--- Begin Message ---
Package: src:linux-2.6
Version: 2.6.32-46
Severity: important
- udf: Avoid run away loop when partition table length is corrupted
- udf: Fortify loading of sparing table
- locks: fix checking of fcntl_setlease argument
- tcp: Don't change unlocked socket state in tcp_v4_err().
- cred: copy_process() should clear child->replacement_session_keyring
- hfsplus: Fix potential buffer overflows
- dl2k: Clean up rio_ioctl
- dl2k: use standard #defines from mii.h.
- net: sock: validate data_len before allocating skb in sock_alloc_send_pskb()
- ntp: Fix leap-second hrtimer livelock
- ntp: Correct TAI offset during leap second
- timekeeping: Fix CLOCK_MONOTONIC inconsistency during leapsecond
- time: Move common updates to a function
- hrtimer: Provide clock_was_set_delayed()
- timekeeping: Fix leapsecond triggered load spike issue
- timekeeping: Maintain ktime_t based offsets for hrtimers
- hrtimers: Move lock held region in hrtimer_interrupt()
- timekeeping: Provide hrtimer update function
- hrtimer: Update hrtimer base offsets each hrtimer_interrupt
- timekeeping: Add missing update call in timekeeping_resume()
- usb: Fix deadlock in hid_reset when Dell iDRAC is reset
- jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer
- security: fix compile error in commoncap.c
- fcaps: clear the same personality flags as suid when fcaps are used
- hugepages: fix use after free bug in "quota" handling
- KVM: Ensure all vcpus are consistent with in-kernel irqchip settings
- KVM: x86: disallow multiple KVM_CREATE_IRQCHIP
- block: Fix io_context leak after failure of clone with CLONE_IO
- block: Fix io_context leak after clone with CLONE_IO
- fix pgd_lock deadlock
- KVM: x86: fix missing checks in syscall emulation
- KVM: x86: extend "struct x86_emulate_ops" with "get_cpuid"
- KVM: Device assignment permission checks
- KVM: Remove ability to assign a device without iommu support
- rose: Add length checks to CALL_REQUEST parsing
- KVM: x86: Prevent starting PIT timers in the absence of irqchip support
- xfs: Fix possible memory corruption in xfs_readlink
We already applied these.
- netxen: support for GbE port settings
Fixes support for some Ethernet modes in this network driver (#638921).
- Fix sparc build with newer tools.
Does not affect squeeze as it's specific to 32-bit SPARC.
- powerpc/pmac: Fix SMP kernels on pre-core99 UP machines
Fixes boot crash for 32-bit PowerPC SMP kernel on some UP systems.
We build separate UP and SMP kernels so this isn't really important,
but the fix is quite obviously correct.
- Bluetooth: btusb: fix bInterval for high/super speed isochronous endpoints
Fixes miscalculation of the data transfer interval for high/super
speed (i.e. 480 Mbit/s or 4.8 Gbit/s transfer rate) USB-attached
Bluetooth adapters. I assume these used to be mostly full-speed
(12 Mbit/s), and this falls under new hardware support.
- futex: Fix uninterruptible loop due to gate_area
Fixes user-triggerable DoS.
- time: Improve sanity checking of timekeeping inputs
- time: Move ktime_t overflow checking into timespec_valid_strict
Improve validation of hardware/user-provided times to avoid overflow
in subsequent calculations. This is intended to improve security and
stability, but I don't know what specific problems are fixed.
- time: Avoid making adjustments if we haven't accumulated anything
Removes unnecessary recalculation of real time (wall-clock time)
which results in inconsistencies of the different clocks.
- ioat2: kill pending flag
Fixes a major performance problem with this DMA engine driver.
- drm/i915: Attempt to fix watermark setup on 85x (v2)
Fixes a hardware support regression in 2.6.32 (#661696). However
we'll need to apply this separately since we updated DRM to 2.6.33.y.
- eCryptfs: Copy up lower inode attrs after setting lower xattr
Newly added extended attributes were not being properly cached by
eCryptfs. This could result in the kernel applying incorrect security
restrictions on such filesystems.
- eCryptfs: Clear ECRYPTFS_NEW_FILE flag during truncate
Fixes data corruption on eCryptfs filesystems.
- oprofile: use KM_NMI slot for kmap_atomic
Fixes potential crash while using oprofile on systems with highmem.
- tty_audit: fix tty_audit_add_data live lock on audit disabled
If auditing is enabled for a tty and then globally disabled, a racing
read from that tty can enter an uninterruptible infinite loop.
- bonding: 802.3ad - fix agg_device_up
The bonding driver would in some cases check the link status of the
wrong slave device when deciding whether it needed to failover to
another slave. I assume this could result in loss of network
connectivity.
- usbnet: increase URB reference count before usb_unlink_urb
- usbnet: don't clear urb->dev in tx_complete
Fix possible memory corruption, crash or other badness when using USB
network interfaces.
- sched: Fix signed unsigned comparison in check_preempt_tick()
Fix a bug in the scheduler: it will spuriously decide that it's time
to reschedule from the current task, and ends up scheduling it again
for a longer period. This reduces responsiveness of the system.
- x86/PCI: amd: factor out MMCONFIG discovery
- PNP: fix "work around Dell 1536/1546 BIOS MMCONFIG bug that breaks USB"
Completes a bug fix that was supposed to be in 2.6.32.55. On the
mentioned Dell systems, there is a reserved region of memory not
described by the firmware. We avoid mapping any PCI devices there as
they won't be accessible.
- KVM: ia64: fix build due to typo
This has no effect in squeeze since we don't enable KVM on ia64.
- xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink()
The fix for CVE-2011-4077 replaced a buffer overflow vulnerability
with a DoS; this fixes that.
- x86: Derandom delay_tsc for 64 bit
Fixes implementation of short delays for amd64, which would sometimes
be much shorter than intended. These short delays are typically
needed when sequencing hardware access, and a too-short delay may
result in various kinds of failure depending on the hardware device,
but certainly including data corruption, hanging or crashing.
- ipsec: be careful of non existing mac headers
Fixes crash when using IPsec over an ATM device (e.g. plug-in DSL
modem).
- block, sx8: fix pointer math issue getting fw version
This SATA driver calculates the wrong address for firmware version
information during its initialisation. The most likely result is
getting incorrect information about the controller's capabilities, but
it could also crash the system.
- nilfs2: fix NULL pointer dereference in nilfs_load_super_block()
Fixes crash when mounting a corrupted filesystem of this type.
- USB: ftdi_sio: fix problem when the manufacture is a NULL string
Fixes crash when inserting some USB serial adapters.
- ntp: Fix integer overflow when setting time
This is really an integer truncation which can result in division by
zero on 64-bit systems. The backported version does not prevent
truncation but does avoid the division by zero. This might be a DoS
vulnerability, though I suspect it's not a real problem.
- SUNRPC: We must not use list_for_each_entry_safe() in rpc_wake_up()
Fixes case where SunRPC users (NFS client or server) can hang.
- ext4: check for zero length extent
Fixes crash when reading a corrupted filesystem of this type.
- xfs: Fix oops on IO error during xlog_recover_process_iunlinks()
An I/O failure should leave the filesystem read-only but otherwise
usable, but during deletion it could result in a crash.
- nfsd: don't allow zero length strings in cache_parse()
The kernel NFS server may request various information from userland
daemons; an empty string is never a valid response and may result in
a crash. This adds a check for that.
- sched/x86: Fix overflow in cyc2ns_offset
Fixes bug in TSC (timestamp counter) initialisation which could lead
to incorrect timekeeping after using kexec.
- Bluetooth: add NULL pointer check in HCI
- Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close
Fix potential crashes when shutting down a UART Bluetooth adapter.
- sparc64: Fix bootup crash on sun4v.
The DS driver used on sun4v (T-series CPUs) could crash in
initialisation.
- video:uvesafb: Fix oops that uvesafb try to execute NX-protected page
The VESA BIOS code typically ends up mapped with the NX (no-execute)
flag set on systems if NX is enabled, and apparently it's not practical
to clear the flag. Direct BIOS calls will result in a crash. However
the driver already relies on a userland daemon to emulate most BIOS
calls on i386 and all of them on other architectures. This switches
to using userland emulation for all calls when NX is enabled.
- USB: serial: fix race between probe and open
The race could lead to a crash or other badness.
- xhci: Don't write zeroed pointers to xHC registers.
Fixes memory corruption on some systems with a USB 3.0 controller.
- xHCI: Correct the #define XHCI_LEGACY_DISABLE_SMI
The USB 3.0 controller driver was not properly disabling handling of
the controller by the BIOS. This could presumably result in
unreliable USB devices, memory corruption or other badness.
- crypto: sha512 - Fix byte counter overflow in SHA-512
Fixes possible miscalculation of SHA-512 for a stream longer than
2^64 bytes.
- PCI: Add quirk for still enabled interrupts on Intel Sandy Bridge GPUs
A common BIOS bug leaves interrupts enabled on an Intel GPU, which
will lead to its IRQ line being forcibly disabled by the kernel. This
can later cause the i915 driver to crash. This disables interrupts
cleanly during PCI setup and allows i915 to enable them later.
- phonet: Check input from user before allocating
The phonet protocol allocates a kernel buffer of whatever size the
user tries to send. This can lead to DoS (specifically OOM). Fixed
by immediately failing sends that exceed the maximum SDU size.
- netlink: fix races after skb queueing
- net: fix a race in sock_queue_err_skb()
Fix potential use-after-free cases; might be exploitable by a local user.
- atl1: fix kernel panic in case of DMA errors
- net/ethernet: ks8851_mll fix rx frame buffer overflow
Network drivers would blow up your computer.
- net_sched: gred: Fix oops in gred_dump() in WRED mode
Fix crash after certain reconfigurations of the 'gred' network
scheduler.
- ARM: 7410/1: Add extra clobber registers for assembly in kernel_execve
Fixes potential panic at boot, dependent on compiler version.
Presumably has no effect in squeeze.
- netem: fix possible skb leak
This is the 'network emulator', not something you'd use in production,
so probably not security relevant.
- ALSA: echoaudio: Remove incorrect part of assertion
Fixes initialisation of some devices supported by this driver,
including the 'Darla20'.
- NFSv4: Revalidate uid/gid after open
Fixes spurious EPERM errors (#659111).
- ext3: Fix error handling on inode bitmap corruption
- ext4: fix error handling on inode bitmap corruption
Fixes bug in handling of corrupt filesystems; presumably a security
vulnerability.
- xhci: Reset reserved command ring TRBs on cleanup.
Fixes bug in the USB 3.0 controller driver. It did not reset software
state properly when resetting the hardware, and the controller could
become unusable after several suspend/resume cycles.
- SCSI: fix scsi_wait_scan
initramfs-tools uses the scsi_wait_scan module to wait for all SCSI
adapters to finish scanning their buses, before trying to mount the
real root device. However, for some time this was not waiting at all!
Possibly serialisation of module loading has the desired effect so
long as all SCSI adapter drivers are modular. I don't know.
- powerpc: Fix kernel panic during kernel module load
- powerpc/ftrace: Fix assembly trampoline register usage
On PowerPC the module loader must sometimes generate 'trampoline' code
for calls between the initialisation code and other code in a module.
A similar issue exists with the ftrace facility. Their trampolines
used the wrong register as a temporary, which could result in a crash,
memory corruption or other badness.
- fuse: fix stat call on 32 bit platforms
FUSE always uses 64-bit inode numbers, and stat() may return 64-bit
inode numbers (depending on which architecture and syscall is used),
but the VFS caches inode numbers as native words. Previously FUSE
would rely on the VFS cache, so inode numbers could be truncated on
32-bit systems. This adds a private cache of the full inode number so
stat() returns a consistent value.
- udf: Improve table length check to avoid possible overflow
Fix a possible integer overflow which might allow the original fix
for CVE-2012-3400 to be defeated.
- stable: Allow merging of backports for serious user-visible performance issues
Documentation change to stable rules.
- eCryptfs: Properly check for O_RDONLY flag before doing privileged open
eCryptfs could unnecessarily retry opening a file when the lower
filesystem was mounted read-only. It looks like this could be a
performance problem. The fix is simple enough.
- USB: cdc-wdm: fix lockup on error in wdm_read
Fixes uninterruptible infinite loop in this USB communication driver,
used for many cellular modems.
- mm: Hold a file reference in madvise_remove
Fixes possible user-after-free when madvise() races with munmap()
with close(). Probably exploitable for at least local DoS.
- ntp: Fix STA_INS/DEL clearing bug
Fixes minor regression introduced by 'ntp: Fix leap-second hrtimer
livelock': a userland request to cancel a scheduled leap second
could be ignored.
- MIPS: Properly align the .data..init_task section.
Fixes a possible error in kernel memory layout that would lead to
crashes at boot time or later.
- powerpc: Add "memory" attribute for mfmsr()
Fixes potential mis-ordering of CPU reconfiguration when using gcc
4.6 or later. This should have no effect in squeeze.
- SCSI: libsas: continue revalidation
The kernel sometimes needs to re-discover devices attached to a SAS
controller. This fixes some cases where it would miss some devices,
presumably making them inaccessible.
- SCSI: libsas: fix sas_discover_devices return code handling
Fixes another bug which could lead to SAS devices not being
discovered.
- SCSI: fix eh wakeup (scsi_schedule_eh vs scsi_restart_operations)
A race condition in the SCSI core can result in deferred error
handling not being done for a controller. In particular, hotplugging
a SATA device in a SAS port can trigger this and results in the device
not being usable.
- SCSI: Avoid dangling pointer in scsi_requeue_command()
Fixes potential crash after SCSI(-like) device removal.
- usbdevfs: Correct amount of data copied to user in processcompl_compat
Fixes inconsistency between native and compat (32-bit userland on
64-bit kernel) behaviour for userland USB drivers reading isochronous
packets. This would presumably result in some such drivers failing in
this configuration.
- ACPI/AC: prevent OOPS on some boxes due to missing check power_supply_register() return value check
Fixes crash at boot on some x86 systems with a BIOS bug/quirk.
- Btrfs: call the ordered free operation without any locks held
Fixes potential deadlock when using this filesystem.
- nfsd4: our filesystems are normally case sensitive
The NFSv4 server used to report that its filesystems were case-
insensitive. I assume this could result in some client unexpectedly
performing case-insensitive matching locally, resulting in data loss.
The Linux client does not check this flag.
- ext4: don't let i_reserved_meta_blocks go negative
Workaround for a bug in block accounting in this filesystem, that
previously caused it to be corrupted. The underlying bug doesn't
appear to have been understood or fixed yet.
- sctp: Fix list corruption resulting from freeing an association on a list
Fixes bug in this network protocol that can lead to a crash or memory
corruption. This is at least a local DoS.
- cipso: don't follow a NULL pointer when setsockopt() is called
Fixes locally-triggered null dereference which kills the calling task
but doesn't seem to do anything more.
- wanmain: comparing array with NULL
Removes a condition that is always false, which presumably provokes a
warning from some compilers. Not that important but quite safe.
- USB: kaweth.c: use GFP_ATOMIC under spin_lock
Fixes potential deadlock when using this network driver.
- tcp: perform DMA to userspace only if there is a task waiting for it
Fixes possible userland hang in recvmsg() on systems which use a DMA
engine (e.g. Intel I/OAT) for this.
- net/tun: fix ioctl() based info leaks
Fixes leak of kernel stack contents to userland.
- USB: echi-dbgp: increase the controller wait time to come out of halt.
We don't include this driver in squeeze.
- ALSA: mpu401: Fix missing initialization of irq field
If this driver failed to probe a device, it would try to remove an IRQ
handler it had not installed. This would result in a WARNING but
nothing worse.
- futex: Test for pi_mutex on fault in futex_wait_requeue_pi()
- futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi()
Fix locally-triggered null dereferences which kill the calling task
but don't seem to do anything more.
- futex: Fix bug in WARN_ON for NULL q.pi_state
Fix condition for a WARNING, which was previously always false. It
appears that the warning would be shortly followed by a null
dereference anyway.
- pcdp: use early_ioremap/early_iounmap to access pcdp table
This is bogus and will be reverted.
- mm: mmu_notifier: fix freed page still mapped in secondary MMU
If a process's memory is mapped by 'secondary MMUs', e.g. shadow page
tables used by KVM, it must be removed from all those page tables
before being freed. However, it was sometimes freed too early when a
process exited. This might result in memory corruption, a crash, or
other badness and could be a security vulnerability for KVM hosts.
- fuse: verify all ioctl retry iov elements
FUSE servers may copy arbitrary memory from and to a process that
calls an ioctl, but the total length to be copied is limited as there
is an intermediate kernel buffer. It specifies an iovec for which
summing of lengths may result in an integer overflow. However, the
kernel would consistently use the same total length when range-
checking and copying, so this isn't a security vulnerability. Neither
is it practically likely to cause data loss. But the fix is obviously
correct, and the old code is obviously not.
- xhci: Increase reset timeout for Renesas 720201 host.
Summary is pretty good. The driver just won't work with this chip,
so this counts as hardware support.
- usb: serial: mos7840: Fixup mos7840_chars_in_buffer()
Fixes data loss (truncated writes) in this driver.
- ALSA: hda - fix Copyright debug message
Corrects reporting in procfs of the 'copyright' flag for a digital
input to this sound driver. Could be considered data loss though this
flag has never been (and practically cannot be) reliable.
- vfs: missed source of ->f_pos races
Changes to the file position by readv() and writev() in a compat task
were non-atomic. This could perhaps result in data loss, though it
doesn't seem very likely. Anyway, it was inconsistent with native
behaviour.
- NFSv3: Ensure that do_proc_get_root() reports errors correctly
Fixes a missing error check in NFSv3 mounting. This might have led to
data loss or other failures.
- NFS: Alias the nfs module to nfs4
This is intended to smooth upgrades to later kernel versions.
Currently the alias is defined in a modprobe configuration file, and
it should be removed from there so that nfs4 can be moved to a
separate module in later kernel versions (see #683972).
- svcrpc: fix svc_xprt_enqueue/svc_recv busy-looping
Fixes infinite loop in SunRPC services such as the NFS server.
This might be exploitable for denial-of-service by an NFS client.
- svcrpc: sends on closed socket should stop immediately
A SunRPC server such as the NFS server may fail to send a complete
response to a client for various reasons. It must then close the
socket and let the client recover. However, another server thread
might send successfully on the socket before it was closed. This
would result in data corruption as the client treats it as the
remainder of the first response.
- cciss: fix incorrect scsi status reporting
Removes some incorrect though actually harmless (by my reading) code.
- USB: CDC ACM: Fix NULL pointer dereference
Fixes null dereference when probing a USB communication device with
invalid descriptors.
- Remove user-triggerable BUG from mpol_to_str
A task can easily trigger this in itself, and potentially other tasks
looking at /proc/$PID/numa_maps.
- udf: Fix data corruption for files in ICB
Fixes corruption of small files on this filesystem.
- ext3: Fix fdatasync() for files with only i_size changes
If a file on ext3 was truncated/extended without any new data being
written, fdatasync() did not force the size change to be written to
disk. This is data corruption.
- PARISC: Redefine ATOMIC_INIT and ATOMIC64_INIT to drop the casts
This was not a release architecture for squeeze.
- dccp: check ccid before dereferencing
Fixes a user-triggerable null dereference in this network protocol.
- ia64: Add accept4() syscall
Add the accept4() function to the system call table. This was already
implemented on all other release architectures and is required by udev
in wheezy (#647825, #648325).
- tcp: do_tcp_sendpages() must try to push data out on oom conditions
Fixes a potential TCP connection stall.
- tcp: drop SYN+FIN messages
Fixes a remote DoS vulnerability.
- xen: correctly check for pending events when restoring irq flags
Prevents unnecessary hypervisor calls under Xen which can be a major
performance problem.
- x86, amd, xen: Avoid NULL pointer paravirt references
Fixes crash at boot(?) as Xen dom0 on AMD 'Trinity' CPUs.
- x86, tls: Off by one limit check
Fixes potential out-of-bounds access to the kernel's TLS descriptors
for a 32-bit task. So far as I can see, this is not a security
vulnerability - the only caller is the ELF core-dump code which always
passes valid parameters.
- sparc64: Eliminate obsolete __handle_softirq() function
Fixes potential use-after-free of RCU-protected structures used in
soft-IRQ context (e.g. most network receive processing).
- udf: fix retun value on error path in udf_load_logicalvol
The initial fix for CVE-2012-3400 did not actually abort mounting
when an invalid filesystem was detected. An invalid filesystem
may therefore still result in a crash or other badness.
- mtd: cafe_nand: fix an & vs | mistake
This flash chip driver would wrongly report that the chip was
always ready to accept a command. This presumably could result in
data loss.
- epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree()
- epoll: ep_unregister_pollwait() can use the freed pwq->whead
- epoll: limit paths
- Don't limit non-nested epoll paths
Fixes local DoS (CVE-2011-1083).
- epoll: clear the tfile_check_list on -ELOOP
Fixes a flaw in the previous fix (CVE-2012-3375).
- random: Reorder struct entropy_store to remove padding on 64bits
- random: update interface comments to reflect reality
- random: simplify fips mode
- x86, cpu: Add CPU flags for F16C and RDRND
- x86, cpufeature: Update CPU feature RDRND to RDRAND
- random: Add support for architectural random hooks
- x86, random: Architectural inlines to get random integers with RDRAND
- x86, random: Verify RDRAND functionality and allow it to be disabled
- fix typo/thinko in get_random_bytes()
- random: Use arch_get_random_int instead of cycle counter if avail
- random: Use arch-specific RNG to initialize the entropy store
- random: Adjust the number of loops when initializing
- drivers/char/random.c: fix boot id uniqueness race
- random: make 'add_interrupt_randomness()' do something sane
- random: use lockless techniques in the interrupt path
- random: create add_device_randomness() interface
- random: use the arch-specific rng in xfer_secondary_pool
- random: add new get_random_bytes_arch() function
- random: mix in architectural randomness in extract_buf()
- MAINTAINERS: Theodore Ts'o is taking over the random driver
- usb: feed USB device information to the /dev/random driver
- net: feed /dev/random with the MAC address when registering a device
- random: remove rand_initialize_irq()
- random: Add comment to random_initialize()
- rtc: wm831x: Feed the write counter into device_add_randomness()
- mfd: wm831x: Feed the device UUID into device_add_randomness()
- dmi: Feed DMI table to /dev/random driver
Increase the availability of entropy for (pseudo-)random number
generation. Lack of entropy is an important security problem,
particularly during installation when we may need to generate a random
key for an encrypted partition, or an SSH host key - but don't have
any entropy carried over from a previous boot.
Ben.
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
--- End Message ---
--- Begin Message ---
Source: linux-2.6
Source-Version: 2.6.32-47
We believe that the bug you reported is fixed in the latest version of
linux-2.6, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 698022@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ben Hutchings <ben@decadent.org.uk> (supplier of updated linux-2.6 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 19 Jan 2013 05:00:07 +0000
Source: linux-2.6
Binary: linux-tools-2.6.32 linux-source-2.6.32 linux-doc-2.6.32 linux-manual-2.6.32 linux-patch-debian-2.6.32 firmware-linux-free linux-support-2.6.32-5 linux-base linux-libc-dev linux-headers-2.6.32-5-all linux-headers-2.6.32-5-all-alpha linux-headers-2.6.32-5-common linux-image-2.6.32-5-alpha-generic linux-headers-2.6.32-5-alpha-generic linux-image-2.6.32-5-alpha-smp linux-headers-2.6.32-5-alpha-smp linux-image-2.6.32-5-alpha-legacy linux-headers-2.6.32-5-alpha-legacy linux-headers-2.6.32-5-all-amd64 linux-image-2.6.32-5-amd64 linux-headers-2.6.32-5-amd64 linux-image-2.6.32-5-amd64-dbg linux-headers-2.6.32-5-common-openvz linux-image-2.6.32-5-openvz-amd64 linux-headers-2.6.32-5-openvz-amd64 linux-image-2.6.32-5-openvz-amd64-dbg linux-headers-2.6.32-5-common-vserver linux-image-2.6.32-5-vserver-amd64 linux-headers-2.6.32-5-vserver-amd64 linux-image-2.6.32-5-vserver-amd64-dbg linux-headers-2.6.32-5-common-xen linux-image-2.6.32-5-xen-amd64 linux-headers-2.6.32-5-xen-amd64
linux-image-2.6.32-5-xen-amd64-dbg xen-linux-system-2.6.32-5-xen-amd64 linux-headers-2.6.32-5-all-armel linux-image-2.6.32-5-iop32x linux-headers-2.6.32-5-iop32x linux-image-2.6.32-5-ixp4xx linux-headers-2.6.32-5-ixp4xx linux-image-2.6.32-5-kirkwood linux-headers-2.6.32-5-kirkwood linux-image-2.6.32-5-orion5x linux-headers-2.6.32-5-orion5x linux-image-2.6.32-5-versatile linux-headers-2.6.32-5-versatile linux-headers-2.6.32-5-all-hppa linux-image-2.6.32-5-parisc linux-headers-2.6.32-5-parisc linux-image-2.6.32-5-parisc-smp linux-headers-2.6.32-5-parisc-smp linux-image-2.6.32-5-parisc64 linux-headers-2.6.32-5-parisc64 linux-image-2.6.32-5-parisc64-smp linux-headers-2.6.32-5-parisc64-smp linux-headers-2.6.32-5-all-i386 linux-image-2.6.32-5-486 linux-headers-2.6.32-5-486 linux-image-2.6.32-5-686 linux-headers-2.6.32-5-686 linux-image-2.6.32-5-686-bigmem linux-headers-2.6.32-5-686-bigmem linux-image-2.6.32-5-686-bigmem-dbg linux-image-2.6.32-5-openvz-686
linux-headers-2.6.32-5-openvz-686 linux-image-2.6.32-5-openvz-686-dbg linux-image-2.6.32-5-vserver-686 linux-headers-2.6.32-5-vserver-686 linux-image-2.6.32-5-vserver-686-bigmem linux-headers-2.6.32-5-vserver-686-bigmem linux-image-2.6.32-5-vserver-686-bigmem-dbg linux-image-2.6.32-5-xen-686 linux-headers-2.6.32-5-xen-686 linux-image-2.6.32-5-xen-686-dbg xen-linux-system-2.6.32-5-xen-686 linux-headers-2.6.32-5-all-ia64 linux-image-2.6.32-5-itanium linux-headers-2.6.32-5-itanium linux-image-2.6.32-5-mckinley linux-headers-2.6.32-5-mckinley linux-image-2.6.32-5-vserver-itanium linux-headers-2.6.32-5-vserver-itanium linux-image-2.6.32-5-vserver-mckinley linux-headers-2.6.32-5-vserver-mckinley linux-headers-2.6.32-5-all-m68k linux-image-2.6.32-5-amiga linux-headers-2.6.32-5-amiga linux-image-2.6.32-5-atari linux-headers-2.6.32-5-atari linux-image-2.6.32-5-bvme6000 linux-headers-2.6.32-5-bvme6000 linux-image-2.6.32-5-mac linux-headers-2.6.32-5-mac
linux-image-2.6.32-5-mvme147 linux-headers-2.6.32-5-mvme147 linux-image-2.6.32-5-mvme16x linux-headers-2.6.32-5-mvme16x linux-headers-2.6.32-5-all-mips linux-image-2.6.32-5-r4k-ip22 linux-headers-2.6.32-5-r4k-ip22 linux-image-2.6.32-5-r5k-ip32 linux-headers-2.6.32-5-r5k-ip32 linux-image-2.6.32-5-sb1-bcm91250a linux-headers-2.6.32-5-sb1-bcm91250a linux-image-2.6.32-5-sb1a-bcm91480b linux-headers-2.6.32-5-sb1a-bcm91480b linux-image-2.6.32-5-4kc-malta linux-headers-2.6.32-5-4kc-malta linux-image-2.6.32-5-5kc-malta linux-headers-2.6.32-5-5kc-malta linux-headers-2.6.32-5-all-mipsel linux-image-2.6.32-5-r5k-cobalt linux-headers-2.6.32-5-r5k-cobalt linux-headers-2.6.32-5-all-powerpc linux-image-2.6.32-5-powerpc linux-headers-2.6.32-5-powerpc linux-image-2.6.32-5-powerpc-smp linux-headers-2.6.32-5-powerpc-smp linux-image-2.6.32-5-powerpc64 linux-headers-2.6.32-5-powerpc64 linux-image-2.6.32-5-vserver-powerpc linux-headers-2.6.32-5-vserver-powerpc
linux-image-2.6.32-5-vserver-powerpc64 linux-headers-2.6.32-5-vserver-powerpc64 linux-headers-2.6.32-5-all-s390 linux-image-2.6.32-5-s390x linux-headers-2.6.32-5-s390x linux-image-2.6.32-5-s390x-tape linux-image-2.6.32-5-vserver-s390x linux-headers-2.6.32-5-vserver-s390x linux-headers-2.6.32-5-all-sh4 linux-image-2.6.32-5-sh7751r linux-headers-2.6.32-5-sh7751r linux-image-2.6.32-5-sh7785lcr linux-headers-2.6.32-5-sh7785lcr linux-headers-2.6.32-5-all-sparc linux-image-2.6.32-5-sparc64 linux-headers-2.6.32-5-sparc64 linux-image-2.6.32-5-sparc64-smp linux-headers-2.6.32-5-sparc64-smp linux-image-2.6.32-5-vserver-sparc64 linux-headers-2.6.32-5-vserver-sparc64
linux-headers-2.6.32-5-all-sparc64
Architecture: all source
Version: 2.6.32-47
Distribution: stable
Urgency: low
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <ben@decadent.org.uk>
Closes: 626022 638921 646063 647825 659111 661696 666108 689928 690100 692133 695872 698022 698094 698473 698474 698475
Description:
firmware-linux-free - Binary firmware for various drivers in the Linux kernel
linux-base - Linux image base package
linux-doc-2.6.32 - Linux kernel specific documentation for version 2.6.32
linux-headers-2.6.32-5-486 - Header files for Linux 2.6.32-5-486
linux-headers-2.6.32-5-4kc-malta - Header files for Linux 2.6.32-5-4kc-malta
linux-headers-2.6.32-5-5kc-malta - Header files for Linux 2.6.32-5-5kc-malta
linux-headers-2.6.32-5-686-bigmem - Header files for Linux 2.6.32-5-686-bigmem
linux-headers-2.6.32-5-686 - Header files for Linux 2.6.32-5-686
linux-headers-2.6.32-5-all - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-alpha - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-amd64 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-armel - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-hppa - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-i386 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-ia64 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-m68k - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-mips - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-mipsel - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-powerpc - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-s390 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-sh4 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-sparc64 - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-all-sparc - All header files for Linux 2.6.32 (meta-package)
linux-headers-2.6.32-5-alpha-generic - Header files for Linux 2.6.32-5-alpha-generic
linux-headers-2.6.32-5-alpha-legacy - Header files for Linux 2.6.32-5-alpha-legacy
linux-headers-2.6.32-5-alpha-smp - Header files for Linux 2.6.32-5-alpha-smp
linux-headers-2.6.32-5-amd64 - Header files for Linux 2.6.32-5-amd64
linux-headers-2.6.32-5-amiga - Header files for Linux 2.6.32-5-amiga
linux-headers-2.6.32-5-atari - Header files for Linux 2.6.32-5-atari
linux-headers-2.6.32-5-bvme6000 - Header files for Linux 2.6.32-5-bvme6000
linux-headers-2.6.32-5-common - Common header files for Linux 2.6.32-5
linux-headers-2.6.32-5-common-openvz - Common header files for Linux 2.6.32-5-openvz
linux-headers-2.6.32-5-common-vserver - Common header files for Linux 2.6.32-5-vserver
linux-headers-2.6.32-5-common-xen - Common header files for Linux 2.6.32-5-xen
linux-headers-2.6.32-5-iop32x - Header files for Linux 2.6.32-5-iop32x
linux-headers-2.6.32-5-itanium - Header files for Linux 2.6.32-5-itanium
linux-headers-2.6.32-5-ixp4xx - Header files for Linux 2.6.32-5-ixp4xx
linux-headers-2.6.32-5-kirkwood - Header files for Linux 2.6.32-5-kirkwood
linux-headers-2.6.32-5-mac - Header files for Linux 2.6.32-5-mac
linux-headers-2.6.32-5-mckinley - Header files for Linux 2.6.32-5-mckinley
linux-headers-2.6.32-5-mvme147 - Header files for Linux 2.6.32-5-mvme147
linux-headers-2.6.32-5-mvme16x - Header files for Linux 2.6.32-5-mvme16x
linux-headers-2.6.32-5-openvz-686 - Header files for Linux 2.6.32-5-openvz-686
linux-headers-2.6.32-5-openvz-amd64 - Header files for Linux 2.6.32-5-openvz-amd64
linux-headers-2.6.32-5-orion5x - Header files for Linux 2.6.32-5-orion5x
linux-headers-2.6.32-5-parisc64 - Header files for Linux 2.6.32-5-parisc64
linux-headers-2.6.32-5-parisc64-smp - Header files for Linux 2.6.32-5-parisc64-smp
linux-headers-2.6.32-5-parisc - Header files for Linux 2.6.32-5-parisc
linux-headers-2.6.32-5-parisc-smp - Header files for Linux 2.6.32-5-parisc-smp
linux-headers-2.6.32-5-powerpc64 - Header files for Linux 2.6.32-5-powerpc64
linux-headers-2.6.32-5-powerpc - Header files for Linux 2.6.32-5-powerpc
linux-headers-2.6.32-5-powerpc-smp - Header files for Linux 2.6.32-5-powerpc-smp
linux-headers-2.6.32-5-r4k-ip22 - Header files for Linux 2.6.32-5-r4k-ip22
linux-headers-2.6.32-5-r5k-cobalt - Header files for Linux 2.6.32-5-r5k-cobalt
linux-headers-2.6.32-5-r5k-ip32 - Header files for Linux 2.6.32-5-r5k-ip32
linux-headers-2.6.32-5-s390x - Header files for Linux 2.6.32-5-s390x
linux-headers-2.6.32-5-sb1a-bcm91480b - Header files for Linux 2.6.32-5-sb1a-bcm91480b
linux-headers-2.6.32-5-sb1-bcm91250a - Header files for Linux 2.6.32-5-sb1-bcm91250a
linux-headers-2.6.32-5-sh7751r - Header files for Linux 2.6.32-5-sh7751r
linux-headers-2.6.32-5-sh7785lcr - Header files for Linux 2.6.32-5-sh7785lcr
linux-headers-2.6.32-5-sparc64 - Header files for Linux 2.6.32-5-sparc64
linux-headers-2.6.32-5-sparc64-smp - Header files for Linux 2.6.32-5-sparc64-smp
linux-headers-2.6.32-5-versatile - Header files for Linux 2.6.32-5-versatile
linux-headers-2.6.32-5-vserver-686-bigmem - Header files for Linux 2.6.32-5-vserver-686-bigmem
linux-headers-2.6.32-5-vserver-686 - Header files for Linux 2.6.32-5-vserver-686
linux-headers-2.6.32-5-vserver-amd64 - Header files for Linux 2.6.32-5-vserver-amd64
linux-headers-2.6.32-5-vserver-itanium - Header files for Linux 2.6.32-5-vserver-itanium
linux-headers-2.6.32-5-vserver-mckinley - Header files for Linux 2.6.32-5-vserver-mckinley
linux-headers-2.6.32-5-vserver-powerpc64 - Header files for Linux 2.6.32-5-vserver-powerpc64
linux-headers-2.6.32-5-vserver-powerpc - Header files for Linux 2.6.32-5-vserver-powerpc
linux-headers-2.6.32-5-vserver-s390x - Header files for Linux 2.6.32-5-vserver-s390x
linux-headers-2.6.32-5-vserver-sparc64 - Header files for Linux 2.6.32-5-vserver-sparc64
linux-headers-2.6.32-5-xen-686 - Header files for Linux 2.6.32-5-xen-686
linux-headers-2.6.32-5-xen-amd64 - Header files for Linux 2.6.32-5-xen-amd64
linux-image-2.6.32-5-486 - Linux 2.6.32 for old PCs
linux-image-2.6.32-5-4kc-malta - Linux 2.6.32 for MIPS Malta
linux-image-2.6.32-5-5kc-malta - Linux 2.6.32 for MIPS Malta (64-bit)
linux-image-2.6.32-5-686-bigmem-dbg - Debugging infos for Linux 2.6.32-5-686-bigmem
linux-image-2.6.32-5-686-bigmem - Linux 2.6.32 for PCs with 4GB+ RAM
linux-image-2.6.32-5-686 - Linux 2.6.32 for modern PCs
linux-image-2.6.32-5-alpha-generic - Linux 2.6.32 for Alpha
linux-image-2.6.32-5-alpha-legacy - Linux 2.6.32 for Alpha Legacy
linux-image-2.6.32-5-alpha-smp - Linux 2.6.32 for Alpha SMP
linux-image-2.6.32-5-amd64-dbg - Debugging infos for Linux 2.6.32-5-amd64
linux-image-2.6.32-5-amd64 - Linux 2.6.32 for 64-bit PCs
linux-image-2.6.32-5-amiga - Linux 2.6.32 for Amiga
linux-image-2.6.32-5-atari - Linux 2.6.32 for Atari
linux-image-2.6.32-5-bvme6000 - Linux 2.6.32 for BVM BVME4000 and BVME6000
linux-image-2.6.32-5-iop32x - Linux 2.6.32 for IOP32x
linux-image-2.6.32-5-itanium - Linux 2.6.32 for Itanium
linux-image-2.6.32-5-ixp4xx - Linux 2.6.32 for IXP4xx
linux-image-2.6.32-5-kirkwood - Linux 2.6.32 for Marvell Kirkwood
linux-image-2.6.32-5-mac - Linux 2.6.32 for Macintosh
linux-image-2.6.32-5-mckinley - Linux 2.6.32 for Itanium II
linux-image-2.6.32-5-mvme147 - Linux 2.6.32 for Motorola MVME147
linux-image-2.6.32-5-mvme16x - Linux 2.6.32 for Motorola MVME162/6/7, MVME172/7
linux-image-2.6.32-5-openvz-686-dbg - Debugging infos for Linux 2.6.32-5-openvz-686
linux-image-2.6.32-5-openvz-686 - Linux 2.6.32 for modern PCs, OpenVZ support
linux-image-2.6.32-5-openvz-amd64-dbg - Debugging infos for Linux 2.6.32-5-openvz-amd64
linux-image-2.6.32-5-openvz-amd64 - Linux 2.6.32 for 64-bit PCs, OpenVZ support
linux-image-2.6.32-5-orion5x - Linux 2.6.32 for Marvell Orion
linux-image-2.6.32-5-parisc64 - Linux 2.6.32 for 64-bit PA-RISC
linux-image-2.6.32-5-parisc64-smp - Linux 2.6.32 for multiprocessor 64-bit PA-RISC
linux-image-2.6.32-5-parisc - Linux 2.6.32 for 32-bit PA-RISC
linux-image-2.6.32-5-parisc-smp - Linux 2.6.32 for multiprocessor 32-bit PA-RISC
linux-image-2.6.32-5-powerpc64 - Linux 2.6.32 for 64-bit PowerPC
linux-image-2.6.32-5-powerpc - Linux 2.6.32 for uniprocessor 32-bit PowerPC
linux-image-2.6.32-5-powerpc-smp - Linux 2.6.32 for multiprocessor 32-bit PowerPC
linux-image-2.6.32-5-r4k-ip22 - Linux 2.6.32 for SGI IP22
linux-image-2.6.32-5-r5k-cobalt - Linux 2.6.32 for Cobalt
linux-image-2.6.32-5-r5k-ip32 - Linux 2.6.32 for SGI IP32
linux-image-2.6.32-5-s390x - Linux 2.6.32 for IBM zSeries
linux-image-2.6.32-5-s390x-tape - Linux 2.6.32 for IBM zSeries, IPL from tape
linux-image-2.6.32-5-sb1a-bcm91480b - Linux 2.6.32 for BCM91480B
linux-image-2.6.32-5-sb1-bcm91250a - Linux 2.6.32 for BCM91250A
linux-image-2.6.32-5-sh7751r - Linux 2.6.32 for sh7751r
linux-image-2.6.32-5-sh7785lcr - Linux 2.6.32 for sh7785lcr
linux-image-2.6.32-5-sparc64 - Linux 2.6.32 for uniprocessor 64-bit UltraSPARC
linux-image-2.6.32-5-sparc64-smp - Linux 2.6.32 for multiprocessor 64-bit UltraSPARC
linux-image-2.6.32-5-versatile - Linux 2.6.32 for Versatile
linux-image-2.6.32-5-vserver-686-bigmem-dbg - Debugging infos for Linux 2.6.32-5-vserver-686-bigmem
linux-image-2.6.32-5-vserver-686-bigmem - Linux 2.6.32 for PCs with 4GB+ RAM, Linux-VServer support
linux-image-2.6.32-5-vserver-686 - Linux 2.6.32 for modern PCs, Linux-VServer support
linux-image-2.6.32-5-vserver-amd64-dbg - Debugging infos for Linux 2.6.32-5-vserver-amd64
linux-image-2.6.32-5-vserver-amd64 - Linux 2.6.32 for 64-bit PCs, Linux-VServer support
linux-image-2.6.32-5-vserver-itanium - Linux 2.6.32 for Itanium, Linux-VServer support
linux-image-2.6.32-5-vserver-mckinley - Linux 2.6.32 for Itanium II, Linux-VServer support
linux-image-2.6.32-5-vserver-powerpc64 - Linux 2.6.32 for 64-bit PowerPC, Linux-VServer support
linux-image-2.6.32-5-vserver-powerpc - Linux 2.6.32 for uniprocessor 32-bit PowerPC, Linux-VServer suppo
linux-image-2.6.32-5-vserver-s390x - Linux 2.6.32 for IBM zSeries, Linux-VServer support
linux-image-2.6.32-5-vserver-sparc64 - Linux 2.6.32 for uniprocessor 64-bit UltraSPARC, Linux-VServer su
linux-image-2.6.32-5-xen-686-dbg - Debugging infos for Linux 2.6.32-5-xen-686
linux-image-2.6.32-5-xen-686 - Linux 2.6.32 for modern PCs, Xen dom0 support
linux-image-2.6.32-5-xen-amd64-dbg - Debugging infos for Linux 2.6.32-5-xen-amd64
linux-image-2.6.32-5-xen-amd64 - Linux 2.6.32 for 64-bit PCs, Xen dom0 support
linux-libc-dev - Linux support headers for userspace development
linux-manual-2.6.32 - Linux kernel API manual pages for version 2.6.32
linux-patch-debian-2.6.32 - Debian patches to version 2.6.32 of the Linux kernel
linux-source-2.6.32 - Linux kernel source for version 2.6.32 with Debian patches
linux-support-2.6.32-5 - Support files for Linux 2.6.32
linux-tools-2.6.32 - Performance analysis tools for Linux 2.6.32
xen-linux-system-2.6.32-5-xen-686 - Xen system with Linux 2.6.32 on modern PCs (meta-package)
xen-linux-system-2.6.32-5-xen-amd64 - Xen system with Linux 2.6.32 on 64-bit PCs (meta-package)
Changes:
linux-2.6 (2.6.32-47) stable; urgency=low
.
[ Ben Hutchings ]
* [x86] ALSA: hda_intel: Add device/class IDs for Intel Patsburg,
Vortex86MX, VMware, Intel Panther Point and other Intel chips
(Closes: #689928)
* header: fix broken headers for user space (Closes: #692133)
* nfsv4: Fix kernel panic when mounting NFSv4 (Closes: #695872)
* hpsa: Backport changes up to Linux 3.2.35 (Closes: #690100)
* net: fix route cache rebuilds (Closes: #646063)
* Add longterm release 2.6.32.60, including:
- netxen: support for GbE port settings (Closes: #638921)
- futex: Fix uninterruptible loop due to gate_area
- time: Improve sanity checking of timekeeping inputs
- eCryptfs: Copy up lower inode attrs after setting lower xattr
- eCryptfs: Clear ECRYPTFS_NEW_FILE flag during truncate
- bonding: 802.3ad - fix agg_device_up
- usbnet: increase URB reference count before usb_unlink_urb
- usbnet: don't clear urb->dev in tx_complete
- xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink()
- nilfs2: fix NULL pointer dereference in nilfs_load_super_block()
- ntp: Fix integer overflow when setting time
- ext4: check for zero length extent
- Bluetooth: add NULL pointer check in HCI
- Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close
- phonet: Check input from user before allocating
- netlink: fix races after skb queueing
- net: fix a race in sock_queue_err_skb()
- net/ethernet: ks8851_mll fix rx frame buffer overflow
- NFSv4: Revalidate uid/gid after open (Closes: #659111)
- ext3: Fix error handling on inode bitmap corruption
- ext4: fix error handling on inode bitmap corruption
- SCSI: fix scsi_wait_scan
- fuse: fix stat call on 32 bit platforms
- udf: Improve table length check to avoid possible overflow
- eCryptfs: Properly check for O_RDONLY flag before doing privileged open
- mm: Hold a file reference in madvise_remove (CVE-2012-3511)
- SCSI: Avoid dangling pointer in scsi_requeue_command()
- usbdevfs: Correct amount of data copied to user in processcompl_compat
- ext4: don't let i_reserved_meta_blocks go negative
- sctp: Fix list corruption resulting from freeing an association on a list
- cipso: don't follow a NULL pointer when setsockopt() is called
- net/tun: fix ioctl() based info leaks
- futex: Test for pi_mutex on fault in futex_wait_requeue_pi()
- futex: Fix bug in WARN_ON for NULL q.pi_state
- futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi()
- mm: mmu_notifier: fix freed page still mapped in secondary MMU
- fuse: verify all ioctl retry iov elements
- vfs: missed source of ->f_pos races - compat_sys_{read,write}v()
- NFSv3: Ensure that do_proc_get_root() reports errors correctly
- Remove user-triggerable BUG from mpol_to_str
- udf: Fix data corruption for files in ICB
- ext3: Fix fdatasync() for files with only i_size changes
- dccp: check ccid before dereferencing
- [ia64] Add accept4() syscall (Closes: #647825)
- tcp: drop SYN+FIN messages
- [x86] amd, xen: Avoid NULL pointer paravirt references
- [x86] tls: Off by one limit check
- sparc64: Eliminate obsolete __handle_softirq() function
- udf: fix retun value on error path in udf_load_logicalvol
- epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree()
- epoll: ep_unregister_pollwait() can use the freed pwq->whead
- Don't limit non-nested epoll paths
- epoll: limit paths (CVE-2011-1083)
- epoll: clear the tfile_check_list on -ELOOP (CVE-2012-3375)
- random: Improve random number generation on non-interactive systems
+ random: Use arch_get_random_int instead of cycle counter if avail
+ random: Use arch-specific RNG to initialize the entropy store
+ random: make 'add_interrupt_randomness()' do something sane
+ usb: feed USB device information to the /dev/random driver
+ net: feed /dev/random with the MAC address when registering a device
+ rtc: wm831x: Feed the write counter into device_add_randomness()
+ mfd: wm831x: Feed the device UUID into device_add_randomness()
+ dmi: Feed DMI table to /dev/random driver
For the complete list of changes, see:
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.60
and the bug report which this closes: #698022.
- [ia64] Revert "pcdp: use early_ioremap/early_iounmap to access pcdp
table", which breaks compilation of this driver
* [x86] Don't use the EFI reboot method by default (Closes: #626022)
* [x86] drm/i915: Attempt to fix watermark setup on 85x (v2)
(Closes: #661696)
* [x86] isci: Backport changes up to Linux 3.2.35 (Closes: #698094)
* [amd64] rtl8192e: Fix transmit on 64-bit architectures (Closes: #698473)
* [x86] usbip: Fix loss of isochronous packets that require padding
(Closes: #698474)
* staging: Fix various log messages that were broken on 64-bit architectures
(Closes: #698475)
* [x86] xen/x86: don't corrupt %eip when returning from a signal handler
* [i386] xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS
guests. (CVE-2013-0190)
.
[ Jonathan Nieder ]
* megaraid_sas: Backport changes up to Linux 3.0.56 (Closes: #666108)
Checksums-Sha1:
c0cc18b97efaebfc66bedd088e7dc6b3daa3792a 14499 linux-2.6_2.6.32-47.dsc
7bb68838998c1713e388863ee434e02fcd96a8f1 16348026 linux-2.6_2.6.32-47.diff.gz
aa4107b0aa612f060ffcb2fbb133b6c24796d45e 172078 linux-support-2.6.32-5_2.6.32-47_all.deb
1ea9e1267fd7f7936edd2893678ebab3f17bf33a 160148 firmware-linux-free_2.6.32-47_all.deb
be2ba2be69084379455e5b248b2ee882f9a90e59 182100 linux-base_2.6.32-47_all.deb
09fed89e3247c4e50040a4719885aad7d58711fa 10303092 linux-patch-debian-2.6.32_2.6.32-47_all.deb
50c368ee67671f3415a4da0c149b64140e2bdc56 65400126 linux-source-2.6.32_2.6.32-47_all.deb
951a35dbf3963587dd3fb312944783ad9085e696 6075984 linux-doc-2.6.32_2.6.32-47_all.deb
ff587d901fc7d99499503f23e570dc43ddb7af4e 2739000 linux-manual-2.6.32_2.6.32-47_all.deb
Checksums-Sha256:
d13939323d31ea9c1ecc7cd460d5c4cad8219fdabec0c6ad9e5e850947343571 14499 linux-2.6_2.6.32-47.dsc
5ecb7e0931c3c77ede8234c7acb691bbeaf819332f211417468b4119fd243ce7 16348026 linux-2.6_2.6.32-47.diff.gz
fd509d6939a35dc53b2a067a3e7a5224eb1b1ef12dcb355bcd02fcfef2c90d7d 172078 linux-support-2.6.32-5_2.6.32-47_all.deb
a998d5ad6285fb4faad400176e9f6bb4c9e7e0d2551fe4e0a74e9f19d2185e92 160148 firmware-linux-free_2.6.32-47_all.deb
e0992f93e0a3818bd0acdd9fba865a8a7d4d48914cd421661b43f1f247945bf5 182100 linux-base_2.6.32-47_all.deb
e7a48e9d062bfe91f2db0533ae9ad2421d655e79ef8e597045c100c4ddc5cd1a 10303092 linux-patch-debian-2.6.32_2.6.32-47_all.deb
037ac4fb9402d3efd2f24a3117e3e03ecf949e4538833655b13de969622dbd10 65400126 linux-source-2.6.32_2.6.32-47_all.deb
1fbe3830131cbf4339856222356689d9813ce6b592e0894012321cd328ad35c4 6075984 linux-doc-2.6.32_2.6.32-47_all.deb
a9f55c8e81b83e8e1aebd37c2f3ce5a400d222b038554db9e540fb01d5261559 2739000 linux-manual-2.6.32_2.6.32-47_all.deb
Files:
4bfb80310f9b6fa5793c144c3766f672 14499 kernel optional linux-2.6_2.6.32-47.dsc
0c85c864cb7f0b0191ac188d7a5099ba 16348026 kernel optional linux-2.6_2.6.32-47.diff.gz
29157de0287c31d1e4a2b42928e17dc2 172078 devel optional linux-support-2.6.32-5_2.6.32-47_all.deb
0f1dc52501834a1b15296532d930513d 160148 kernel optional firmware-linux-free_2.6.32-47_all.deb
509a07428184fa99322327b071a2e3ce 182100 kernel optional linux-base_2.6.32-47_all.deb
7985e63364a64ac482345870a1bacd9d 10303092 kernel optional linux-patch-debian-2.6.32_2.6.32-47_all.deb
afdd9c86c13bbce1d55c1c489322aaca 65400126 kernel optional linux-source-2.6.32_2.6.32-47_all.deb
428781f87377d16394045d1a810405fb 6075984 doc optional linux-doc-2.6.32_2.6.32-47_all.deb
466cf83890e374071b962e19e0b5c4e8 2739000 doc optional linux-manual-2.6.32_2.6.32-47_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQIVAwUBUPq1uOe/yOyVhhEJAQpbGA//d+B5vtq0cdIrKrNBJDo+pyTJGX1WWqZK
YhlmR/YmFRgOB0XH/3ND9l+Uq7A+odRONaPuVLEnsUQkiOOIEp09qWhXSO12V55o
njvPK8tWyuWLfiEuzsMd0VaMa963k69D+Z2AcCSA/5ZqROPBF4fyjwfr9oGzEUiS
BBKZtOd3TUHwq0bbAyCoNsjMWBlRZwlFEZWgdEnJg5YPLhCUJnis5KDIzRhfIff6
zLn+6fAAeMZmqj/a/UfKsz21ERN8WpjOf2OhFcKDhToc01ccaz7huwLJz7p56KB+
OEuo/uSizu7xOZZ6LlOLX/vSSU8KXGfHyobOvZUZdnytbPTyh0xo2IqNUtw9BB3/
5lXN0SNF6fvLaexjI0cWBOCiE55PipcGRON/fn09KVTuI29PQ/3dnf4guFRJRqZM
JzoMhlsR33B7R8csEGtQ8Qm21miZDlAfYmBcHBjmtlDa0biG4gcvcXUnSukz/Lsm
KCqYGUvuKUrAro75iThMZxpqsIQDiNl+sCiEMZFFSTNFrLmQzMZ+lIQWOvhhKI9N
kgwiMWkBe+ybLqT5CJHZ7cVR1fd6CrQzm4GquHDyTOzlF0pFMefqPZJkxwdTLH1Z
53sVOygChF+BP6llNhVeUyZ4retdDR7bnb9atodp3a0PoKsjqRJlQARMZhYmFrMK
i8K7C9mDALw=
=RXqB
-----END PGP SIGNATURE-----
--- End Message ---