Source: linux-2.6 Version: 2.6.32-33 Tags: squeeze Since we've seen a few regressions w/ longterm updates lately, I thought I'd use a bug as a way to review each change w/ a Debian-specific lens.
Here's my initial pass - other reviews welcome.. > eebefbf xfs: zero proper structure size for geometry calls already included in 2.6.32-33 > bd378dd net: fix rds_iovec page count overflow overflow fix, looks pretty straightforward > c18114e exec: copy-and-paste the fixes into compat_do_execve() paths already included in 2.6.32-30 > d3de146 exec: make argv/envp memory visible to oom-killer already included in 2.6.32-30 > 40521c9 CAN: Use inode instead of kernel address for /proc file already included in 2.6.32-31 > 9d880ce irda: prevent integer underflow in IRLMP_ENUMDEVICES already included in 2.6.32-30 > 7847ca8 econet: Fix crash in aun_incoming(). already included in 2.6.32-30 > 2dbba29 inet_diag: Make sure we actually run the same bytecode we audited. already included in 2.6.32-30 > 4312007 net: tipc: fix information leak to userland already included in 2.6.32-30 > fe540c3 nfsd: fix auth_domain reference leak on nlm operations fixes a reference leak - code change looks innocuous enough > f101d38 ext4: fix credits computing for indirect mapped files I'm not sure what improvement this provides users > 975c07c net: packet: fix information leak to userland already included in 2.6.32-30 > 1fe4497 net: ax25: fix information leak to userland already included in 2.6.32-30 > 483cb5a atm/solos-pci: Don't include frame pseudo-header on transmit hex-dump This seems to be a fixup for debug code? I suggest omitting. > 3f89dad sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set Fixes an oops; commit log includes a test case we should use to verify. > ba7eb95 Squashfs: handle corruption of directory structure Adds some sanity checks that might avoid an oops; looks good to me > 794e8ff Revert "x86: Cleanup highmap after brk is concluded" Already queued for 2.6.32-34 (#621072) > 7b74539 powerpc: Fix default_machine_crash_shutdown #ifdef botch > a55ee54 powerpc/kexec: Add ifdef CONFIG_PPC_STD_MMU_64 to PPC64 code Already included in 2.6.32-33 > 6373cc6 x86, microcode, AMD: Extend ucode size verification I'll defer to Ben who commented on this upstream. > 7dbaa2b x86, amd-ucode: Remove needless log messages Removes a useless log message... doesn't seem >= important to me > 5381fb8 gro: reset skb_iif on reuse Doesn't apply to our tree > 2863e5a gro: Reset dev pointer on reuse This looks like it'd apply, but I'll defer to Ben's network expertise here > 79760cb repair gdbstub to match the gdbserial protocol specification We don't enable KGDB, but it might fix an issue for someone using our source to build their own kernel. > a98fa05 sound: oss: midi_synth: check get_user() return value > 0042e33 sound/oss: remove offset from load_patch callbacks We don't build these, but might help someone building w/ our source > d343ebc econet: 4 byte infoleak to the network Already included in 2.6.32-32 > 48a129a drivers/misc/ep93xx_pwm.c: world-writable sysfs files > 92d191d drivers/rtc/rtc-ds1511.c: world-writable sysfs nvram file These should probably get CVEs > 23b37e1 mfd: ab3100: world-writable debugfs *_priv files debugfs shouldn't get a CVE, but should be fixed > a41e7f1 ipv6: netfilter: ip6_tables: fix infoleak to userspace Already included in 2.6.32-32 > 8fd563c netfilter: ipt_CLUSTERIP: fix buffer overflow +1 > bf97177 netfilter: arp_tables: fix infoleak to userspace Already included in 2.6.32-32 > 3be5e2f netfilter: ip_tables: fix infoleak to userspace Already included in 2.6.32-32 > 913bb1e char/tpm: Fix unitialized usage of data buffer should probably get a CVE > 6216277 Treat writes as new when holes span across page boundaries looks like a data corruption fix > e469bb3 Bluetooth: add support for Apple MacBook Pro 8,2 just adding ids > e826581 Bluetooth: bnep: fix buffer overflow already fixed in 2.6.32-32 > a04a632 bridge: netfilter: fix information leak already fixed in 2.6.32-32 > 1fdae72 Bluetooth: sco: fix information leak to userspace already fixed in 2.6.32-32 > 91443ec b43: allocate receive buffers big enough for max frame len + offset avoids a BUG() > cda10c1 p54usb: IDs for two new devices just adding ids > d7c7517 mm: avoid wrapping vm_pgoff in mremap() avoids a BUG() > 8975a50 quota: Don't write quota info in dquot_commit() the journaling filesystem aspect seems like it makes this a candidate > b94738f UBIFS: fix debugging failure in dbg_check_space_info fixes an oops > 5cb4b85 UBIFS: fix oops on error path in read_pnode good oops fix > b7236ed UBIFS: do not read flash unnecessarily basically a performance improvement... but trivial. > a8c2609 ath9k: fix a chip wakeup related crash in ath9k_start looks good > a9a4c9c x86, mtrr, pat: Fix one cpu getting out of sync during resume looks good to me > e8a7988 Btrfs: Fix uninitialized root flags for subvolumes looks good > 62fdb86 ROSE: prevent heap corruption with bad facilities looks good > 356236a ALSA: ens1371: fix Creative Ectiva support makes EV1938 work > 2b418b5 ASoC: Explicitly say registerless widgets have no register looks good > be7ab6d nilfs2: fix data loss in mmap page write for hole blocks data loss fix > d7a23a5 irda: prevent heap corruption on invalid nickname looks good/innocuous > 396c7c0 irda: validate peer name and attribute lengths already fixed in 2.6.32-33 > e22b468 xfs: prevent leaking uninitialized stack memory in FSGEOMETRY_V1 fixed in 2.6.32-32 > bd94ab2 Relax si_code check in rt_sigqueueinfo and rt_tgsigqueueinfo looks like a good correctness fix > 11ab449 staging: hv: use sync_bitops when interacting with the hypervisor > af352e4 staging: hv: Fix GARP not sent after Quick Migration we don't enable HYPERV, but might be good for those who build from our source > 1ed34c9 staging: usbip: bugfix for isochronous packets and optimization > d9638d9 staging: usbip: bugfix add number of packets for isochronous frames > 98d7db5 staging: usbip: bugfixes related to kthread conversion I'm a bit concerned about the size of these patches, but they *seem* important for compatibility (and the last one avoids a deadlock) > a82a276 eCryptfs: ecryptfs_keyring_auth_tok_for_sig() bug fix looks like a simple oops fix > b6ec409 eCryptfs: Unlock page in write_begin error path looks good/safe > 4000177 ses: Avoid kernel panic when lun 0 is not mapped +1 > 56b7b7b ses: show devices for enclosures with no page 7 i think we can file this under "adds hw support" > f0726c7 mac80211: initialize sta->last_rx in sta_info_alloc seems like a safe fix for an annoying bug > ef79e14 sound/oss/opl3: validate voice and channel indexes we don't build it, but good for those who may use our source > a780bc7 cciss: fix lost command issue +1 > ed05cbe myri10ge: fix rmmod crash +1 > 5180140 perf: Better fit max unprivileged mlock pages for tools needs seems like a good fix > 06ac5c4 ALSA: Fix yet another race in disconnection looks good > b997890 ALSA: hda - Fix SPDIF out regression on ALC889 yep, looks good -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org