Publishing details

Changelog

linux (3.2.0-20.32) precise; urgency=low

  [ Andy Lutomirski ]

  * SAUCE: SECCOMP: Add PR_{GET,SET}_NO_NEW_PRIVS to prevent execve from
    granting privs

  [ John Johansen ]

  * SAUCE: SECCOMP: Fix apparmor for PR_{GET,SET}_NO_NEW_PRIVS

  [ Kees Cook ]

  * SAUCE: SECCOMP: seccomp: remove duplicated failure logging
  * [Config] SECCOMP_FILTER=y

  [ Upstream Kernel Changes ]

  * seccomp: audit abnormal end to a process due to seccomp

  [ Will Drewry ]

  * SAUCE: SECCOMP: sk_run_filter: add BPF_S_ANC_SECCOMP_LD_W
  * SAUCE: SECCOMP: net/compat.c,linux/filter.h: share compat_sock_fprog
  * SAUCE: SECCOMP: seccomp: kill the seccomp_t typedef
  * SAUCE: SECCOMP: arch/x86: add syscall_get_arch to syscall.h
  * SAUCE: SECCOMP: asm/syscall.h: add syscall_get_arch
  * SAUCE: SECCOMP: seccomp: add system call filtering using BPF
  * SAUCE: SECCOMP: seccomp: add SECCOMP_RET_ERRNO
  * SAUCE: SECCOMP: signal, x86: add SIGSYS info and make it synchronous.
  * SAUCE: SECCOMP: seccomp: Add SECCOMP_RET_TRAP
  * SAUCE: SECCOMP: ptrace,seccomp: Add PTRACE_SECCOMP support
  * SAUCE: SECCOMP: x86: Enable HAVE_ARCH_SECCOMP_FILTER
  * SAUCE: SECCOMP: Documentation: prctl/seccomp_filter
 -- Leann Ogasawara <email address hidden>   Wed, 21 Mar 2012 14:03:41 -0700

Available diffs

Builds

Package files