-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 12 Nov 2019 15:56:11 +0000 Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16 linux-support-3.16.0-10 Source: linux Architecture: all source Version: 3.16.76-1 Distribution: jessie-security Urgency: high Maintainer: Debian Kernel Team <debian-ker...@lists.debian.org> Changed-By: Ben Hutchings <b...@decadent.org.uk> Description: linux-doc-3.16 - Linux kernel specific documentation for version 3.16 linux-manual-3.16 - Linux kernel API manual pages for version 3.16 linux-source-3.16 - Linux kernel source for version 3.16 with Debian patches linux-support-3.16.0-10 - Support files for Linux 3.16 Changes: linux (3.16.76-1) jessie-security; urgency=high . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.75 - net/mlx4_core: Change the error print to info print - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master - Btrfs: fix race between ranged fsync and writeback of adjacent ranges - scsi: bnx2fc: fix incorrect cast to u64 on shift operation - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor - USB: Add LPM quirk for Surface Dock GigE adapter - usbip: usbip_host: fix BUG: sleeping function called from invalid context - USB: rio500: fix memory leak in close after disconnect - [x86] drm/gma500/cdv: Check vbt config bits when detecting lvds panels - USB: serial: pl2303: add Allied Telesis VT-Kit3 - usb: xhci: avoid null pointer deref when bos field is NULL - [armhf] net: stmmac: fix reset gpio free missing - igmp: acquire pmc lock for ip_mc_clear_src() - igmp: add a missing spin_lock_init() - ipv4/igmp: fix another memory leak in igmpv3_del_delrec() - sbitmap: fix improper use of smp_mb__before_atomic() - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD - perf/ring_buffer: Fix exposing a temporarily decreased data_head - perf/ring_buffer: Add ordering to rb->nest increment - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr - configfs: Fix use-after-free when accessing sd->s_dentry - llc: fix skb leak in llc_build_and_send_ui_pkt() - CIFS: cifs_read_allocate_pages: don't iterate through whole page array on ENOMEM - usbip: usbip_host: fix stub_dev lock context imbalance regression - signal/ptrace: Don't leak unitialized kernel memory with PTRACE_PEEK_SIGINFO - net-gro: fix use-after-free read in napi_gro_frags() - kernel/signal.c: trace_signal_deliver when signal_group_exit - USB: usb-storage: Add new ID to ums-realtek - USB: Fix chipmunk-like voice when using Logitech C270 for recording audio. - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages - net: rds: fix memory leak in rds_ib_flush_mr_pool - pktgen: do not sleep with the thread lock held. - can: af_can: Fix error path of can_init() - can: purge socket error queue on sock destruct - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero - ptrace: restore smp_rmb() in __ptrace_may_access() - bcache: fix stack corruption by PRECEDING_KEY() - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk - cifs: add spinlock for the openFileList to cifsInodeInfo - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() - coredump: fix race condition between collapse_huge_page() and core dumping - cfg80211: fix memory leak of wiphy device name - Btrfs: fix race between readahead and device replace/removal - btrfs: start readahead also in seed devices - be2net: Fix number of Rx queues used for flow hashing - neigh: fix use-after-free read in pneigh_get_next - perf/core: Fix perf_sample_regs_user() mm check - SMB3: retry on STATUS_INSUFFICIENT_RESOURCES instead of failing write - apparmor: enforce nullbyte at end of tag string - net: netem: fix backlog accounting for corrupted GSO frames - scsi: ufs: Avoid runtime suspend possibly being blocked forever - [x86] scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() - [x86] apic: Fix integer overflow on 10 bit left shift of cpu_khz - be2net: fix link failure after ethtool offline test - perf/ioctl: Add check for the sample_period value - [x86] speculation: Allow guests to use SSBD even if host does not - cpu/speculation: Warn on unsupported mitigations= parameter - bonding: Always enable vlan tx offload - bonding: Add vlan tx offload to hw_enc_features - sctp: change to hold sk after auth shkey is created successfully - ALSA: seq: fix incorrect order of dest_client/dest_ports arguments - tracing/snapshot: Resize spare buffer if size changed - scsi: target/iblock: Fix overrun in WRITE SAME emulation - lib/mpi: Fix karactx leak in mpi_powm - crypto: user - prevent operating on larval algorithms https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.76 - eCryptfs: fix a couple type promotion bugs - 9p/virtio: Add cleanup path in p9_virtio_init - signal/pid_namespace: Fix reboot_pid_ns to use send_sig not force_sig - xfrm: Fix xfrm sel prefix length validation - af_key: fix leaks in key_pol_get_resp and dump_sp. - crypto: ghash - fix unaligned memory access in ghash_setkey() - memstick: Fix error cleanup path of memstick_init - [armhf] gpio: omap: fix lack of irqstatus_raw0 for OMAP4 - xfrm: fix sa selector validation - PCI: Do not poll for PME if the device is in D3cold - usb: gadget: ether: Fix race between gether_disconnect and rx_submit - USB: serial: option: add GosunCn ZTE WeLink ME3630 - USB: serial: option: add support for GosunCn ME3630 RNDIS mode - [x86] VMCI: Fix integer overflow in VMCI handle arrays - mwifiex: fix 802.11n/WPA detection - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom() - EDAC: Fix global-out-of-bounds write when setting edac_mc_poll_msec - carl9170: fix misuse of device driver API - [x86] ptrace: Fix possible spectre-v1 in ptrace_get_debugreg() (CVE-2017-5753) - [x86] tls: Fix possible spectre-v1 in do_get_thread_area() (CVE-2017-5753) - USB: serial: ftdi_sio: add ID for isodebug v1 - igmp: fix memory leak in igmpv3_del_delrec() - net: bridge: stp: don't cache eth dest pointer before skb pull - lib/scatterlist: Fix mapping iterator when sg->offset is greater than PAGE_SIZE - bonding: validate ip header before check IPPROTO_IGMP - NFSv4: Handle the special Linux file open access mode - udf: Fix incorrect final NOT_ALLOCATED (hole) extent length - mm/mmu_notifier: use hlist_add_head_rcu() - net: neigh: fix multiple neigh timer scheduling - ALSA: seq: Break too long mutex context in the write loop - coda: pass the host file in vma->vm_file on mmap - caif-hsi: fix possible deadlock in cfhsi_exit_module() - padata: use smp_mb in padata_reorder to avoid orphaned padata jobs - Input: psmouse - fix build error of multiple definition - [x86] KVM: x86/vPMU: refine kvm_pmu err msg when event creation failed . [ Ben Hutchings ] * net: netem: fix error path for corrupted GSO frames (regression in 3.16.75) * [x86] Add mitigation for TSX Asynchronous Abort (CVE-2019-11135): - KVM: Introduce kvm_get_arch_capabilities() - KVM: x86: use Intel speculation bugs and features as derived in generic x86 code - x86/msr: Add the IA32_TSX_CTRL MSR - x86/cpu: Add a helper function x86_read_arch_cap_msr() - x86/cpu: Add a "tsx=" cmdline option with TSX disabled by default - x86/speculation/taa: Add mitigation for TSX Async Abort - x86/speculation/taa: Add sysfs reporting for TSX Async Abort - kvm/x86: Export MDS_NO=0 to guests when TSX is enabled - x86/tsx: Add "auto" option to the tsx= cmdline parameter - x86/speculation/taa: Add documentation for TSX Async Abort - x86/tsx: Add config options to set tsx=on|off|auto - x86/speculation/taa: Fix printing of TAA_MSG_SMT on IBRS_ALL CPUs TSX is now disabled by default; see Documentation/hw-vuln/tsx_async_abort.rst * [x86] bugs: Add ITLB_MULTIHIT bug infrastructure (this CPU bug will *not* be mitigated on 3.16) * [x86] drm/i915/gen8+: Add RC6 CTX corruption WA (CVE-2019-0154) Checksums-Sha1: 4aecb28c5056790a42342e949861496d8de6c96b 143027 linux_3.16.76-1.dsc fc0c0a974b243f8ec6ab2883668acb8c91aad0ad 82072428 linux_3.16.76.orig.tar.xz 340ec597504ad863cb7803723a645f08ef9d907d 1867528 linux_3.16.76-1.debian.tar.xz ab5aa3e71f699450735529ca2a77944b7f457b6f 464822 linux-support-3.16.0-10_3.16.76-1_all.deb 434cb09a8147538b3c7d6b1a778536aa5900bd31 8420560 linux-doc-3.16_3.16.76-1_all.deb b0f25c35a2ce453e3cce185fc782b505484c8918 3796968 linux-manual-3.16_3.16.76-1_all.deb d672ae57c3f2d93f28720315b878649eba156988 83932198 linux-source-3.16_3.16.76-1_all.deb Checksums-Sha256: 6988745d192ca70642abeaa1b44778984c09e80d7c904fdcab4a6b6e02aeed72 143027 linux_3.16.76-1.dsc f6d2ad9253cab4725fd97948447055ec56dabb18252d32a7fe55622a7744a912 82072428 linux_3.16.76.orig.tar.xz 0c2da4c7ea60ffff716cb09c8e1deb9552357b9fa22f3819d164ada01673469b 1867528 linux_3.16.76-1.debian.tar.xz 0f3548c25c8d134ed4fb513a96ea6e6af82445364daaa79cb1e674645bd3fe21 464822 linux-support-3.16.0-10_3.16.76-1_all.deb f0f70f3923af5c5200220d6f505e7a700365e4ac6adacec3e277e4faa9e79511 8420560 linux-doc-3.16_3.16.76-1_all.deb fbcff982c6e23ab9ac929a1475ba15a470bd9052c84a2ed217894f06cc1628a8 3796968 linux-manual-3.16_3.16.76-1_all.deb 19f9220eb8659a4d0c8f49a45eb1ffdda8e5067a6368f26965154d8ca4ce490b 83932198 linux-source-3.16_3.16.76-1_all.deb Files: 46688ae298bd120211a16647aedab605 143027 kernel optional linux_3.16.76-1.dsc 96ce8675fd55802e3fa22940f9d0c943 82072428 kernel optional linux_3.16.76.orig.tar.xz 4ea7eab99b40e727bd2868a6f035a248 1867528 kernel optional linux_3.16.76-1.debian.tar.xz e9fde967c61f0bf2000602fd16cb7ac4 464822 devel optional linux-support-3.16.0-10_3.16.76-1_all.deb 50c6b96ebe29068cc1394ea8d6c103f6 8420560 doc optional linux-doc-3.16_3.16.76-1_all.deb e6eb896016c7d020968f330721734dff 3796968 doc optional linux-manual-3.16_3.16.76-1_all.deb 0fc62f557fd5de400161b4c2e5d26e28 83932198 kernel optional linux-source-3.16_3.16.76-1_all.deb
-----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAl3K+LwACgkQ57/I7JWG EQnRoA/6AqrAHm/i1AGEK/6E5TUUmDuDm4ZdUbGjHrYTrQWcj2mHivveBWB8Dj3H DlI9Ps+gXEG3JzlsPhz9SX4v57JH2xi0Uq7EnIdiBRDDqW4sqALOkMgiwjUcQmxK AFyeD39aY7WFGQ29U6AgUnoOhuVNuibdPArbS+YAv9xdypfOITgbl4ogWGPiJC1I OFRZVQxufYXtywDEYouRdeVap+Fl+csfeOFewDkWWNyEbfbZaA+0ZeOnWdw85mfp IMEQKE+OXmvzfVZPGuO1FHoRGkg2+uKCZmpeL12Mi2OQritnapxawR/k0Q1MXw1p YdikghtYbM/mUgWQYzwr0m0/h0RytCXRUccx+/b7l7HxTbqeWUaLwrhd7+oOLcA5 AL3U7aoUfUuRnQOs8/v5zrvbxU+aJ/LzFJ2FtRyNpGKbQiLR7+QYJMcq8NBI8IDB 3fYS7qYMWdgz2V1D6NrkNtqZYSIUpB8Ob4GGMyTo91h4IOrnhHTQ6OLPiMLoO6gl Cp2vazMHfUh/Lh8cYe6oHM60l7SL1oGBv0+85WS3zgMu00YT51IpqWAq2C4kY15y LdVTY+14TNEtMfXvkP1gnNgSWO1CdZaTGJ+EuTSIib9BzeBrR/idZ6lFvrbkrPg3 9HfnUypzu151FYBI5az9qlG85lb+o4rQQZelH5qe6sunG2PHZE8= =SLsr -----END PGP SIGNATURE-----