix rounding-bug in __unmap_single
    - LP: #668380
  * x86/amd-iommu: Work around S3 BIOS bug
    - LP: #668380
  * tracing/x86: Don't use mcount in pvclock.c
    - LP: #668380
  * tracing/x86: Don't use mcount in kvmclock.c
    - LP: #668380
  * v4l1: fix 32-bit compat microcode loading translation
    - LP: #668380
  * V4L/DVB: cx231xx: Avoid an OOPS when card is unknown (card=0)
    - LP: #668380
  * V4L/DVB (13966): DVB-T regression fix for saa7134 cards
    - LP: #668380
  * Input: joydev - fix JSIOCSAXMAP ioctl
    - LP: #668380
  * x86, hpet: Fix bogus error check in hpet_assign_irq()
    - LP: #668380
  * x86, irq: Plug memory leak in sparse irq
    - LP: #668380
  * ubd: fix incorrect sector handling during request restart
    - LP: #668380
  * ring-buffer: Fix typo of time extends per page
    - LP: #668380
  * dmaengine: fix interrupt clearing for mv_xor
    - LP: #668380
  * hrtimer: Preserve timer state in remove_hrtimer()
    - LP: #668380
  * i2c-pca: Fix waitforcompletion() return value
    - LP: #668380
  * wext: fix potential private ioctl memory content leak
    - LP: #668380
  * atl1: fix resume
    - LP: #668380
  * x86, AMD, MCE thresholding: Fix the MCi_MISCj iteration order
    - LP: #668380
  * De-pessimize rds_page_copy_user
    - LP: #668380
  * xfrm4: strip ECN and IP Precedence bits in policy lookup
    - LP: #668380
  * tcp: Fix >4GB writes on 64-bit.
    - LP: #668380
  * net: Fix the condition passed to sk_wait_event()
    - LP: #668380
  * Phonet: Correct header retrieval after pskb_may_pull
    - LP: #668380
  * net: Fix IPv6 PMTU disc. w/ asymmetric routes
    - LP: #668380
  * ip: fix truesize mismatch in ip fragmentation
    - LP: #668380
  * net: clear heap allocations for privileged ethtool actions
    - LP: #668380
  * tcp: Fix race in tcp_poll
    - LP: #668380
  * netxen: dont set skb->truesize
    - LP: #668380
  * net: blackhole route should always be recalculated
    - LP: #668380
  * skge: add quirk to limit DMA
    - LP: #668380
  * r8169: allocate with GFP_KERNEL flag when able to sleep
    - LP: #668380
  * bsg: fix incorrect device_status value
    - LP: #668380
  * r6040: fix r6040_multicast_list
    - LP: #668380
  * r6040: Fix multicast list iteration when hash filter is used
    - LP: #668380
  * powerpc: Initialise paca->kstack before early_setup_secondary
    - LP: #668380
  * powerpc: Don't use kernel stack with translation off
    - LP: #668380
  * b44: fix carrier detection on bind
    - LP: #668380
  * ACPI: enable repeated PCIEXP wakeup by clearing PCIEXP_WAKE_STS on
    resume
    - LP: #613381, #668380
  * intel_idle: PCI quirk to prevent Lenovo Ideapad s10-3 boot hang
    - LP: #668380
  * ACPI: EC: add Vista incompatibility DMI entry for Toshiba Satellite
    L355
    - LP: #668380
  * ACPI: delete ZEPTO idle=nomwait DMI quirk
    - LP: #668380
  * ACPI: Disable Windows Vista compatibility for Toshiba P305D
    - LP: #668380
  * x86: detect scattered cpuid features earlier
    - LP: #668380
  * fix 2.6.32.23 suspend regression caused by commit 6f6198a
    - LP: #668380
  * setup_arg_pages: diagnose excessive argument size
    - LP: #668380
  * execve: improve interactivity with large arguments
    - LP: #668380
  * execve: make responsive to SIGKILL with large arguments
    - LP: #668380
  * Phonet: disable network namespace support
    - LP: #668380
  * mm: Move vma_stack_continue into mm.h
    - LP: #668380
  * Linux 2.6.32.25
    - LP: #668380
  * xfs: validate untrusted inode numbers during lookup
    - CVE-2010-2943
  * xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
    - CVE-2010-2943
  * xfs: remove block number from inode lookup code
    - CVE-2010-2943
  * xfs: fix untrusted inode number lookup
    - CVE-2010-2943
  * drm/i915: Sanity check pread/pwrite
    - CVE-2010-2962
  * drm/i915: Rephrase pwrite bounds checking to avoid any potential
    overflow
    - CVE-2010-2962
  * net: clear heap allocation for ETHTOOL_GRXCLSRLALL
    - CVE-2010-3861
  * ipc: shm: fix information leak to userland
    - CVE-2010-4072
  * staging: usbip: Notify usb core of port status changes
    - LP: #681132
  * staging: usbip: Process event flags without delay
    - LP: #681132
  * powerpc/perf: Fix sampling enable for PPC970
    - LP: #681132
  * pcmcia: synclink_cs: fix information leak to userland
    - LP: #681132
  * sched: Fix string comparison in /proc/sched_features
    - LP: #681132
  * bluetooth: Fix missing NULL check
    - LP: #681132
  * futex: Fix errors in nested key ref-counting
    - LP: #681132
  * mm, x86: Saving vmcore with non-lazy freeing of vmas
    - LP: #681132
  * x86, cpu: Fix renamed, not-yet-shipping AMD CPUID feature bit
    - LP: #681132
  * x86, kexec: Make sure to stop all CPUs before exiting the kernel
    - LP: #681132
  * x86, olpc: Don't retry EC commands forever
    - LP: #681132
  * x86, mtrr: Assume SYS_CFG[Tom2ForceMemTypeWB] exists on all future AMD
    CPUs
    - LP: #681132
  * x86, intr-remap: Set redirection hint in the IRTE
    - LP: #681132
  * x86, kdump: Change copy_oldmem_page() to use cached addressing
    - LP: #681132
  * KVM: SVM: Fix wrong intercept masks on 32 bit
    - LP: #681132
  * KVM: MMU: fix direct sps access corrupted
    - LP: #681132
  * KVM: MMU: fix conflict access permissions in direct sp
    - LP: #681132
  * KVM: VMX: Fix host GDT.LIMIT corruption
    - LP: #681132
  * KVM: SVM: Adjust tsc_offset only if tsc_unstable
    - LP: #681132
  * KVM: x86: Fix SVM VMCB reset
    - LP: #681132
  * KVM: x86: Move TSC reset out of vmcb_init
    - LP: #681132
  * KVM: Fix fs/gs reload oops with invalid ldt
    - LP: #681132
  * KVM: Correct ordering of ldt reload wrt fs/gs reload
  * KVM: VMX: Fix host userspace gsbase corruption
  * pipe: fix failure to return error code on ->confirm()
    - LP: #681132
  * p54usb: fix off-by-one on !CONFIG_PM
    - LP: #681132
  * p54usb: add five more USBIDs
    - LP: #681132
  * drivers/net/wireless/p54/eeprom.c: Return -ENOMEM on memory allocation
    failure
    - LP: #681132
  * USB: ftdi_sio: Add PID for accesio products
    - LP: #681132
  * USB: add PID for FTDI based OpenDCC hardware
    - LP: #681132
  * USB: ftdi_sio: new VID/PIDs for various Papouch devices
    - LP: #681132
  * USB: ftdi_sio: add device ids for ScienceScope
    - LP: #681132
  * usb: musb: blackfin: call gpio_free() on error path in
    musb_platform_init()
    - LP: #681132
  * USB: option: Add more ZTE modem USB id's
    - LP: #681132
  * USB: cp210x: Add Renesas RX-Stick device ID
    - LP: #681132
  * USB: cp210x: Add WAGO 750-923 Service Cable device ID
    - LP: #681132
  * USB: atmel_usba_udc: force vbus_pin at -EINVAL when gpio_request
    failled
    - LP: #681132
  * USB: disable endpoints after unbinding interfaces, not before
    - LP: #681132
  * USB: opticon: Fix long-standing bugs in opticon driver
    - LP: #681132
  * USB: accept some invalid ep0-maxpacket values
    - LP: #681132
  * sd name space exhaustion causes system hang
    - LP: #681132
  * libsas: fix NCQ mixing with non-NCQ
    - LP: #681132
  * gdth: integer overflow in ioctl
    - LP: #681132
  * Fix race when removing SCSI devices
    - LP: #681132
  * Fix regressions in scsi_internal_device_block
    - LP: #681132
  * sgi-xp: incoming XPC channel messages can come in after the channel's
    partition structures have been torn down
    - LP: #681132
  * Linux 2.6.32.26
    - LP: #681132
  * drm/radeon: fix PCI ID 5657 to be an RV410
    - LP: #683257
  * Linux 2.6.32.26+drm33.12
    - LP: #683257
  * econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
    - CVE-2010-3849
  * econet: fix CVE-2010-3850
    - CVE-2010-3850
  * econet: fix CVE-2010-3848
    - CVE-2010-3848
 -- Stefan Bader <email address hidden>   Wed, 01 Dec 2010 08:13:05 +0100

Available diffs

Superseded in lucid-updates on 2010-12-20
Superseded in lucid-security on 2011-01-10
linux-ec2 (2.6.32-310.21) lucid-security; urgency=low

  [ Upstream Kernel Changes ]

  * Rebased to 2.6.32-26.48

  [ Ubuntu: 2.6.32-26.48 ]

  * SAUCE: AF_ECONET prevent kernel stack overflow
    - CVE-2010-3848
  * SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges
    - CVE-2010-3850
  * SAUCE: AF_ECONET saddr->cookie prevent NULL pointer dereference
    - CVE-2010-3849
 -- Stefan Bader <email address hidden>   Wed, 24 Nov 2010 10:34:37 +0100

Available diffs

Superseded in karmic-updates on 2011-01-10
Superseded in karmic-security on 2011-01-10
linux-ec2 (2.6.31-307.22) karmic-security; urgency=low

  [ Upstream Kernel Changes ]

  * Rebased to 2.6.31-22.69

  [ Ubuntu: 2.6.31-22.69 ]

  * SAUCE: AF_ECONET prevent kernel stack overflow
    - CVE-2010-3848
  * SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges
    - CVE-2010-3850
  * SAUCE: AF_ECONET saddr->cookie prevent NULL pointer dereference
    - CVE-2010-3849

  [ Ubuntu: 2.6.31-22.68 ]

  * SAUCE: docs -- fix doc strings for fc_event_seq
  * SAUCE: (no-up) Modularize vesafb -- fix initialization
    - LP: #611471
  * SAUCE: sched: update load count only once per cpu in 10 tick update
    window
    - LP: #513848
  * SAUCE: agp/intel: Add second set of PCI-IDs for B43
    - LP: #640214
  * SAUCE: drm/i915: Add second set of PCI-IDs for B43
    - LP: #640214
  * SAUCE: Fix compile error on ia64, powerpc, and sparc
  * (pre-stable) x86-32, resume: do a global tlb flush in S4 resume
    - LP: #531309
  * PCI: Ensure we re-enable devices on resume
    - LP: #566149
 -- Stefan Bader <email address hidden>   Wed, 24 Nov 2010 11:13:39 +0100

Available diffs

175 of 110 results