Accepted linux 3.16.76-1 (all source) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 12 Nov 2019 15:56:11 +0000
Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16 linux-support-3.16.0-10
Source: linux
Architecture: all source
Version: 3.16.76-1
Distribution: jessie-security
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <ben@decadent.org.uk>
Description:
linux-doc-3.16 - Linux kernel specific documentation for version 3.16
linux-manual-3.16 - Linux kernel API manual pages for version 3.16
linux-source-3.16 - Linux kernel source for version 3.16 with Debian patches
linux-support-3.16.0-10 - Support files for Linux 3.16
Changes:
linux (3.16.76-1) jessie-security; urgency=high
.
* New upstream stable update:
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.75
- net/mlx4_core: Change the error print to info print
- spi: bitbang: Fix NULL pointer dereference in spi_unregister_master
- Btrfs: fix race between ranged fsync and writeback of adjacent ranges
- scsi: bnx2fc: fix incorrect cast to u64 on shift operation
- USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor
- USB: Add LPM quirk for Surface Dock GigE adapter
- usbip: usbip_host: fix BUG: sleeping function called from invalid context
- USB: rio500: fix memory leak in close after disconnect
- [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels
- USB: serial: pl2303: add Allied Telesis VT-Kit3
- usb: xhci: avoid null pointer deref when bos field is NULL
- [armhf] net: stmmac: fix reset gpio free missing
- igmp: acquire pmc lock for ip_mc_clear_src()
- igmp: add a missing spin_lock_init()
- ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
- sbitmap: fix improper use of smp_mb__before_atomic()
- Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD
- perf/ring_buffer: Fix exposing a temporarily decreased data_head
- perf/ring_buffer: Add ordering to rb->nest increment
- i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr
- configfs: Fix use-after-free when accessing sd->s_dentry
- llc: fix skb leak in llc_build_and_send_ui_pkt()
- CIFS: cifs_read_allocate_pages: don't iterate through whole page array on
ENOMEM
- usbip: usbip_host: fix stub_dev lock context imbalance regression
- signal/ptrace: Don't leak unitialized kernel memory with
PTRACE_PEEK_SIGINFO
- net-gro: fix use-after-free read in napi_gro_frags()
- kernel/signal.c: trace_signal_deliver when signal_group_exit
- USB: usb-storage: Add new ID to ums-realtek
- USB: Fix chipmunk-like voice when using Logitech C270 for recording
audio.
- hwmon: (pmbus/core) Treat parameters as paged if on multiple pages
- net: rds: fix memory leak in rds_ib_flush_mr_pool
- pktgen: do not sleep with the thread lock held.
- can: af_can: Fix error path of can_init()
- can: purge socket error queue on sock destruct
- ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
- ptrace: restore smp_rmb() in __ptrace_may_access()
- bcache: fix stack corruption by PRECEDING_KEY()
- libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk
- cifs: add spinlock for the openFileList to cifsInodeInfo
- fs/ocfs2: fix race in ocfs2_dentry_attach_lock()
- coredump: fix race condition between collapse_huge_page() and core
dumping
- cfg80211: fix memory leak of wiphy device name
- Btrfs: fix race between readahead and device replace/removal
- btrfs: start readahead also in seed devices
- be2net: Fix number of Rx queues used for flow hashing
- neigh: fix use-after-free read in pneigh_get_next
- perf/core: Fix perf_sample_regs_user() mm check
- SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write
- apparmor: enforce nullbyte at end of tag string
- net: netem: fix backlog accounting for corrupted GSO frames
- scsi: ufs: Avoid runtime suspend possibly being blocked forever
- [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck()
- [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz
- be2net: fix link failure after ethtool offline test
- perf/ioctl: Add check for the sample_period value
- [x86] speculation: Allow guests to use SSBD even if host does not
- cpu/speculation: Warn on unsupported mitigations= parameter
- bonding: Always enable vlan tx offload
- bonding: Add vlan tx offload to hw_enc_features
- sctp: change to hold sk after auth shkey is created successfully
- ALSA: seq: fix incorrect order of dest_client/dest_ports arguments
- tracing/snapshot: Resize spare buffer if size changed
- scsi: target/iblock: Fix overrun in WRITE SAME emulation
- lib/mpi: Fix karactx leak in mpi_powm
- crypto: user - prevent operating on larval algorithms
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.76
- eCryptfs: fix a couple type promotion bugs
- 9p/virtio: Add cleanup path in p9_virtio_init
- signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig
- xfrm: Fix xfrm sel prefix length validation
- af_key: fix leaks in key_pol_get_resp and dump_sp.
- crypto: ghash - fix unaligned memory access in ghash_setkey()
- memstick: Fix error cleanup path of memstick_init
- [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4
- xfrm: fix sa selector validation
- PCI: Do not poll for PME if the device is in D3cold
- usb: gadget: ether: Fix race between gether_disconnect and rx_submit
- USB: serial: option: add GosunCn ZTE WeLink ME3630
- USB: serial: option: add support for GosunCn ME3630 RNDIS mode
- [x86] VMCI: Fix integer overflow in VMCI handle arrays
- mwifiex: fix 802.11n/WPA detection
- media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom()
- EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec
- carl9170: fix misuse of device driver API
- [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()
(CVE-2017-5753)
- [x86] tls: Fix possible spectre-v1 in do_get_thread_area()
(CVE-2017-5753)
- USB: serial: ftdi_sio: add ID for isodebug v1
- igmp: fix memory leak in igmpv3_del_delrec()
- net: bridge: stp: don't cache eth dest pointer before skb pull
- lib/scatterlist: Fix mapping iterator when sg->offset is greater than
PAGE_SIZE
- bonding: validate ip header before check IPPROTO_IGMP
- NFSv4: Handle the special Linux file open access mode
- udf: Fix incorrect final NOT_ALLOCATED (hole) extent length
- mm/mmu_notifier: use hlist_add_head_rcu()
- net: neigh: fix multiple neigh timer scheduling
- ALSA: seq: Break too long mutex context in the write loop
- coda: pass the host file in vma->vm_file on mmap
- caif-hsi: fix possible deadlock in cfhsi_exit_module()
- padata: use smp_mb in padata_reorder to avoid orphaned padata jobs
- Input: psmouse - fix build error of multiple definition
- [x86] KVM: x86/vPMU: refine kvm_pmu err msg when event creation failed
.
[ Ben Hutchings ]
* net: netem: fix error path for corrupted GSO frames (regression in 3.16.75)
* [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135):
- KVM: Introduce kvm_get_arch_capabilities()
- KVM: x86: use Intel speculation bugs and features as derived in generic
x86 code
- x86/msr: Add the IA32_TSX_CTRL MSR
- x86/cpu: Add a helper function x86_read_arch_cap_msr()
- x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default
- x86/speculation/taa: Add mitigation for TSX Async Abort
- x86/speculation/taa: Add sysfs reporting for TSX Async Abort
- kvm/x86: Export MDS_NO=0 to guests when TSX is enabled
- x86/tsx: Add "auto" option to the tsx= cmdline parameter
- x86/speculation/taa: Add documentation for TSX Async Abort
- x86/tsx: Add config options to set tsx=on|off|auto
- x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs
TSX is now disabled by default; see
Documentation/hw-vuln/tsx_async_abort.rst
* [x86] bugs: Add ITLB_MULTIHIT bug infrastructure (this CPU bug will *not*
be mitigated on 3.16)
* [x86] drm/i915/gen8+: Add RC6 CTX corruption WA (CVE-2019-0154)
Checksums-Sha1:
4aecb28c5056790a42342e949861496d8de6c96b 143027 linux_3.16.76-1.dsc
fc0c0a974b243f8ec6ab2883668acb8c91aad0ad 82072428 linux_3.16.76.orig.tar.xz
340ec597504ad863cb7803723a645f08ef9d907d 1867528 linux_3.16.76-1.debian.tar.xz
ab5aa3e71f699450735529ca2a77944b7f457b6f 464822 linux-support-3.16.0-10_3.16.76-1_all.deb
434cb09a8147538b3c7d6b1a778536aa5900bd31 8420560 linux-doc-3.16_3.16.76-1_all.deb
b0f25c35a2ce453e3cce185fc782b505484c8918 3796968 linux-manual-3.16_3.16.76-1_all.deb
d672ae57c3f2d93f28720315b878649eba156988 83932198 linux-source-3.16_3.16.76-1_all.deb
Checksums-Sha256:
6988745d192ca70642abeaa1b44778984c09e80d7c904fdcab4a6b6e02aeed72 143027 linux_3.16.76-1.dsc
f6d2ad9253cab4725fd97948447055ec56dabb18252d32a7fe55622a7744a912 82072428 linux_3.16.76.orig.tar.xz
0c2da4c7ea60ffff716cb09c8e1deb9552357b9fa22f3819d164ada01673469b 1867528 linux_3.16.76-1.debian.tar.xz
0f3548c25c8d134ed4fb513a96ea6e6af82445364daaa79cb1e674645bd3fe21 464822 linux-support-3.16.0-10_3.16.76-1_all.deb
f0f70f3923af5c5200220d6f505e7a700365e4ac6adacec3e277e4faa9e79511 8420560 linux-doc-3.16_3.16.76-1_all.deb
fbcff982c6e23ab9ac929a1475ba15a470bd9052c84a2ed217894f06cc1628a8 3796968 linux-manual-3.16_3.16.76-1_all.deb
19f9220eb8659a4d0c8f49a45eb1ffdda8e5067a6368f26965154d8ca4ce490b 83932198 linux-source-3.16_3.16.76-1_all.deb
Files:
46688ae298bd120211a16647aedab605 143027 kernel optional linux_3.16.76-1.dsc
96ce8675fd55802e3fa22940f9d0c943 82072428 kernel optional linux_3.16.76.orig.tar.xz
4ea7eab99b40e727bd2868a6f035a248 1867528 kernel optional linux_3.16.76-1.debian.tar.xz
e9fde967c61f0bf2000602fd16cb7ac4 464822 devel optional linux-support-3.16.0-10_3.16.76-1_all.deb
50c6b96ebe29068cc1394ea8d6c103f6 8420560 doc optional linux-doc-3.16_3.16.76-1_all.deb
e6eb896016c7d020968f330721734dff 3796968 doc optional linux-manual-3.16_3.16.76-1_all.deb
0fc62f557fd5de400161b4c2e5d26e28 83932198 kernel optional linux-source-3.16_3.16.76-1_all.deb
-----BEGIN PGP SIGNATURE-----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=SLsr
-----END PGP SIGNATURE-----