59915d41e7
CVE-2015-8812 cxgb3 use after free (rhbz 1303532 1309548)
2016-02-18 08:23:33 -05:00
f062445414
Linux v4.4.2
2016-02-17 15:07:55 -08:00
f4eecca420
Backport fix for elantech touchpads (rhbz 1306987)
2016-02-16 12:29:53 -05:00
acbaf76b33
CVE-2016-2383 incorrect branch fixups for eBPG allow arbitrary reads (rhbz 1308452 1308453)
2016-02-15 08:36:44 -05:00
debee96e5e
CVE-2016-2384 double free in usb-audio from invalid USB descriptor (rhbz 1308444 1308445)
2016-02-15 08:31:38 -05:00
568b33d005
Turn off W+X warnings (rhbz 1306885)
...
The W+X warning is useful for finding potentially insecure
mappings. Fixes for some of the warning have stalled leading
to lots of reports of warnings though. There isn't much use
for this in stable releases since any fix will be trickling
in through rawhide anyway. Turn it off for stable releases
and leave it on for rawhide.
2016-02-12 11:59:29 -08:00
d8be0409b7
CVE-2016-0617 fix hugetlbfs inode.c issues (rhbz 1305803 1305804)
2016-02-09 09:16:19 -05:00
927ec95fb5
Linux v4.4.1
2016-02-01 12:01:28 -08:00
8d728edd00
Backport HID sony patch to fix some gamepads (rhbz 1255235)
2016-01-29 15:21:49 -05:00
51a47249db
Update patches from upstream to fix oops
...
Found by kernel test bot:
http://thread.gmane.org/gmane.linux.kernel/2139378
and Johanness fixed it up quickly
2016-01-29 12:08:04 -05:00
1f1a7f551b
Fix issues with ivtv driver on PVR350 devices (rhbz 1278942)
2016-01-28 15:47:36 -05:00
f760e670ee
Add patches to fix suprious NEWLINK netlink messages (rhbz 1302037)
2016-01-28 15:05:21 -05:00
b73a36606c
Add patch to fix some Elan touchpads (rhbz 1296677)
2016-01-27 08:26:09 -05:00
982c66e8c8
Fix backtrace from PNP conflict on Haswell-ULT (rhbz 1300955)
2016-01-22 13:03:56 -05:00
e876b53845
Fix backtrace from PNP conflict on Broadwell (rhbz 1083853)
2016-01-22 13:02:10 -05:00
b38f51a2c9
Fix incorrect country code issue on RTL8812AE devices (rhbz 1279653)
2016-01-21 10:11:08 -05:00
f270a5e1e4
CVE-2016-0723 memory disclosure and crash in tty layer (rhbz 1296253 1300224)
2016-01-20 08:41:15 -05:00
9644a14e7b
CVE-2013-4312 file descr passed over unix sockects not properly accounted (rhbz 1297813 1300216)
2016-01-20 08:41:04 -05:00
a4a985bb9d
CVE-2016-0728 Keys: reference leak in join_session_keyring (rhbz 1296623 1297475)
2016-01-20 08:39:25 -05:00
3192fefa2b
Happy New Year!
2016-01-14 12:39:00 -08:00
a2bb5001cb
Linux v4.4
2016-01-14 11:34:59 -08:00
cdfa7cd82c
CVE-2015-8575 information leak in sco_sock_bind (rhbz 1292840 1292841)
2015-12-18 08:59:41 -05:00
702b182815
Fix memory leak in vrf
2015-12-17 13:45:59 -06:00
796e8c7f90
CVE-2015-8569 info leak from getsockname (rhbz 1292045 1292047)
2015-12-17 08:20:00 -05:00
85afd8d210
CVE-2015-8543 ipv6: DoS via NULL pointer dereference (rhbz 1290475 1290477)
2015-12-15 10:49:33 -05:00
e7ca3b90d2
Linux v4.3.3
2015-12-15 07:31:12 -05:00
be9160e268
BuildRequire openssl openssl-devel on %{ix86} x86_64
...
Lo! Consider applying below patch for rawhide and the stabilization
branch. It fixes a build problem in mock on %{ix86} x86_64 when setting
%signmodules to 0 in kernel.spec. The build fails because Linux since
4.3-rc1 needs openssl and openssl-devel when CONFIG_MODULE_SIG is set,
which is the done by config-x86-generic in Fedora. CU, thl
2015-12-14 14:52:30 -05:00
be74878bf4
Make sure to BR both openssl and openssl-devel
2015-12-14 14:51:40 -05:00
f111e5534e
CVE-2015-7550 Race between read and revoke keys (rhbz 1291197 1291198)
2015-12-14 10:42:10 -05:00
0ad765a576
CVE-XXXX-XXXX permission bypass on overlayfs (rhbz 1291329 1291332)
2015-12-14 10:32:55 -05:00
616e3f7f4c
CVE-2013-7446 unix sockects use after free (rhbz 1282688 1282712)
2015-12-11 08:47:36 -05:00
b930873422
Linux v4.3.2
2015-12-11 07:37:18 -05:00
135e505909
Ignore errors from scsi_dh_add_device (rhbz 1288687)
2015-12-10 11:09:23 -08:00
045e1363a3
Fix rfkill issues on ideapad Y700-17ISK (rhbz 1286293)
2015-12-10 08:24:33 -05:00
161fdfc6cb
Linux v4.3.1
2015-12-09 16:52:40 -05:00
2e74fb1123
Add patch to fix palm rejection on certain touchpads (rhbz 1287819)
2015-12-03 11:02:54 -05:00
f69c01980b
Enable CONFIG_X86_INTEL_MPX (rhbz 1287279)
2015-12-01 19:44:46 -05:00
15f6b30ec6
CVE-2015-7515 aiptek: crash on invalid device descriptors (rhbz 1285326 1285331)
2015-12-01 15:04:34 -05:00
27c0f9d843
CVE-2015-7833 usbvision: crash on invalid device descriptors (rhbz 1270158 1270160)
2015-12-01 14:55:59 -05:00
572b17832b
Fix crash in add_key (rhbz 1284059)
2015-11-30 09:48:43 -05:00
5d464f8c52
CVE-2015-8374 btrfs: info leak when truncating compressed/inlined extents (rhbz 1286261 1286262)
2015-11-30 08:27:42 -05:00
89e881d12a
Make sure ACPI_REV_OVERRIDE_POSSIBLE remains enabled
2015-11-23 09:28:59 -05:00
9e788fd478
Fix sound issue on some ARM devices (tested on Arndale)
2015-11-22 10:45:10 +00:00
72eede0160
drop old beaglebone patches
2015-11-22 10:20:16 +00:00
ee4eeef0bf
Fix for GRE tunnel running in IPSec (rhbz 1272571)
2015-11-20 11:15:23 -06:00
e89c48042a
Fix ipset netfilter issues (rhbz 1279189)
2015-11-16 14:41:16 -05:00
d6335d840a
Add queued 4.3 net stable fixes
2015-11-16 08:42:19 -05:00
1d36eca243
CVE-2015-5327 x509 time validation
2015-11-12 08:45:24 -05:00
777d869b10
Fix build for new certificate setup in 4.3.
...
Also a small fix for perf related installed files
2015-11-11 18:55:54 -05:00
1adb467330
Drop patch that was included in 4.3-rc2
2015-11-11 12:13:14 -05:00
Josh Boyer
Laura Abbott
Justin M. Forbes
Thorsten Leemhuis
Peter Robinson