-
linux-ec2 (2.6.31-308.29) karmic-proposed; urgency=low
[ Brad Figg ]
* Release Tracking Bug
- LP: #737761
[ Brad Figg ]
* Rebased to 2.6.31-23.75
[ Ubuntu: 2.6.31-23.75 ]
* Release Tracking Bug
- LP: #737663
* do_exit(): make sure that we run with get_fs() == USER_DS,
CVE-2010-4258
- LP: #723945
- CVE-2010-4258
* xfs: always use iget in bulkstat
- LP: #692848
* x25: Prevent crashing when parsing bad X.25 facilities CVE-2010-4164
- LP: #731199
- CVE-2010-4164
* Revised [CVE-2010-4345 Karmic] install_special_mapping skips
security_file_mmap check. CVE-2010-4346
- LP: #731971
- CVE-2010-4346
* econet: Fix crash in aun_incoming(). CVE-2010-4342
- LP: #736394
- CVE-2010-4342
-- Brad Figg <email address hidden> Fri, 18 Mar 2011 11:55:37 -0700
-
linux-ec2 (2.6.31-308.28) karmic-proposed; urgency=low
[ Steve Conklin ]
* Release Tracking Bug
- LP: #726786
* Rebased to 2.6.31-23.74
[ Ubuntu: 2.6.31-23.74 ]
* Release Tracking Bug
- LP: #725232
* bluetooth: Fix missing NULL check, CVE-2010-4242
- LP: #714846
- CVE-2010-4242
* bio: take care not overflow page count when mapping/copying user data,
CVE-2010-4162
- LP: #721441
- CVE-2010-4162
* filter: make sure filters dont read uninitialized memory
- LP: #721282
- CVE-2010-4158
* tty: Make tiocgicount a handler, CVE-2010-4076, CVE-2010-4077
- LP: #720189
- CVE-2010-4077
* block: check for proper length of iov entries in blk_rq_map_user_iov(),
CVE-2010-4163
- LP: #721504
- CVE-2010-4163
* block: check for proper length of iov entries earlier in
blk_rq_map_user_iov(), CVE-2010-4163
- LP: #721504
- CVE-2010-4163
* rds: Integer overflow in RDS cmsg handling, CVE-2010-4175
- LP: #721455
- CVE-2010-4175
-- Steve Conklin <email address hidden> Mon, 28 Feb 2011 14:16:50 -0600
-
linux-ec2 (2.6.31-307.27) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.73
[ Ubuntu: 2.6.31-22.73 ]
* Release Tracking Bug
- LP: #716648
* net: Limit socket I/O iovec total length to INT_MAX., CVE-2010-3859
- LP: #708839, #711855
- CVE-2010-4160
* net: Truncate recvfrom and sendto length to INT_MAX., CVE-2010-3859
- LP: #708839, #711855
- CVE-2010-4160
* net: fix rds_iovec page count overflow, CVE-2010-3865
- LP: #709153
- CVE-2010-3865
* net: ax25: fix information leak to userland, CVE-2010-3875
- LP: #710714
- CVE-2010-3875
* net: ax25: fix information leak to userland harder, CVE-2010-3875
- LP: #710714
- CVE-2010-3875
* can-bcm: fix minor heap overflow
- LP: #710680
- CVE-2010-3874
* memory corruption in X.25 facilities parsing, CVE-2010-3873
- LP: #709372
- CVE-2010-3873
* net: packet: fix information leak to userland, CVE-2010-3876
- LP: #710714
- CVE-2010-3876
* net: tipc: fix information leak to userland, CVE-2010-3877
- LP: #711291
- CVE-2010-3877
* KVM: VMX: fix vmx null pointer dereference on debug register access,
CVE-2010-0435
- LP: #712615
- CVE-2010-0435
* gdth: integer overflow in ioctl, CVE-2010-4157
- LP: #711797
- CVE-2010-4157
* posix-cpu-timers: workaround to suppress the problems with mt exec,
CVE-2010-4248
- LP: #712609
- CVE-2010-4248
* ALSA: sound/pci/rme9652: prevent reading uninitialized stack memory,
CVE-2010-4080, CVE-2010-4081
- LP: #712723, #712737
- CVE-2010-4081
* drivers/video/via/ioctl.c: prevent reading uninitialized stack memory,
CVE-2010-4082
- LP: #712744
- CVE-2010-4082
* sys_semctl: fix kernel stack leakage, CVE-2010-4083
- LP: #712749
- CVE-2010-4083
* inet_diag: Make sure we actually run the same bytecode we audited,
CVE-2010-3880
- LP: #711865
- CVE-2010-3880
-- Stefan Bader <email address hidden> Fri, 11 Feb 2011 09:22:20 +0100
-
linux-ec2 (2.6.31-307.24) karmic-proposed; urgency=low
[ Brad Figg ]
- LP: #698298
[ Brad Figg ]
* Rebased to 2.6.31-22.71
[ Ubuntu: 2.6.31-22.71 ]
* ipc: initialize structure memory to zero for compat functions
* tcp: Increase TCP_MAXSEG socket option minimum.
- CVE-2010-4165
* perf_events: Fix perf_counter_mmap() hook in mprotect()
- CVE-2010-4169
* af_unix: limit unix_tot_inflight
- CVE-2010-4249
-- Brad Figg <email address hidden> Thu, 06 Jan 2011 11:31:12 -0800
-
linux-ec2 (2.6.31-307.23) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.70
[ Upstream Kernel Changes ]
* xen, compat: Test %rax for the syscall number, not %eax
- CVE-2010-3301
* xen, compat: Retruncate rax after ia32 syscall entry tracing
- CVE-2010-3301
[ Ubuntu: 2.6.31-22.70 ]
* Revert "SAUCE: AF_ECONET saddr->cookie prevent NULL pointer
dereference"
* Revert "SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges"
* Revert "SAUCE: AF_ECONET prevent kernel stack overflow"
* Btrfs: fix checks in BTRFS_IOC_CLONE_RANGE
- CVE-2010-2538
* xfs: validate untrusted inode numbers during lookup
- CVE-2010-2943
* xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED
- CVE-2010-2943
* xfs: remove block number from inode lookup code
- CVE-2010-2943
* xfs: fix untrusted inode number lookup
- CVE-2010-2943
* drm/i915: Sanity check pread/pwrite
- CVE-2010-2962
* drm/i915: Rephrase pwrite bounds checking to avoid any potential
overflow
- CVE-2010-2962
* tracing: Do not allow llseek to set_ftrace_filter
- CVE-2010-3079
* drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack
memory
- CVE-2010-3296
* drivers/net/eql.c: prevent reading uninitialized stack memory
- CVE-2010-3297
* drivers/net/usb/hso.c: prevent reading uninitialized memory
- CVE-2010-3298
* setup_arg_pages: diagnose excessive argument size
- CVE-2010-3858
* net: clear heap allocation for ETHTOOL_GRXCLSRLALL
- CVE-2010-3861
* ipc: shm: fix information leak to userland
- CVE-2010-4072
* econet: disallow NULL remote addr for sendmsg(), fixes CVE-2010-3849
- CVE-2010-3849
* econet: fix CVE-2010-3850
- CVE-2010-3850
* econet: fix CVE-2010-3848
- CVE-2010-3848
-- Stefan Bader <email address hidden> Wed, 01 Dec 2010 11:17:04 +0100
-
linux-ec2 (2.6.31-307.22) karmic-security; urgency=low
[ Upstream Kernel Changes ]
* Rebased to 2.6.31-22.69
[ Ubuntu: 2.6.31-22.69 ]
* SAUCE: AF_ECONET prevent kernel stack overflow
- CVE-2010-3848
* SAUCE: AF_ECONET SIOCSIFADDR ioctl does not check privileges
- CVE-2010-3850
* SAUCE: AF_ECONET saddr->cookie prevent NULL pointer dereference
- CVE-2010-3849
[ Ubuntu: 2.6.31-22.68 ]
* SAUCE: docs -- fix doc strings for fc_event_seq
* SAUCE: (no-up) Modularize vesafb -- fix initialization
- LP: #611471
* SAUCE: sched: update load count only once per cpu in 10 tick update
window
- LP: #513848
* SAUCE: agp/intel: Add second set of PCI-IDs for B43
- LP: #640214
* SAUCE: drm/i915: Add second set of PCI-IDs for B43
- LP: #640214
* SAUCE: Fix compile error on ia64, powerpc, and sparc
* (pre-stable) x86-32, resume: do a global tlb flush in S4 resume
- LP: #531309
* PCI: Ensure we re-enable devices on resume
- LP: #566149
-- Stefan Bader <email address hidden> Wed, 24 Nov 2010 11:13:39 +0100
-
linux-ec2 (2.6.31-307.21) karmic-security; urgency=low
[ John Johansen ]
* Rebased to 2.6.31-22.67
[ Ubuntu: 2.6.31-22.67 ]
* Local privilege escalation vulnerability in RDS sockets
- CVE-2010-3904
* v4l: disable dangerous buggy compat function
- CVE-2010-2963
* mm: Do not assume ENOMEM when looking at a split stack vma
- LP: #646114
* mm: Use helper to find real vma with stack guard page
- LP: #646114
* Fix race in tty_fasync() properly
- CVE-2009-4895
* ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files
- CVE-2010-2066
* xfs: prevent swapext from operating on write-only files
- CVE-2010-2226
* cifs: Fix a kernel BUG with remote OS/2 server (try #3)
- CVE-2010-2248
* ethtool: Fix potential user buffer overflow for ETHTOOL_{G, S}RXFH
- CVE-2010-2478
* l2tp: Fix oops in pppol2tp_xmit
- CVE-2010-2495
* nfsd4: bug in read_buf
- CVE-2010-2521
* CIFS: Fix a malicious redirect problem in the DNS lookup code
- CVE-2010-2524
* GFS2: rename causes kernel Oops
- CVE-2010-2798
* net sched: fix some kernel memory leaks
- CVE-2010-2942
* jfs: don't allow os2 xattr namespace overlap with others
- CVE-2010-2946
* irda: Correctly clean up self->ias_obj on irda_bind() failure.
- CVE-2010-2954
* wireless extensions: fix kernel heap content leak
- CVE-2010-2955
* ext4: consolidate in_range() definitions
- CVE-2010-3015
* aio: check for multiplication overflow in do_io_submit
- CVE-2010-3067
* xfs: prevent reading uninitialized stack memory
- CVE-2010-3078
* ALSA: seq/oss - Fix double-free at error path of snd_seq_oss_open()
- CVE-2010-3080
* niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL
- CVE-2010-3084
* rose: Fix signedness issues wrt. digi count.
- CVE-2010-3310
* sctp: Do not reset the packet during sctp_packet_config().
- CVE-2010-3432
* Fix pktcdvd ioctl dev_minor range check
- CVE-2010-3437
* ALSA: prevent heap corruption in snd_ctl_new()
- CVE-2010-3442
* net sched: fix kernel leak in act_police
- CVE-2010-3477
* Fix out-of-bounds reading in sctp_asoc_get_hmac()
- CVE-2010-3705
* ocfs2: Don't walk off the end of fast symlinks.
- CVE-2010-NNN2
linux-ec2 (2.6.31-307.20) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.66
[ Ubuntu: 2.6.31-22.66 ]
* SAUCE: (no-up) Modularize vesafb -- fix initialization
- LP: #611471
* SAUCE: sched: update load count only once per cpu in 10 tick update
window
- LP: #513848
* (pre-stable) x86-32, resume: do a global tlb flush in S4 resume
- LP: #531309
* PCI: Ensure we re-enable devices on resume
- LP: #566149
[ Ubuntu: 2.6.31-22.65 ]
* x86-64, compat: Test %rax for the syscall number, not %eax
- CVE-2010-3301
* x86-64, compat: Retruncate rax after ia32 syscall entry tracing
- CVE-2010-3301
* compat: Make compat_alloc_user_space() incorporate the access_ok()
- CVE-2010-3081
-- John Johansen <email address hidden> Sun, 17 Oct 2010 17:39:55 -0700
-
linux-ec2 (2.6.31-307.20) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.66
[ Ubuntu: 2.6.31-22.66 ]
* SAUCE: (no-up) Modularize vesafb -- fix initialization
- LP: #611471
* SAUCE: sched: update load count only once per cpu in 10 tick update
window
- LP: #513848
* (pre-stable) x86-32, resume: do a global tlb flush in S4 resume
- LP: #531309
* PCI: Ensure we re-enable devices on resume
- LP: #566149
[ Ubuntu: 2.6.31-22.65 ]
* x86-64, compat: Test %rax for the syscall number, not %eax
- CVE-2010-3301
* x86-64, compat: Retruncate rax after ia32 syscall entry tracing
- CVE-2010-3301
* compat: Make compat_alloc_user_space() incorporate the access_ok()
- CVE-2010-3081
-- Stefan Bader <email address hidden> Wed, 22 Sep 2010 11:39:48 +0200
-
linux-ec2 (2.6.31-307.19) karmic-security; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.65
[ Ubuntu: 2.6.31-22.65 ]
* x86-64, compat: Test %rax for the syscall number, not %eax
- CVE-2010-3301
* x86-64, compat: Retruncate rax after ia32 syscall entry tracing
- CVE-2010-3301
* compat: Make compat_alloc_user_space() incorporate the access_ok()
- CVE-2010-3081
-- Stefan Bader <email address hidden> Thu, 16 Sep 2010 12:07:03 +0200
-
linux-ec2 (2.6.31-307.18) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.64
[ Ubuntu: 2.6.31-22.64 ]
* SAUCE: (no-up) Modularize vesafb -- fix initialization
- LP: #611471
* SAUCE: sched: update load count only once per cpu in 10 tick update
window
- LP: #513848
* (pre-stable) x86-32, resume: do a global tlb flush in S4 resume
- LP: #531309
* PCI: Ensure we re-enable devices on resume
- LP: #566149
-- Stefan Bader <email address hidden> Fri, 20 Aug 2010 14:28:36 +0200
-
linux-ec2 (2.6.31-307.17) karmic-security; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.63
[ Ubuntu: 2.6.31-22.63 ]
* drm: Initialize ioctl struct when no user data is present
- CVE-2010-2803
* can: add limit for nframes and clean up signed/unsigned variables
- CVE-2010-2959
* mm: keep a guard page below a grow-down stack segment
- CVE-2010-2240
* mm: fix missing page table unmap for stack guard page failure case
- CVE-2010-2240
* mm: fix page table unmap for stack guard page properly
- CVE-2010-2240
* mm: fix up some user-visible effects of the stack guard page
- CVE-2010-2240
* x86: don't send SIGBUS for kernel page faults
- CVE-2010-2240
-- Stefan Bader <email address hidden> Wed, 18 Aug 2010 12:33:11 +0200
-
linux-ec2 (2.6.31-307.16) karmic-security; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.61
[ Ubuntu: 2.6.31-22.61 ]
* sctp: Fix skb_over_panic resulting from multiple invalid parameter
errors (CVE-2010-1173) (v4)
- CVE-2010-1173
* sctp: fix append error cause to ERROR chunk correctly
- CVE-2010-1173
* GFS2: Fix writing to non-page aligned gfs2_quota structures
- CVE-2010-1436
* KEYS: find_keyring_by_name() can gain access to a freed keyring
- CVE-2010-1437
* sparc64: Fix sun4u execute bit check in TSB I-TLB load.
- CVE-2010-1451
* Btrfs: check for read permission on src file in the clone ioctl
- CVE-2010-1636
* GFS2: Fix permissions checking for setflags ioctl()
- CVE-2010-1641
* Btrfs: should add a permission check for setfacl
- CVE-2010-2071
* ecryptfs: Bugfix for error related to ecryptfs_hash_buckets
- CVE-2010-2492
-- Stefan Bader <email address hidden> Tue, 20 Jul 2010 18:07:38 +0200
-
linux-ec2 (2.6.31-307.15) karmic-security; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-22.60
[ Ubuntu: 2.6.31-22.60 ]
* kvm: restrict writing of segment selectors to segment registers
- CVE-2010-0419
* USB: usbfs: properly clean up the as structure on error paths
- CVE-2010-1083
* Bluetooth: Fix potential bad memory access with sysfs files
- CVE-2010-1084
* ALSA: hda-intel: Avoid divide by zero crash
- CVE-2010-1085
* dvb-core: Fix DoS bug in ULE decapsulation code that can be triggered
by an invalid Payload Pointer
- CVE-2010-1086
* GFS2: Skip check for mandatory locks when unlocking
- CVE-2010-0727
* tipc: Fix oops on send prior to entering networked mode (v3)
- CVE-2010-1187
* inotify: do not reuse watch descriptors
- LP: #485556
* idr: fix a critical misallocation bug, take#2
- LP: #485556
* tty: release_one_tty() forgets to put pids
- CVE-2010-1162
* reiserfs: fix permissions on .reiserfs_priv
- CVE-2010-1146
* fix LOOKUP_FOLLOW on automount "symlinks"
- CVE-2010-1088
* NFS: Fix an Oops when truncating a file
- CVE-2010-1087
* Attempt #2 to handle null nameidata
- CVE-2010-1148
* r8169: Fix receive buffer length when MTU is between 1515 and 1536
- CVE-2009-4537
* r8169: offical fix for CVE-2009-4537 (overlength frame DMAs)
- CVE-2009-4537
* KVM: Use kvm_{read,write}_guest_virt() to read and write segment
descriptors
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86 emulator: Check CPL level during privilege instruction
emulation
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86 emulator: Add Virtual-8086 mode of emulation
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86 emulator: fix memory access during x86 emulation
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86 emulator: Check IOPL level during io instruction emulation
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86 emulator: Fix popf emulation
- CVE-2010-0298
- CVE-2010-0306
* KVM: VMX: Use macros instead of hex value on cr0 initialization
- CVE-2010-0298
- CVE-2010-0306
* KVM: SVM: Reset cr0 properly on vcpu reset
- CVE-2010-0298
- CVE-2010-0306
* KVM: x86: disable paravirt mmu reporting
- CVE-2010-0298
- CVE-2010-0306
-- Stefan Bader <email address hidden> Tue, 25 May 2010 12:54:39 +0000
-
linux-ec2 (2.6.31-306.14) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-21.59
[ Ubuntu: 2.6.31-21.59 ]
* [Config] generic-pae switch to M586TSC
- LP: #519448
* (pre-stable) drm/i915: Increase fb alignment to 64k
- LP: #404064
* Input: i8042 - bypass AUX IRQ delivery test on laptops
- LP: #534448
* SAUCE: Fix volume hotkeys for Dell Studio 1557
- LP: #465250
* SAUCE: aufs: Fix header files inclusion in debug.h
- LP: #517151
* [Config] Enable all CGROUP configuration options
- LP: #480739
* Revert "[Upstream] acerhdf: Limit modalias matching to supported
boards"
- LP: #509730
* [Config] ext3 defaults to ordered mode
- LP: #510067
* [Config] Fix sub-flavours package conflicts
- LP: #454827
* PCI/cardbus: Add a fixup hook and fix powerpc
- LP: #455723
* fnctl: f_modown should call write_lock_irqsave/restore
- LP: #519436
* ACPI: enable C2 and Turbo-mode on Nehalem notebooks on A/C
- LP: #516325
* tg3: Add 57788, remove 57720
- LP: #515390
* HID: ignore all recent SoundGraph iMON devices
- LP: #488443
* Input: ALPS - add interleaved protocol support (Dell E6x00 series)
- LP: #296610
* acerhdf: limit modalias matching to supported
- LP: #509730
* ASoC: Do not write to invalid registers on the wm9712.
- LP: #509730
* cifs: NULL out tcon, pSesInfo, and srvTcp pointers when chasing DFS
referrals
- LP: #509730
* clockevents: Prevent clockevent_devices list corruption on cpu hotplug
- LP: #509730
* dma: at_hdmac: correct incompatible type for argument 1 of
'spin_lock_bh'
- LP: #509730
* drivers/net/usb: Correct code taking the size of a pointer
- LP: #509730
* Libertas: fix buffer overflow in lbs_get_essid()
- LP: #509730
* md: Fix unfortunate interaction with evms
- LP: #509730
* pata_cmd64x: fix overclocking of UDMA0-2 modes
- LP: #509730
* pata_hpt3x2n: fix clock turnaround
- LP: #509730
* SCSI: fc class: fix fc_transport_init error handling
- LP: #509730
* sound: sgio2audio/pdaudiocf/usb-audio: initialize PCM buffer
- LP: #509730
* USB: emi62: fix crash when trying to load EMI 6|2 firmware
- LP: #509730
* USB: Fix a bug on appledisplay.c regarding signedness
- LP: #509730
* USB: musb: gadget_ep0: avoid SetupEnd interrupt
- LP: #509730
* USB: option: support hi speed for modem Haier CE100
- LP: #490068, #509730
* x86, cpuid: Add "volatile" to asm in native_cpuid()
- LP: #509730
* e100: Use pci pool to work around GFP_ATOMIC order 5 memory allocation
failure
- LP: #509730
* e100: Fix broken cbs accounting due to missing memset.
- LP: #509730
* hostap: Revert a toxic part of the conversion to net_device_ops
- LP: #509730
* hwmon: (fschmd) Fix check on unsigned in watchdog_write()
- LP: #509730
* hwmon: (sht15) Off-by-one error in array index + incorrect constants
- LP: #509730
* i2c/tsl2550: Fix lux value in extended mode
- LP: #509730
* ipv6: reassembly: use seperate reassembly queues for conntrack and
local delivery
- LP: #509730
* S390: dasd: support DIAG access for read-only devices
- LP: #509730
* udf: Try harder when looking for VAT inode
- LP: #509730
* V4L/DVB (13596): ov511.c typo: lock => unlock
- LP: #509730
* x86/ptrace: make genregs[32]_get/set more robust
- LP: #509730
* XFS bug in log recover with quota (bugzilla id 855)
- LP: #509730
* generic_permission: MAY_OPEN is not write access
- LP: #509730
* memcg: avoid oom-killing innocent task in case of use_hierarchy
- LP: #509730
* Input: atkbd - add force relese key quirk for Samsung R59P/R60P/R61P
- LP: #253874, #509730
* Add unlocked version of inode_add_bytes() function
- LP: #509730
* ext4: fix sleep inside spinlock issue with quota and dealloc (#14739)
- LP: #509730
* Linux 2.6.31.10
- LP: #509730
* Linux 2.6.31.11
- LP: #509730
* quota: decouple fs reserved space from quota reservation
- LP: #510674
* ext4: Convert to generic reserved quota's space management.
- LP: #510674
* hwmon: (adt7462) Fix pin 28 monitoring
- LP: #510674
* netfilter: nf_ct_ftp: fix out of bounds read in update_nl_seq()
- LP: #510674
* quota: Fix dquot_transfer for filesystems different from ext4
- LP: #510674
* fix braindamage in audit_tree.c untag_chunk()
- LP: #510674
* fix more leaks in audit_tree.c tag_chunk()
- LP: #510674
* ACPI: sleep: another HP DMI entry for init_set_sci_en_on_resume
- LP: #453963, #510674
* ACPI: add DMI entry for SCI_EN resume quirk on HP dv4
- LP: #453963, #510674
* ACPI: sleep: another HP/Compaq DMI entries for
init_set_sci_en_on_resume
- LP: #453963, #510674
* ACPI: DMI init_set_sci_en_on_resume for HP-Compaq C700
- LP: #453963, #510674
* Linux 2.6.31.12
- LP: #510674
-- Stefan Bader <email address hidden> Wed, 17 Mar 2010 21:16:02 +0100
-
linux-ec2 (2.6.31-305.13) karmic-security; urgency=low
[ Stefan Bader ]
* Rebased to 2.6.31-20.58
* XEN: Get rid of the TIF_ABI_PENDING bit
[ Ubuntu: 2.6.31-20.58 ]
* Revert "[Upstream] e1000: enhance frame fragment detection"
- CVE-2009-4536
* Revert "[Upstream] e1000e: enhance frame fragment detection"
- CVE-2009-4538
* e1000: enhance frame fragment detection
- CVE-2009-4536
* e1000/e1000e: don't use small hardware rx buffers
- CVE-2009-4536
* e1000e: enhance frame fragment detection
- CVE-2009-4538
* KVM: PIT: control word is write-only
- CVE-2010-0309
* connector: Delete buggy notification code.
- CVE-2010-0410
* Fix potential crash with sys_move_pages
- CVE-2010-0415
* futex: Handle user space corruption gracefully
- CVE-2010-0622
* futex_lock_pi() key refcnt fix
- CVE-2010-0623
* Split 'flush_old_exec' into two functions
- CVE-2010-0307
* Fix 'flush_old_exec()/setup_new_exec()' split
- CVE-2010-0307
* x86: get rid of the insane TIF_ABI_PENDING bit
- CVE-2010-0307
* powerpc: TIF_ABI_PENDING bit removal
- CVE-2010-0307
* sparc: TIF_ABI_PENDING bit removal
- CVE-2010-0307
* x86: set_personality_ia32() misses force_personality32
- CVE-2010-0307
-- Stefan Bader <email address hidden> Wed, 10 Mar 2010 13:37:48 +0100
-
linux-ec2 (2.6.31-304.11) karmic-proposed; urgency=low
[ John Johansen ]
* [Config] enable ext4 and block loop
- LP: #428692
-- Leann Ogasawara <email address hidden> Mon, 01 Feb 2010 11:27:41 -0800
-
linux-ec2 (2.6.31-304.10) karmic-security; urgency=low
[ Leann Ogasawara ]
* Rebase to 2.6.31-19.56
* XEN: untangle the do_mremap() mess
[ Ubuntu: 2.6.31-19.56 ]
* [Upstream] e1000: enhance frame fragment detection
- CVE-2009-4536
* [Upstream] e1000e: enhance frame fragment detection
- CVE-2009-4538
* hfs: fix a potential buffer overflow
- CVE-2009-4020
* KVM: x86 emulator: limit instructions to 15 bytes
- CVE-2009-4031
* ext4: Avoid null pointer dereference when decoding EROFS w/o a journal
- CVE-2009-4308
* firewire: ohci: handle receive packets with a data length of zero
- CVE-2009-4138
* fasync: split 'fasync_helper()' into separate add/remove functions
- CVE-2009-4141
* ipv6: skb_dst() can be NULL in ipv6_hop_jumbo().
- CVE-2010-0006
* kernel/signal.c: fix kernel information leak with print-fatal-signals=1
- CVE-2010-0003
* netfilter: ebtables: enforce CAP_NET_ADMIN
- CVE-2010-0007
* untangle the do_mremap() mess
- CVE-2010-0291
linux-ec2 (2.6.31-303.9) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebase to 2.6.31-17.54
[ Ubuntu: 2.6.31-17.54 ]
* Same as unreleased 2.6.31-17.53 with security release merged.
[ Ubuntu: 2.6.31-16.53 ]
* ext4: Fix insufficient checks in EXT4_IOC_MOVE_EXT
- LP: #492659
- CVE-2009-4131
linux-ec2 (2.6.31-303.8) karmic-proposed; urgency=low
[ Stefan Bader ]
* Rebase to 2.6.31-17.53
[ Ubuntu: 2.6.31-17.53 ]
* SAUCE: AppArmor: Fix oops after profile removal
- LP: #475619
* SAUCE: AppArmor: Fix Oops when in apparmor_bprm_set_creds
- LP: #437258
* SAUCE: AppArmor: Fix cap audit_caching preemption disabling
- LP: #479102
* SAUCE: AppArmor: Fix refcounting bug causing leak of creds
- LP: #479115
* SAUCE: AppArmor: Fix oops there is no tracer and doing unsafe
transition.
- LP: #480112
* Revert "[Upstream] (drop after 2.6.31) usb-storage: Workaround devices
with bogus sense size"
- LP: #461556
* Revert "[Upstream] (drop after 2.6.31) Input: synaptics - add another
Protege M300 to rate blacklist"
- LP: #480144
* [Config] udeb: Add squashfs to fs-core-modules
- LP: #352615
* Revert "e1000e: swap max hw supported frame size between 82574 and
82583"
- LP: #461556
* Revert "drm/i915: Fix FDI M/N setting according with correct color
depth"
- LP: #480144
* Revert "agp/intel: Add B43 chipset support"
- LP: #480144
* Revert "drm/i915: add B43 chipset support"
- LP: #480144
* Revert "ACPI: Attach the ACPI device to the ACPI handle as early as
possible"
- LP: #327499, #480144
* SCSI: Retry ADD_TO_MLQUEUE return value for EH commands
- LP: #461556
* SCSI: Fix protection scsi_data_buffer leak
- LP: #461556
* SCSI: sg: Free data buffers after calling blk_rq_unmap_user
- LP: #461556
* ARM: pxa: workaround errata #37 by not using half turbo switching
- LP: #461556
* tracing/filters: Fix memory leak when setting a filter
- LP: #461556
* x86/paravirt: Use normal calling sequences for irq enable/disable
- LP: #461556
* USB: ftdi_sio: remove tty->low_latency
- LP: #461556
* USB: ftdi_sio: remove unused rx_byte counter
- LP: #461556
* USB: ftdi_sio: clean up read completion handler
- LP: #461556
* USB: ftdi_sio: re-implement read processing
- LP: #461556
* USB: pl2303: fix error characters not being reported to ldisc
- LP: #461556
* USB: digi_acceleport: Fix broken unthrottle.
- LP: #461556
* USB: serial: don't call release without attach
- LP: #461556
* USB: option: Toshiba G450 device id
- LP: #461556
* USB: ipaq: fix oops when device is plugged in
- LP: #461556
* USB: cp210x: Add support for the DW700 UART
- LP: #461556
* USB: Fix throttling in generic usbserial driver
- LP: #461556
* USB: storage: When a device returns no sense data, call it a Hardware
Error
- LP: #400652, #461556
* arm, cris, mips, sparc, powerpc, um, xtensa: fix build with bash 4.0
- LP: #461556
* intel-iommu: Cope with broken HP DC7900 BIOS
- LP: #461556
* futex: Detect mismatched requeue targets
- LP: #461556
* futex: Fix wakeup race by setting TASK_INTERRUPTIBLE before queue_me()
- LP: #461556
* tpm-fixup-pcrs-sysfs-file-update
- LP: #461556
* TPM: fix pcrread
- LP: #461556
* Bluetooth: Disconnect HIDRAW devices on disconnect
- LP: #461556
* Bluetooth: Add extra device reference counting for connections
- LP: #461556
* Bluetooth: Let HIDP grab the device reference for connections
- LP: #461556
* connector: Keep the skb in cn_callback_data
- LP: #461556
* connector: Provide the sender's credentials to the callback
- LP: #461556
* connector: Removed the destruct_data callback since it is always
kfree_skb()
- LP: #461556
* dm/connector: Only process connector packages from privileged processes
- LP: #461556
* dst/connector: Disallow unpliviged users to configure dst
- LP: #461556
* pohmelfs/connector: Disallow unpliviged users to configure pohmelfs
- LP: #461556
* uvesafb/connector: Disallow unpliviged users to send netlink packets
- LP: #461556
* e1000e: swap max hw supported frame size between 82574 and 82583
- LP: #461556, #445572
* MAINTAINERS: Fix Riku Voipio's address
- LP: #461556
* macintosh: Don't assume i2c device probing always succeeds
- LP: #461556
* i2c: Hide probe errors caused by ACPI resource conflicts
- LP: #461556
* ALSA: Don't assume i2c device probing always succeeds
- LP: #461556
* bsdacct: switch credentials for writing to the accounting file
- LP: #461556
* sysfs: Allow sysfs_notify_dirent to be called from interrupt context.
- LP: #461556
* Staging: rt2860sta: prevent a panic when disabling when associated
- LP: #461556, #404626
* usb-storage: Workaround devices with bogus sense size
- LP: #461556, #446146
* iwlwifi: incorrect method used for finding valid OTP blocks
- LP: #461556
* mac80211: fix vlan and optimise RX
- LP: #461556
* tty: Make flush_to_ldisc() locking more robust
- LP: #461556
* Linux 2.6.31.5
- LP: #461556
* fs: pipe.c null pointer dereference
- LP: #480144
* pci: increase alignment to make more space for hidden code
- LP: #407824, #480144, #474577
* libata: fix internal command failure handling
- LP: #480144
* libata: fix PMP initialization
- LP: #480144
* sata_nv: make sure link is brough up online when skipping hardreset
- LP: #480144
* nfs: Fix nfs_parse_mount_options() kfree() leak
- LP: #480144
* KVM: use proper hrtimer function to retrieve expiration time
- LP: #480144
* KVM: ignore reads from AMDs C1E enabled MSR
- LP: #480144
* futex: Handle spurious wake up
- LP: #480144
* futex: Check for NULL keys in match_futex
- LP: #480144
* futex: Move drop_futex_key_refs out of spinlock'ed region
- LP: #480144
* futex: Fix spurious wakeup for requeue_pi really
- LP: #480144
* ahci: revert "Restore SB600 sata controller 64 bit DMA"
- LP: #480144
* sparc64: Set IRQF_DISABLED on LDC channel IRQs.
- LP: #480144
* watchdog: Fix rio watchdog probe function
- LP: #480144
* Input: synaptics - add another Protege M300 to rate blacklist
- LP: #480144
* dm snapshot: free exception store on init failure
- LP: #480144
* dm snapshot: sort by chunk size to fix race
- LP: #480144
* dm log: userspace fix incorrect luid cast in userspace_ctr
- LP: #480144
* dm: add missing del_gendisk to alloc_dev error path
- LP: #480144
* dm: dec_pending needs locking to save error value
- LP: #480144
* dm exception store: fix failed set_chunk_size error path
- LP: #480144
* dm snapshot: lock snapshot while supplying status
- LP: #480144
* dm snapshot: require non zero chunk size by end of ctr
- LP: #480144
* dm snapshot: use unsigned integer chunk size
- LP: #480144
* ray_cs: Fix copy_from_user handling
- LP: #480144
* mbind(): fix leak of never putback pages
- LP: #480144
* do_mbind(): fix memory leak
- LP: #480144
* 8250_pci: add IBM Saturn serial card
- LP: #480144
* dpt_i2o: Fix up copy*user
- LP: #480144
* dpt_i2o: Fix typo of EINVAL
- LP: #480144
* hfsplus: refuse to mount volumes larger than 2TB
- LP: #480144
* Driver core: fix driver_register() return value
- LP: #480144
* param: fix lots of bugs with writing charp params from sysfs, by
leaking mem.
- LP: #480144
* param: fix NULL comparison on oom
- LP: #480144
* param: fix setting arrays of bool
- LP: #480144
* USB: serial: sierra driver send_setup() autopm fix
- LP: #480144
* USB: option: Patch for Huawei Mobile Broadband E270+ Modem
- LP: #480144
* USB: option: Support for AIRPLUS MCD650 Datacard
- LP: #480144
* USB: option: TLAYTECH TUE800 support
- LP: #456264, #480144
* libertas if_usb: Fix crash on 64-bit machines
- LP: #480144
* cpuidle: always return with interrupts enabled
- LP: #480144
* virtio: order used ring after used index read
- LP: #480144
* CIFS: Fixing to avoid invalid kfree() in cifs_get_tcp_session()
- LP: #480144
* mac80211: fix for incorrect sequence number on hostapd injected frames
- LP: #480144
* mac80211: check interface is down before type change
- LP: #480144
* x86, UV: Fix information in __uv_hub_info structure
- LP: #480144
* x86, UV: Set DELIVERY_MODE=4 for vector=NMI_VECTOR in uv_hub_send_ipi()
- LP: #480144
* NOMMU: Don't pass NULL pointers to fput() in do_mmap_pgoff()
- LP: #480144
* mm: remove incorrect swap_count() from try_to_unuse()
- LP: #480144
* x86-64: Fix register leak in 32-bit syscall audting
- LP: #480144
* nilfs2: fix dirty page accounting leak causing hang at write
- LP: #480144
* drm/i915: Fix FDI M/N setting according with correct color depth
- LP: #480144
* drm/i915: fix to setup display reference clock control on Ironlake
- LP: #480144
* drm/i915: fix panel fitting filter coefficient select for Ironlake
- LP: #480144
* agp/intel: Add B43 chipset support
- LP: #480144
* drm/i915: add B43 chipset support
- LP: #480144
* xen/hvc: make sure console output is always emitted, with explicit
polling
- LP: #480144
* xen: mask extended topology info in cpuid
- LP: #480144
* sgi-gru: decrapfiy options_write() function
- LP: #480144
* KVM: get_tss_base_addr() should return a gpa_t
- LP: #480144
* fuse: prevent fuse_put_request on invalid pointer
- LP: #480144
* fuse: fix kunmap in fuse_ioctl_copy_user
- LP: #480144
* x86/amd-iommu: Workaround for erratum 63
- LP: #480144
* fsnotify: do not set group for a mark before it is on the i_list
- LP: #480144
* mips: fix build of vmlinux.lds
- LP: #480144
* alpha: fix build after vmlinux.lds.S cleanup
- LP: #480144
* ACPI / PCI: Fix NULL pointer dereference in acpi_get_pci_dev() (rev. 2)
- LP: #480144
* KEYS: get_instantiation_keyring() should inc the keyring refcount in
all cases
- LP: #480144
* b43: Fix Bugzilla #14181 and the bug from the previous 'fix'
- LP: #476154, #480144
* pata_sc1200: Fix crash on boot
- LP: #480144
* AF_UNIX: Fix deadlock on connecting to shutdown socket (CVE-2009-3621)
- LP: #480144
* ALSA: ice1724 - Make call to set hw params succeed on ESI Juli@
- LP: #480144
* bonding: fix a race condition in calls to slave MII ioctls
- LP: #480144
* hwmon: (it87) Fix VID reading on IT8718F/IT8720F
- LP: #480144
* netlink: fix typo in initialization (CVE-2009-3612)
- LP: #480144
* nfs: Avoid overrun when copying client IP address string
- LP: #480144
* nfs: Panic when commit fails
- LP: #480144
* NFSv4: Fix a bug when the server returns NFS4ERR_RESOURCE
- LP: #480144
* NFSv4: Fix two unbalanced put_rpccred() issues.
- LP: #459265, #480144
* NFSv4: Kill nfs4_renewd_prepare_shutdown()
- LP: #480144
* NFSv4: The link() operation should return any delegation on the file
- LP: #480144
* powerpc: Remove SMP warning from PowerMac cpufreq
- LP: #480144
* vmscan: limit VM_EXEC protection to file pages
- LP: #480144
* x86: mce: Clean up thermal throttling state tracking code
- LP: #480144
* x86: mce: Fix thermal throttling message storm
- LP: #453444, #480144
* iwlwifi: fix potential rx buffer loss
- LP: #480144
* iwlwifi: reduce noise when skb allocation fails
- LP: #480144
* x86/amd-iommu: Un__init function required on shutdown
- LP: #480144
* KVM: Prevent kvm_init from corrupting debugfs structures
- LP: #480144
* powerpc/pmac: Fix PowerSurge SMP IPI allocation
- LP: #480144
* powerpc/pmac: Fix issues with sleep on some powerbooks
- LP: #480144
* powerpc/pci: Fix regression in powerpc MSI-X
- LP: #480144
* powerpc: Fix some late PowerMac G5 with PCIe ATI graphics
- LP: #480144
* sata_via: Remove redundant device ID for VIA VT8261
- LP: #480144
* pata_via: extend the rev_max for VT6330
- LP: #480144
* PM / yenta: Split resume into early and late parts (rev. 4)
- LP: #480144
* Linux 2.6.31.6
- LP: #480144
[ Ubuntu: 2.6.31-16.52 ]
* [SCSI] megaraid_sas: remove sysfs poll_mode_io world writeable
permissions
- CVE-2009-3939
* fs: pipe.c null pointer dereference
- CVE-2009-3547
* netlink: fix typo in initialization
- CVE-2009-3612
* drm/r128: Add test for initialisation to all ioctls that require it
- CVE-2009-3620
* AF_UNIX: Fix deadlock on connecting to shutdown socket
- CVE-2009-3621
* nfsd4: use common rpc_cred for all callbacks
- CVE-2009-3623
* KEYS: get_instantiation_keyring() should inc the keyring refcount in
all cases
- CVE-2009-3624
* connector: Keep the skb in cn_callback_data
- CVE-2009-3725
* connector: Provide the sender's credentials to the callback
- CVE-2009-3725
* connector: Fix incompatible pointer type warning
- CVE-2009-3725
* uvesafb/connector: Disallow unpliviged users to send netlink packets
- CVE-2009-3725
* pohmelfs/connector: Disallow unpliviged users to configure pohmelfs
- CVE-2009-3725
* dst/connector: Disallow unpliviged users to configure dst
- CVE-2009-3725
* dm/connector: Only process connector packages from privileged processes
- CVE-2009-3725
* NOMMU: Don't pass NULL pointers to fput() in do_mmap_pgoff()
- CVE-2009-3888
* isdn: hfc_usb: Fix read buffer overflow
- CVE-2009-4005
* gdth: Prevent negative offsets in ioctl CVE-2009-3080
- CVE-2009-3080
* mac80211: fix spurious delBA handling
- LP: #491301
* mac80211: fix two remote exploits
- LP: #491301
* ipv4: additional update of dev_net(dev) to struct *net in ip_fragment.c
- LP: #491301
[ Ubuntu: 2.6.31-15.50 ]
* SAUCE: Fix nx_enable reporting
- LP: #454285
[ Ubuntu: 2.6.31-15.49 ]
* [Upstream] (drop after 2.6.31) usb-storage: Workaround devices with
bogus sense size
- LP: #446146
* SAUCE: AppArmor: AppArmor wrongly reports allow perms as denied
- LP: #453335
* SAUCE: AppArmor: Policy load and replacement can fail to alloc mem
- LP: #458299
* SAUCE: AppArmor: AppArmor fails to audit change_hat correctly
- LP: #462824
* SAUCE: AppArmor: AppArmor disallows truncate of deleted files.
- LP: #451375
* SAUCE: [x86] fix report of cs-limit nx-emulation
- LP: #454285
* Revert "SAUCE: trace: add trace_event for the open() syscall"
* SAUCE: trace: add trace events for open(), exec() and uselib()
- LP: #462111
* SAUCE: Fix sub-flavour script to not stop on missing directories
- LP: #453073
* [Upstream] (drop after 2.6.31) Input: synaptics - add another Protege
M300 to rate blacklist
- LP: #433801
* PM: Make warning in suspend_test_finish() less likely to happen
- LP: #464552
[ Ubuntu: 2.6.31-14.48 ]
* Add more e100 firmware to nic-modules
- LP: #451872
* Add qla1280 firmware to scsi-modules
- LP: #381037
[ Ubuntu: 2.6.31-14.47 ]
* SAUCE: dell-laptop: Store the HW switch status internally rather than
requerying every time
- LP: #430809
* SAUCE: dell-laptop: Blacklist machines not supporting dell-laptop
- LP: #430809
-- Leann Ogasawara <email address hidden> Wed, 27 Jan 2010 00:34:02 -0800
-
linux-ec2 (2.6.31-302.7) karmic; urgency=low
[ Tim Gardner ]
* [Config] Updateconfigs after rebase to 2.6.31-14.46
* Rebased against linux (2.6.31-14.46)
[ Andy Whitcroft ]
* reinstate armel.mk with no flavours
- LP: #449637
* [Upstream] elevator: fix fastfail checks to allow merge of readahead
requests
- LP: #444915
* [Upstream] block: silently error unsupported empty barriers too
- LP: #420423
[ John Johansen ]
* SAUCE: AppArmor: Fix mediation of "deleted" paths
- LP: #415632
[ Tim Gardner ]
* [Config] CONFIG_X86_MCE
https://lists.ubuntu.com/archives/kernel-team/2009-October/007584.html
* Revert "appletalk: Fix skb leak when ipddp interface is not loaded,
CVE-2009-2903" - Use patch from 2.6.31.4 which is slightly different.
[ Upstream Kernel Changes ]
* x86: fix csum_ipv6_magic asm memory clobber
* tty: Avoid dropping ldisc_mutex over hangup tty re-initialization
* x86: Don't leak 64-bit kernel register values to 32-bit processes
* tracing: correct module boundaries for ftrace_release
* ftrace: check for failure for all conversions
* futex: fix requeue_pi key imbalance
* futex: Move exit_pi_state() call to release_mm()
* futex: Nullify robust lists after cleanup
* futex: Fix locking imbalance
* NOHZ: update idle state also when NOHZ is inactive
* ima: ecryptfs fix imbalance message
* libata: fix incorrect link online check during probe
* sound: via82xx: move DXS volume controls to PCM interface
* ASoC: WM8350 capture PGA mutes are inverted
* KVM: Prevent overflow in KVM_GET_SUPPORTED_CPUID
* KVM: VMX: flush TLB with INVEPT on cpu migration
* KVM: fix LAPIC timer period overflow
* KVM: SVM: Fix tsc offset adjustment when running nested
* KVM: SVM: Handle tsc in svm_get_msr/svm_set_msr correctly
* net: Fix wrong sizeof
* mm: add_to_swap_cache() must not sleep
* sis5513: fix PIO setup for ATAPI devices
* PIT fixes to unbreak suspend/resume (bug #14222)
* IMA: open new file for read
* ACPI: Clarify resource conflict message
* ACPI: fix Compaq Evo N800c (Pentium 4m) boot hang regression
* net: restore tx timestamping for accelerated vlans
* net: unix: fix sending fds in multiple buffers
* tun: Return -EINVAL if neither IFF_TUN nor IFF_TAP is set.
* tcp: fix CONFIG_TCP_MD5SIG + CONFIG_PREEMPT timer BUG()
* net: Fix sock_wfree() race
* smsc95xx: fix transmission where ZLP is expected
* sky2: Set SKY2_HW_RAM_BUFFER in sky2_init
* appletalk: Fix skb leak when ipddp interface is not loaded
* ax25: Fix possible oops in ax25_make_new
* ax25: Fix SIOCAX25GETINFO ioctl
* sit: fix off-by-one in ipip6_tunnel_get_prl
* Linux 2.6.31.4
* drm/i915: Fix FDI M/N setting according with correct color depth
- LP: #416792
* linux (2.6.31-13.45)
[ Luke Yelavich ]
* [Config] Add sd_mod to scsi-modules udeb for powerpc
[ Mario Limonciello ]
* SAUCE: Update to LIRC 0.8.6
- LP: #432678
[ Tim Gardner ]
* [Config] CONFIG_X86_PAT=y
https://lists.ubuntu.com/archives/kernel-team/2009-October/007477.html
https://lists.ubuntu.com/archives/kernel-team/2009-October/007534.html
* [Config] Add armel arch to linux-libc-dev arches.
- LP: #449637
[ Upstream Kernel Changes ]
* e1000e: swap max hw supported frame size between 82574 and 82583
* drm/i915: Initialize HDMI outputs as HDMI connectors, not DVI.
- LP: #392017
* ALSA: hda - Add quirks for some HP laptops
- LP: #449742
* ALSA: hda - Add support for HP dv6
- LP: #449742
* linux (2.6.31-13.44)
[ Upstream Kernel Changes ]
* sgi-gru: Fix kernel stack buffer overrun, CVE-2009-2584
* appletalk: Fix skb leak when ipddp interface is not loaded,
CVE-2009-2903
Note - This patch causes an ABI change in the symbol aarp_send_ddp
which I'm ignoring.
-- Tim Gardner <email address hidden> Mon, 12 Oct 2009 11:27:10 -0600
-
linux-ec2 (2.6.31-301.6) karmic; urgency=low
[ Tim Gardner ]
* [Config] Added cpio as a build dependency.
* [Config] CONFIG_GFS2_FS_LOCKING_DLM=y
- LP: #416325
* [Config] Disable CONFIG_UEVENT_HELPER_PATH
* [Config] Enable CONFIG_USB_GADGET_DUMMY_HCD
* [Config] Disable Intel AGP/DRM
* Rebased against linux (2.6.31-13.43) karmic; urgency=low
[ Andy Whitcroft ]
* Revert "[Upstream] acerhdf: Limit modalias matching to supported
boards"
[ Colin Watson ]
* Use section 'admin' rather than 'base'
[ John Johansen ]
* SAUCE: AppArmor: Set error code after structure initialization.
- LP: #427948
* SAUCE: AppArmor: Fix off by 2 error in getprocattr mem allocation
- LP: #446595
[ Luke Yelavich ]
* SAUCE: Add sr_mod to the scsi-modules udeb for powerpc
[ Stefan Bader ]
* [Upstream] acerhdf: Limit modalias matching to supported boards
(supersedes previous revert made by Andy Whitcroft)
- LP: #435958
* Rebased against linux (2.6.31-13.42) karmic; urgency=low
[ Leann Ogasawara ]
* SAUCE: (drop after 2.6.31) input: Add support for filtering input
events
- LP: #430809
* SAUCE: (drop after 2.6.31) dell-laptop: Trigger rfkill updates on wifi
toggle switch press
- LP: #430809
[ Tim Gardner ]
* SAUCE: Raise the default console 'quiet' level to 2
This supresses all but critical and emergency level messages.
https://lists.ubuntu.com/archives/kernel-team/2009-October/007476.html
[ Upstream Kernel Changes ]
* TTY: fix typos
* Linux 2.6.31.3
* V4L/DVB (12439): cx88: add support for WinFast DTV2000H rev. J
- LP: #433904
* Rebased against linux (2.6.31-12.41) karmic; urgency=low
[ Tim Gardner ]
* [Config] CONFIG_GFS2_FS_LOCKING_DLM=y
- LP: #416325
* SAUCE: Fix MODULE_IMPORT/MODULE_EXPORT
The original patch failed to work for amd64.
- LP: #430694
[ Upstream Kernel Changes ]
* ALSA: hda - Add a white-list for MSI option
Upstream cherry-pick: Infrastructure support for #445580
* ALSA: hda - Add HP Pavilion dv4t-1300 to MSI whitelist
- LP: #445580
* ALSA: intel8x0 - Mute External Amplifier by default for Sony VAIO
VGN-T350P
- LP: #410933
* ALSA: intel8x0 - Mute External Amplifier by default for Sony VAIO
VGN-B1VP
- LP: #410933
* Rebased against linux (2.6.31-12.40) karmic; urgency=low
[ Tim Gardner ]
* SAUCE: Created MODULE_EXPORT/MODULE_IMPORT macros
- LP: #430694
* SAUCE: Use MODULE_IMPORT macro to tie intel_agp to i915
- LP: #430694
[ Upstream Kernel Changes ]
* V4L/DVB (12352): gspca - vc032x: Fix mi1310_soc preview and LED
- LP: #310760
* Rebased against linux (2.6.31-12.39) karmic; urgency=low
[ Andy Whitcroft ]
* install the full changelog with the binary package
* changelog -- explicitly note rebases and clean history
[ Tim Gardner ]
* Revert "SAUCE: (drop after 2.6.31) Disable iwl-1000 series wireless
adapters"
* Revert "SAUCE: (drop after 2.6.31) eCryptfs: Prevent lower dentry from
going negative during unlink"
* Revert "SAUCE: (drop after 2.6.31) em28xx: ir-kbd-i2c init data needs a
persistent object"
* Revert "SAUCE: (drop after 2.6.31) saa7134: ir-kbd-i2c init data needs
a persistent object"
* Revert "drm/i915: Check that the relocation points to within the
target"
* Revert "drm/i915: fix tiling on IGDNG"
* Revert "Driver core: add new device to bus's list before probing"
* Revert "HID: completely remove apple mightymouse from blacklist"
* Revert "KVM: x86: check for cr3 validity in ioctl_set_sregs"
All reverts superseded by corresponding v2.6.31.2 patches
* [Config] Add d101m_ucode.bin to d-i/firmware/nic-modules
- LP: #439456
* [Config] Enabled CONFIG_SND_HDA_HWDEP
- LP: #443117
* [Config] Add cpio as a build dependency.
* [Config] Set default I/O scheduler back to CFQ for desktop flavours
- LP: #381300
[ Upstream Kernel Changes ]
* KVM: VMX: Fix EPT with WP bit change during paging
* pata_amd: do not filter out valid modes in nv_mode_filter
* p54usb: add Zcomax XG-705A usbid
* x86: Increase MIN_GAP to include randomized stack
* serial: bfin_5xx: fix building as module when early printk is enabled
* USB: option.c Add support for ZTE AC2726 EVDO modem
* USB: option: TELIT UC864G support
* video: s3c_fb.c: fix build with CONFIG_HOTPLUG=n
* kbuild: fix cc1 options check to ensure we do not use -fPIC when
compiling
* drivers/mfd/ab3100-core.c: fix powerpc build error
* thinkpad-acpi: don't ask about brightness_mode for fw. 1V and 1R
* ACPI: pci_slot.ko wants a 64-bit _SUN
* fbcon: only unbind from console if successfully registered
* kallsyms: fix segfault in prefix_underscores_count()
* sisfb: change SiS_DDC_Port type to SISIOADDRESS
* mmc_spi: fail gracefully if host or card do not support the switch
command
* alpha: AGP update (fixes compile failure)
* fs: make sure data stored into inode is properly seen before unlocking
new inode
* eCryptfs: Handle unrecognized tag 3 cipher codes
* eCryptfs: Check for O_RDONLY lower inodes when opening lower files
* eCryptfs: Filename encryption only supports password auth tokens
* eCryptfs: Validate global auth tok keys
* eCryptfs: Prevent lower dentry from going negative during unlink
* Re-enable Lanman security
* xen: make -fstack-protector work under Xen
* xen: only enable interrupts while actually blocking for spinlock
* xen: use stronger barrier after unlocking lock
* xen: check EFER for NX before setting up GDT mapping
* perf_counter: Fix perf_copy_attr() pointer arithmetic
* perf tools: Fix buffer allocation
* tty: serial/pcmcia: add ID for Advantech card
* PM / PCMCIA: Drop second argument of pcmcia_socket_dev_suspend()
* PM / yenta: Fix cardbus suspend/resume regression
* sony-laptop: check for rfkill hard block at load time
* nilfs2: fix missing zero-fill initialization of btree node cache
* ar9170usb: add usbid for TP-Link TL-WN821N v2
* mtd: nand: fix ECC Correction bug for SMC ordering for NDFC driver
* mtd: ofpart: Check availability of reg property instead of name
property
* mtd: cfi_cmdset_0002: add 0xFF intolerance for M29W128G
* USB: serial: ftdi_sio: new hardware support - hameg power supply
* USB: add PIDs for FTDI based OpenDCC hardware
* USB: serial: ftdi: handle gnICE+ JTAG adaptors
* USB: CDC WDM driver doesn't support non-blocking reads
* USB: fix cdc-acm regression in open
* cdc_acm: Fix to use modern speed interfaces
* tty: remove dtr/rts use from the driver open methods
* tty: gigaset: really fix chars_in_buffer
* kaweth: Fix memory leak in kaweth_control()
* x86: SGI UV: Fix IPI macros
* USB: serial: pl2303: new hardware support - sanwa multimeter
* USB: storage: fix a resume path GFP_NOIO must be used
* USB: usb-storage fails to attach to Huawei Datacard cdrom device
* USB: usbtmc: sanity checks for DEV_DEP_MSG_IN urbs
* USB: sl811-hcd: Fix device disconnect:
* drm/i915: remove restore in resume
* drm/i915: Only destroy a constructed mmap offset
* drm/i915: prevent FIFO calculation overflows on 32 bits with high
dotclocks
* drm/i915: Add buffer to inactive list immediately during fault
* drm/i915: Check that the relocation points to within the target
* drm/i915: Fix typo for wrong LVDS clock setting on IGDNG
* drm/i915: Fix SSC frequence for IGDNG
* drm/i915: Remove DAC disable in CRT force detect on IGDNG
* drm/i915: Fix LVDS panel fitting on Arrandale
* drm/I915: Use the CRT DDC to get the EDID for DVI-connector on Mac
* drm/i915: fix tiling on IGDNG
* agp/intel: Fix the pre-9xx chipset flush.
* nfsd4: fix null dereference creating nfsv4 callback client
* can: fix NOHZ local_softirq_pending 08 warning
* ahci: restore pci_intx() handling
* pxa/sharpsl_pm: zaurus c3000 aka spitz: fix resume
* net ax25: Fix signed comparison in the sockopt handler
* net: Make the copy length in af_packet sockopt handler unsigned
* pty_write: don't do a tty_wakeup() when the buffers are full
* KVM: fix cpuid E2BIG handling for extended request types
* KVM: MMU: fix missing locking in alloc_mmu_pages
* KVM: MMU: fix bogus alloc_mmu_pages assignment
* KVM: Protect update_cr8_intercept() when running without an apic
* Fix NULL ptr regression in powernow-k8
* perf tools: do not complain if root is owning perf.data
* netfilter: nf_nat: fix inverted logic for persistent NAT mappings
* netfilter: nf_conntrack: netns fix re reliable conntrack event delivery
* netfilter: bridge: refcount fix
* netfilter: ebt_ulog: fix checkentry return value
* ath5k: Wakeup fixes
* ath5k: do not release irq across suspend/resume
* Driver core: add new device to bus's list before probing
* tty: Add a full port_close function
* tty: USB hangup is racy
* tty: USB can now use the shutdown method for kref based freeing of
ports
* hwmon: (asus_atk0110) Add maintainer information
* tty: USB serial termios bits
* usb-serial: change referencing of port and serial structures
* usb-serial: put subroutines in logical order
* usb-serial: change logic of serial lookups
* usb-serial: acquire references when a new tty is installed
* usb-serial: fix termios initialization logic
* usb-serial: rename subroutines
* usb-serial: add missing tests and debug lines
* usb-serial: straighten out serial_open
* USB serial: update the console driver
* USB: xhci: Work around for chain bit in link TRBs.
* USB: xhci: Fix slot and endpoint context debugging.
* USB: xhci: Configure endpoint code refactoring.
* USB: xhci: Set correct max packet size for HS/FS control endpoints.
* USB: xhci: Support full speed devices.
* USB: xhci: Handle stalled control endpoints.
* USB: xhci: Add quirk for Fresco Logic xHCI hardware.
* USB: xhci: Make TRB completion code comparison readable.
* USB: xhci: Handle babbling endpoints correctly.
* USB: xhci: Don't touch xhci_td after it's freed.
* USB: xhci: Check URB's actual transfer buffer size.
* USB: xhci: Check URB_SHORT_NOT_OK before setting short packet status.
* USB: xhci: Set -EREMOTEIO when xHC gives bad transfer length.
* USB: xhci: Support interrupt transfers.
* USB: Fix SS endpoint companion descriptor parsing.
* /proc/kcore: work around a BUG()
* hugetlb: restore interleaving of bootmem huge pages (2.6.31)
* page-allocator: limit the number of MIGRATE_RESERVE pageblocks per zone
* mm: munlock use follow_page
* mm: fix anonymous dirtying
* mmap: avoid unnecessary anon_vma lock acquisition in vma_adjust()
* Fix idle time field in /proc/uptime
* drm/i915: Handle ERESTARTSYS during page fault
* em28xx: ir-kbd-i2c init data needs a persistent object
* saa7134: ir-kbd-i2c init data needs a persistent object
* powerpc/8xx: Fix regression introduced by cache coherency rewrite
* powerpc: Fix incorrect setting of __HAVE_ARCH_PTE_SPECIAL
* HID: completely remove apple mightymouse from blacklist
* mptsas : PAE Kernel more than 4 GB kernel panic
* NOMMU: Fix MAP_PRIVATE mmap() of objects where the data can be mapped
directly
* iwlwifi: Handle new firmware file with ucode build number in header
* iwlwifi: update 1000 series API version to match firmware
* iwlagn: modify digital SVR for 1000
* iwlwifi: traverse linklist to find the valid OTP block
* iwlwifi: fix unloading driver while scanning
* Linux 2.6.31.2
* Rebased against linux (2.6.31-11.38) karmic; urgency=low
[ Stefan Bader ]
* [Upstream] acerhdf: Limit modalias matching to supported boards
- LP: #435958
[ Tim Gardner ]
* [Config] Added sata_via to d-i/modules/sata-modules
- LP: #434827
* SAUCE: (drop after 2.6.31) Disable iwl-1000 series wireless adapters
- LP: #439285
* [Upstream] i915: Fix i2c init message
- LP: #409361
* [Config] Add sym53c8xx.ko to virtual sub-flavour
- LP: #439415
[ Upstream Kernel Changes ]
* sched: Disable NEW_FAIR_SLEEPERS for now
- LP: #436342
* ACPI video: ignore buggy _BQC
* ACPI video: work-around BIOS AML bug in _BQC
- LP: #428910
* ALSA: hda - Added quirk to enable sound on Toshiba NB200
- LP: #438318
-- Tim Gardner <email address hidden> Fri, 09 Oct 2009 10:42:15 -0600
-
linux-ec2 (2.6.31-300.5) karmic; urgency=low
[ Tim Gardner ]
* [Config] Fix header package names and dependencies
- LP: #437784
linux-ec2 (2.6.31-300.4) karmic; urgency=low
[ Tim Gardner ]
* [Config] Disable Lenovo laptop config
* Rebase against master Ubuntu-2.6.31-11.37
[ Upstream Kernel Changes ]
* n_tty: honor opost flag for echoes
* n_tty: move echoctl check and clean up logic
- LP: #438310
-- Tim Gardner <email address hidden> Wed, 30 Sep 2009 08:07:32 -0600
-
linux-ec2 (2.6.31-300.4) karmic; urgency=low
[ Tim Gardner ]
* [Config] Disable Lenovo laptop config
* Rebase against master Ubuntu-2.6.31-11.37
[ Upstream Kernel Changes ]
* n_tty: honor opost flag for echoes
* n_tty: move echoctl check and clean up logic
- LP: #438310
-- Tim Gardner <email address hidden> Mon, 28 Sep 2009 22:15:20 -0600
-
linux-ec2 (2.6.31-300.3) karmic; urgency=low
[ Chuck Short ]
* SAUCE: ec2: Default domU console to tty.
- LP: #431103
[ Tim Gardner ]
* [Config] Remove dependency on wireless-crda
- LP: #434755
* [Config] Drop bootloaders as a recommendation
- LP: #434755
* [Config] Drop virtual sub flavours
-- Tim Gardner <email address hidden> Fri, 25 Sep 2009 15:18:34 -0600
-
linux-ec2 (2.6.31-300.2) karmic; urgency=low
[ Tim Gardner ]
* [Config] Use gawk in xen makefiles
* [Config] CONFIG_DMI=n for XEN_UNPRIVILEGED_GUEST
* MIR review: LP: #427658
-- Tim Gardner <email address hidden> Tue, 08 Sep 2009 22:54:48 -0600