FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian Kernel

 
 
LinkBack Thread Tools
 
Old 08-27-2011, 02:54 AM
Ben Hutchings
 
Default Bug#639425: Changes from longterm 2.6.32.44

Package: linux-2.6
Version: 2.6.32-35

3291002 ASoC: Fix Blackfin I2S _pointer() implementation return in bounds values

No effect; architecture is not supported in Debian.

46905de v4l2-ioctl.c: prefill tuner type for g_frequency and g/s_tuner
f89e20d pvrusb2: fix g/s_tuner support
5c47b59 bttv: fix s_tuner for radio

Fixes radio/TV tuning for some V4L2 drivers and applications.

c3c239c gro: Only reset frag0 when skb can be pulled

Fixes remote denial of service (CVE-2011-2723); will be included in
2.6.32-35squeeze1.

809eb66 NFSv4.1: update nfs4_fattr_bitmap_maxsz

Fixes crash (BUG) in normal use; could also be remote denial of service.

a05061d SUNRPC: Fix a race between work-queue and rpc_killall_tasks

Reduces race condition that I think could lead to a crash or hang.
(I don't believe it completely fixes it, though.)

5bba1fc SUNRPC: Fix use of static variable in rpcb_getport_async

Actually fixes a race condition that can lead to a crash, data
corruption or other excitement.

abcd4aa si4713-i2c: avoid potential buffer overflow on si4713

Fixes trivial buffer overflow in this radio driver. We do build it, but
it isn't auto-loaded and it looks unlikely to be used on any supported
platform.

166d832 hwmon: (max1111) Fix race condition causing NULL pointer exception

Fixes crash (oops) in normal use; could also be local denial of service.

90d769e bridge: send proper message_age in config BPDU

Fixes bug that breaks STP and can lead to network instability through a
bridging loop.

49d571c davinci: DM365 EVM: fix video input mux bits

No effect; platform is not supported in Debian.

3da5a14 libata: fix unexpectedly frozen port after ata_eh_reset()

Fixes bug which can prevent recognition of a hot-added SATA device.

9d8970f x86: Make Dell Latitude E5420 use reboot=pci

Fixes hang on reboot on this model.

741172e USB: pl2303: add AdLink ND-6530 USB IDs
99d7470 USB: pl2303.h: checkpatch cleanups
82b6e85 USB: serial: add IDs for WinChipHead USB->RS232 adapter

Adds hardware support. (Second patch is just whitespace changes,
cherry-picked to avoid a conflict.)

51faabb staging: comedi: fix infoleak to userspace

Trivial security fix.

6691c4c USB: OHCI: fix another regression for NVIDIA controllers

*sigh*

262e2d9 usb: musb: restore INDEX register in resume path

No effect; platforms are not supported in Debian.

b43906b USB: dummy-hcd needs the has_tt flag

Not built in Debian, and is only a driver development tool.

122c9c8 ARM: pxa/cm-x300: fix V3020 RTC functionality

No effect; platform is not supported in Debian.

3cd0374 jme: Fix unmap error (Causing system freeze)

Fixes resource leak in this network driver, in some configurations.

da22907 libsas: remove expander from dev list on error

Fixes crash (oops) following error in SAS device discovery.

eaf507e mac80211: Restart STA timers only on associated state

Fixes possible crash (panic) on resume for most wireless network
drivers.

e766b12 Blacklist Traxdata CDR4120 and IOMEGA Zip drive to avoid lock ups.

Fixes SCSI bus lock-up if one of these devices is present.

2dee323 ses: requesting a fault indication

Fixes activation of fault indicator on SCSI enclosures that support
this.

8d85804 pmcraid: reject negative request size

Fixes possible memory corruption or OOM when an invalid ioctl on this
driver. Not a major security vulnerability, as CAP_SYS_ADMIN is
required.

1932c74 kexec, x86: Fix incorrect jump back address if not preserving context

Appears to fix likely crash when kexec is used on x86 and the new kernel
has KEXEC_JUMP enabled. This is not enabled in official kernels.

1b7fbaa powerpc/kdump: Fix timeout in crash_kexec_wait_realmode

Fixes possible hang in crash recovery in a powerpc kernel built with
CRASH_DUMP. This is not enabled in official kernels.

3300911 PCI: ARI is a PCIe v2 feature

Fixes misconfiguration of PCIe bridges for use with some devices, which
can lead to a hard hang, panic or other nastiness.

78a4ddf cciss: do not attempt to read from a write-only register

Fixes hang (?) when this RAID driver is used with some newer variants of
the RAID controllers it supports.

b259a3c xtensa: prevent arbitrary read in ptrace

No effect; Debian doesn't support this architecture.

98aea90 ext3: Fix oops in ext3_try_to_allocate_with_rsv()

Fixes race condition leading to memory corruption and/or crash. May be
exploitable as a local denial-of-service.

8a8b5c1 svcrpc: fix list-corrupting race on nfsd shutdown

Seems self-explanatory.

108786a EHCI: only power off port if over-current is active

Fixes endless power-cycling loop with some implementations of this USB
controller interface.

38e6bb7 EHCI: fix direction handling for interrupt data toggles

Fixes compatibility with certain USB devices with strange behaviour.

cb81593 powerpc/pseries/hvconsole: Fix dropped console output

Seems self-explanatory.

4534a8b x86: Hpet: Avoid the comparator readback penalty

Prerequisite for the next patch. Removes one MMIO read when setting the
wakeup time.

436aa5f x86: HPET: Chose a paranoid safe value for the ETIME check

Fixes long pauses on some AMD systems.

0d5c452 Revert "block: rescan partitions on invalidated devices on -ENOMEDIA too"

Fixes regression in 2.6.32.42.

223c7f0 cifs: clean up cifs_find_smb_ses (try #2)
eda9d27 cifs: fix NULL pointer dereference in cifs_find_smb_ses
39371f2 cifs: check for NULL session password

Fix session reuse issue (CVE-2011-1585); already included in
2.6.32-34squeeze1.

7606088 gre: fix netns vs proto registration ordering

Fixes remote denial-of-service (CVE-2011-1767); already included in
2.6.32-34squeeze1.

0515423 netns xfrm: fixup xfrm6_tunnel error propagation

Fixes error return value from module init function. Doesn't seem
particularly important, but does seem safe.

35ed3d0 tunnels: fix netns vs proto registration ordering

Fixes remote denial-of-service (CVE-2011-1768); already included in
2.6.32-35.

2beffeb alpha: fix several security issues

Fixes information leak and privilege escalation bugs on this
architecture. (CVE-2011-2208, CVE-2011-2209, CVE-2011-2210,
CVE-2011-2211)

fc10e55 proc: restrict access to /proc/PID/io

Fixes information leak (CVE-2011-1020); will be included in
2.6.32-35squeeze1.

67b0a84 ALSA: sound/core/pcm_compat.c: adjust array index

Fixes local denial of service or possible privilege escalation in compat
ioctl handling (32-bit process on 64-bit kernel) for sound devices.

c72ff34 dm mpath: fix potential NULL pointer in feature arg processing

Fixes crash (oops) when this device driver is given an invalid
configuration.

3d24761 dm: fix idr leak on module removal

Fixes memory leak, though I don't believe real users will remove this
module

bb30b19 perf: overflow/perf_count_sw_cpu_clock crashes recent kernels

Fixes potential deadlock; might be a local denial of service
vulnerability.

58e6859 atm: [br2684] allow routed mode operation again

Fixes breakage of this feature in 2.6.30.

Ben.
 
Old 08-27-2011, 05:17 AM
Ben Hutchings
 
Default Bug#639425: Changes from longterm 2.6.32.44

On Sat, 2011-08-27 at 03:54 +0100, Ben Hutchings wrote:
> abcd4aa si4713-i2c: avoid potential buffer overflow on si4713
>
> Fixes trivial buffer overflow in this radio driver. We do build it, but
> it isn't auto-loaded and it looks unlikely to be used on any supported
> platform.

CVE-2011-2700; will be included in 2.6.32-35squeeze1

> bb30b19 perf: overflow/perf_count_sw_cpu_clock crashes recent kernels
>
> Fixes potential deadlock; might be a local denial of service
> vulnerability.

CVE-2011-2918; will be included in 2.6.32-35squeeze1

> 0515423 netns xfrm: fixup xfrm6_tunnel error propagation
>
> Fixes error return value from module init function. Doesn't seem
> particularly important, but does seem safe.

Actually it's a prerequisite for the next patch:

> 35ed3d0 tunnels: fix netns vs proto registration ordering
>
> Fixes remote denial-of-service (CVE-2011-1768); already included in
> 2.6.32-35.
 

Thread Tools




All times are GMT. The time now is 12:13 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org