296 lines
9.0 KiB
Plaintext
296 lines
9.0 KiB
Plaintext
linux-flo (3.4.0-4.16) vivid; urgency=low
|
|
|
|
[ Andy Whitcroft ]
|
|
|
|
* [Config] CONFIG_FHANDLE=y
|
|
- LP: #1412543
|
|
|
|
[ Tim Gardner ]
|
|
|
|
* [Debian] getabis: Commit new ABI directory, remove the old
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Tue, 20 Jan 2015 12:15:35 +0000
|
|
|
|
linux-flo (3.4.0-3.15) utopic; urgency=low
|
|
|
|
[ John Johansen ]
|
|
|
|
* SAUCE: (no-up) apparmor: Sync to apparmor3 - RC1 snapshot
|
|
- LP: #1362199
|
|
|
|
[ Tim Gardner ]
|
|
|
|
* Revert "SAUCE: (no-up) apparmor: Sync to apparmor 3 - alpha 6 snapshot"
|
|
|
|
[ Tyler Hicks ]
|
|
|
|
* Revert "SAUCE: (no-up) apparmor: fix disconnected bind mnts
|
|
reconnection"
|
|
* Revert "SAUCE: (no-up) apparmor fix: remove unused cxt var for
|
|
unix_sendmsg"
|
|
* Revert "SAUCE: (no-up) apparmor: use custom write_is_locked macro"
|
|
* Revert "SAUCE: (no-up) apparmor: fix bug that constantly spam the
|
|
console"
|
|
* Revert "SAUCE: (no-up) apparmor: fix apparmor refcount bug in
|
|
apparmor_kill"
|
|
* Revert "SAUCE: (no-up) apparmor: fix refcount bug in apparmor
|
|
pivotroot"
|
|
* Revert "SAUCE: (no-up) apparmor: fix apparmor spams log with warning
|
|
message"
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Fri, 19 Sep 2014 09:27:59 -0600
|
|
|
|
linux-flo (3.4.0-3.14) utopic; urgency=low
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* auditsc: audit_krule mask accesses need bounds checking
|
|
- LP: #1325941
|
|
- CVE-2014-3917
|
|
* ptrace, x86: force IRET path after a ptrace_stop()
|
|
- LP: #1337339
|
|
- CVE-2014-4699
|
|
* net/l2tp: don't fall back on UDP [get|set]sockopt
|
|
- LP: #1341472
|
|
- CVE-2014-4943
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Wed, 03 Sep 2014 12:20:31 -0700
|
|
|
|
linux-flo (3.4.0-3.13) utopic; urgency=low
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* epoll: Add a flag, EPOLLWAKEUP, to prevent suspend while epoll events
|
|
are ready
|
|
* epoll: Fix user space breakage related to EPOLLWAKEUP
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Wed, 16 Jul 2014 11:31:31 +0100
|
|
|
|
linux-flo (3.4.0-3.12) utopic; urgency=low
|
|
|
|
[ Javier Martinez Canillas ]
|
|
|
|
* SAUCE: (no-up) apparmor: fix bug that constantly spam the console
|
|
- LP: #1323526
|
|
|
|
[ John Johansen ]
|
|
|
|
* Revert "SAUCE: apparmor: fix bad lock balance when introspecting
|
|
policy"
|
|
* Revert "SAUCE: apparmor: fix memleak of replacedby struct"
|
|
* Revert "SAUCE: apparmor: fix memleak of the profile hash"
|
|
* Revert "SAUCE: apparmor: allocate path lookup buffers during init"
|
|
* Revert "SAUCE: apparmor: fix unix domain sockets to be mediated on
|
|
connection"
|
|
* Revert "SAUCE: (no-up) apparmor: Sync to apparmor 3 - alpha 4 snapshot"
|
|
* SAUCE: (no-up) apparmor: Sync to apparmor 3 - alpha 6 snapshot
|
|
* SAUCE: (no-up) apparmor: update configs for apparmor 3 alpha 6
|
|
* SAUCE: (no-up) apparmor: fix apparmor spams log with warning message
|
|
- LP: #1308761
|
|
* SAUCE: (no-up) apparmor: fix refcount bug in apparmor pivotroot
|
|
- LP: #1308765
|
|
* SAUCE: (no-up) apparmor: fix apparmor refcount bug in apparmor_kill
|
|
- LP: #1308764
|
|
* SAUCE: (no-up) apparmor: use custom write_is_locked macro
|
|
- LP: #1323530
|
|
* SAUCE: (no-up) apparmor fix: remove unused cxt var for unix_sendmsg
|
|
* SAUCE: (no-up) apparmor: fix disconnected bind mnts reconnection
|
|
- LP: #1319984
|
|
|
|
[ Tyler Hicks ]
|
|
|
|
* [Config] CONFIG_ECRYPT_FS=y
|
|
* [Config] CONFIG_COMPAT_BRK=n
|
|
* [Config] CONFIG_SYN_COOKIES=y
|
|
* [Config] CONFIG_EVM=y
|
|
* [Config] Sync LSM config options
|
|
* [Config] Sync crypto config options
|
|
* [Config] Sync IPsec config options
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* Revert "use clamp_t in UNAME26 fix"
|
|
* Revert "kernel/sys.c: fix stack memory content leak via UNAME26"
|
|
* Revert "wake_up_process() should be never used to wakeup a
|
|
TASK_STOPPED/TRACED task"
|
|
* Revert "ptrace: ensure arch_ptrace/ptrace_request can never race with
|
|
SIGKILL"
|
|
* Revert "ptrace: introduce signal_wake_up_state() and
|
|
ptrace_signal_wake_up()"
|
|
* Revert "perf: Treat attr.config as u64 in perf_swevent_init()"
|
|
* Revert "ARM: 7809/1: perf: fix event validation for software group
|
|
leaders"
|
|
- CVE-2013-4254
|
|
* kernel/sys.c: fix stack memory content leak via UNAME26
|
|
- CVE-2012-0957
|
|
* use clamp_t in UNAME26 fix
|
|
- CVE-2012-0957
|
|
* ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up()
|
|
- CVE-2013-0871
|
|
* ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL
|
|
- CVE-2013-0871
|
|
* wake_up_process() should be never used to wakeup a TASK_STOPPED/TRACED
|
|
task
|
|
- CVE-2013-0871
|
|
* net: fix incorrect credentials passing
|
|
- CVE-2013-1979
|
|
* perf: Treat attr.config as u64 in perf_swevent_init()
|
|
- CVE-2013-2094
|
|
* iscsi-target: fix heap buffer overflow on error
|
|
- CVE-2013-2850
|
|
* ARM: 7809/1: perf: fix event validation for software group leaders
|
|
- CVE-2013-4254
|
|
* ARM: 7810/1: perf: Fix array out of bounds access in
|
|
armpmu_map_hw_event()
|
|
- CVE-2013-4254
|
|
* n_tty: Fix n_tty_write crash when echoing in raw mode
|
|
- CVE-2014-0196
|
|
* floppy: ignore kernel-only members in FDRAWCMD ioctl input
|
|
- CVE-2014-1737
|
|
* floppy: don't write kernel-only members to FDRAWCMD ioctl output
|
|
- CVE-2014-1738
|
|
* futex: Test for pi_mutex on fault in futex_wait_requeue_pi()
|
|
- CVE-2014-3153
|
|
* futex: Fix bug in WARN_ON for NULL q.pi_state
|
|
- CVE-2014-3153
|
|
* futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi()
|
|
- CVE-2014-3153
|
|
* futex: Handle futex_pi OWNER_DIED take over correctly
|
|
- CVE-2014-3153
|
|
* futex: avoid wake_futex() for a PI futex_q
|
|
- CVE-2014-3153
|
|
* futex: Revert "futex: Mark get_robust_list as deprecated"
|
|
- CVE-2014-3153
|
|
* futex: fix handling of read-only-mapped hugepages
|
|
- CVE-2014-3153
|
|
* futex: Add another early deadlock detection check
|
|
- CVE-2014-3153
|
|
* futex: Prevent attaching to kernel threads
|
|
- CVE-2014-3153
|
|
* futex-prevent-requeue-pi-on-same-futex.patch futex: Forbid uaddr ==
|
|
uaddr2 in futex_requeue(..., requeue_pi=1)
|
|
- CVE-2014-3153
|
|
* futex: Validate atomic acquisition in futex_lock_pi_atomic()
|
|
- CVE-2014-3153
|
|
* futex: Always cleanup owner tid in unlock_pi
|
|
- CVE-2014-3153
|
|
* futex: Make lookup_pi_state more robust
|
|
- CVE-2014-3153
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Thu, 26 Jun 2014 12:36:53 -0600
|
|
|
|
linux-flo (3.4.0-3.11) utopic; urgency=low
|
|
|
|
[ Tyler Hicks ]
|
|
|
|
* [Config] CONFIG_DEVKMEM=n
|
|
* [Config] CONFIG_STRICT_DEVMEM=y
|
|
* [Config] Enable ext2, ext3 and ext4 security-related options
|
|
* [Config] CONFIG_DEBUG_RODATA=y
|
|
* [Config] CONFIG_DEFAULT_MMAP_MIN_ADDR=32768
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* exec/ptrace: fix get_dumpable() incorrect tests
|
|
- LP: #1266546
|
|
- CVE-2013-2929
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Fri, 30 May 2014 13:47:11 +0200
|
|
|
|
linux-flo (3.4.0-3.10) trusty; urgency=low
|
|
|
|
[ Oliver Grawert ]
|
|
|
|
* SAUCE: battery: quieten the battery charging messages by default
|
|
- LP: #1270248
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Fri, 28 Mar 2014 14:19:03 +0000
|
|
|
|
linux-flo (3.4.0-3.9) trusty; urgency=low
|
|
|
|
[ Tim Gardner ]
|
|
|
|
* Revert "[Config]: Enabling backlight driver for flo"
|
|
The android hal is going to control the backlight.
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Wed, 26 Mar 2014 09:37:45 -0600
|
|
|
|
linux-flo (3.4.0-2.8) trusty; urgency=low
|
|
|
|
[ Andy Whitcroft ]
|
|
|
|
* [Config] CONFIG_TMPFS_POSIX_ACL=y
|
|
- LP: #1286184
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Fri, 28 Feb 2014 15:54:39 +0000
|
|
|
|
linux-flo (3.4.0-2.7) trusty; urgency=low
|
|
|
|
[ Andy Whitcroft ]
|
|
|
|
* [Config] CONFIG_RT_GROUP_SCHED=n
|
|
- LP: #1284731
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Tue, 25 Feb 2014 19:23:48 +0000
|
|
|
|
linux-flo (3.4.0-1.6) trusty; urgency=low
|
|
|
|
[ Ricardo Salveti de Araujo ]
|
|
|
|
* SAUCE: wcnss_wlan: don't free penv when it fails to trigger config
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Mon, 17 Feb 2014 15:21:04 +0000
|
|
|
|
linux-flo (3.4.0-1.5) trusty; urgency=low
|
|
|
|
[ Kees Cook ]
|
|
|
|
* SAUCE: (no-up) Yama: add link restrictions
|
|
|
|
[ Tyler Hicks ]
|
|
|
|
* [Config] Enable Stacked Yama
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* Yama: add additional ptrace scopes
|
|
* Yama: higher restrictions should block PTRACE_TRACEME
|
|
* security: allow Yama to be unconditionally stacked
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Fri, 07 Feb 2014 15:00:54 +0000
|
|
|
|
linux-flo (3.4.0-1.4) trusty; urgency=low
|
|
|
|
[ Ricardo Salveti de Araujo ]
|
|
|
|
* [Config]: Enabling backlight driver for flo
|
|
|
|
-- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com> Fri, 24 Jan 2014 23:54:49 -0200
|
|
|
|
linux-flo (3.4.0-1.3) trusty; urgency=low
|
|
|
|
[ Ricardo Salveti de Araujo ]
|
|
|
|
* [Config] Enabling configs needed by Ubuntu
|
|
* Switch to gcc 4.7
|
|
|
|
[ Upstream Kernel Changes ]
|
|
|
|
* ARM: 7668/1: fix memset-related crashes caused by recent GCC (4.7.2)
|
|
optimizations
|
|
* ARM: 7670/1: fix the memset fix
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Fri, 24 Jan 2014 14:52:46 +0000
|
|
|
|
linux-flo (3.4.0-0.2) trusty; urgency=low
|
|
|
|
* First upload based on https://android.googlesource.com/kernel/msm.git android-msm-flo-3.4-kitkat-mr1
|
|
|
|
-- Tim Gardner <tim.gardner@canonical.com> Thu, 09 Jan 2014 07:51:51 -0700
|
|
|
|
linux-flo (3.4.0-0.1) saucy; urgency=low
|
|
|
|
* Unused entry
|
|
|
|
-- Andy Whitcroft <apw@canonical.com> Mon, 07 Oct 2013 18:23:03 +0100
|