Changelog
linux-2.6 (2.6.32-29) unstable; urgency=high
[ Ben Hutchings ] * megaraid_sas: Add support for 'entry-level' SAS controllers including the 9240 family (Closes: #604083) * tcp: Make TCP_MAXSEG minimum more correct (refinement of fix for CVE-2010-4165) * l2tp: Fix UDP socket reference count bugs in the pppol2tp driver (Closes: #604748) * USB: Retain device power/wakeup setting across reconfiguration; don't enable remote wakeup by default (Closes: #605246) * dm: Deal with merge_bvec_fn in component devices better (Closes: #604457) * Update Spanish debconf template translation (Aaron H Farias Martinez) (Closes: #600694) * perf: Use libiberty, not libbfd, for symbol demangling (Closes: #590226, #606050) * [x86] Add support for Fintek hardware watchdogs (Closes: #601187) - resource: Add shared I/O region support - hwmon: f71882fg: Use a muxed resource lock for the Super I/O port - watchdog: Add f71808e_wdt driver * bcm5974: Add reporting of multitouch events (Closes: #605450) * fusion: Set FUSION_MAX_SGE=128, the upstream default (Closes: #606096) * Add stable 2.6.32.27: - block: limit vec count in bio_kmalloc() and bio_alloc_map_data() - block: take care not to overflow when calculating total iov length - block: check for proper length of iov entries in blk_rq_map_user_iov() (CVE-2010-4163) - net: clear heap allocation for ETHTOOL_GRXCLSRLALL (CVE-2010-3861) - asus_oled: fix up some sysfs attribute permissions - ipc: initialize structure memory to zero for compat functions (CVE-2010-4073) - ipc/shm: fix information leak to userland (CVE-2010-4072) - ipc/sem: sys_semctl: fix kernel stack information leakage (CVE-2010-4083) - tty: prevent DOS in the flush_to_ldisc - [x86] KVM: VMX: Fix host userspace gsbase corruption (Closes: #604956) - KVM: VMX: fix vmx null pointer dereference on debug register access (CVE-2010-0435) - KVM: x86: fix information leak to userland (CVE-2010-3881) - firewire/cdev: fix information leak - firewire-core: fix an information leak - firewire-ohci: fix buffer overflow in AR split packet handling - bio: take care not overflow page count when mapping/copying user data (CVE-2010-4162) - sisusbvga: fix information leak to userland - iowarrior: fix information leak to userland - usb: core: fix information leak to userland - usb-storage/sierra_ms: fix sysfs file attribute - ueagle-atm: fix up some permissions on the sysfs files - cypress_cy7c63: fix up some sysfs attribute permissions - usbled: fix up some sysfs attribute permissions - trancevibrator: fix up a sysfs attribute permission - usbsevseg: fix up some sysfs attribute permissions - do_exit(): make sure that we run with get_fs() == USER_DS (CVE-2010-4258) - DECnet: don't leak uninitialized stack byte - perf_events: Fix perf_counter_mmap() hook in mprotect() (CVE-2010-4169) - frontier: fix up some sysfs attribute permissions - net/sched: fix kernel information leak in act_police - can-bcm: fix minor heap overflow (CVE-2010-3874) - ivtvfb: prevent reading uninitialized stack memory (CVE-2010-4079) - net/sched: fix some kernel information leaks * TTY: Fix error return from tty_ldisc_open() (regression in 2.6.32.27) * filter: make sure filters dont read uninitialized memory (CVE-2010-4158) * posix-cpu-timers: workaround to suppress the problems with mt exec (CVE-2010-4248) [ Ian Campbell ] * xen: disable ACPI NUMA for PV guests and allow IRQ desc allocation on any node (Closes: #603632) * xen: handle potential time discontinuity on resume (Closes: #602273) * xen: don't bother to stop other cpus on shutdown/reboot (Closes: #605448) * xen: Add cpu hotplug support to prevent crash while parsing ACPI processor tables (Closes: #602109) [ Martin Michlmayr ] * Kirkwood: Add support for 6282 based QNAP devices. -- Ben Hutchings <email address hidden> Fri, 10 Dec 2010 05:45:11 +0000