[gentoo-kernel] [ANNOUNCE] genpatches-3.10.7-1 release

public inbox for gentoo-kernel@lists.gentoo.org
 help / color / mirror / Atom feed

* [gentoo-kernel] [ANNOUNCE] genpatches-3.10.7-1 release
@ 2013-09-25 17:13 Tom Wijsman 
  2013-09-25 17:47 ` Tom Wijsman
  0 siblings, 1 reply; 2+ messages in thread
From: Tom Wijsman  @ 2013-09-25 17:13 UTC (permalink / raw
  To: Gentoo Kernel List

This is an automated email announcing the release of genpatches-3.10.7-1


PATCHES
-------

When the website updates, the complete patch list and split-out patches will be
available here:
http://dev.gentoo.org/~mpagano/genpatches/patches-3.10.7-1.htm
http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.base.tar.bz2
http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.extras.tar.bz2
http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.experimental.tar.bz2


ABOUT GENPATCHES
----------------

genpatches is the patchset applied to some kernels available in Portage.

For more information, see the genpatches homepage:
http://dev.gentoo.org/~mpagano/genpatches

For a simple example of how to use genpatches in your kernel ebuild, look at a
recent gentoo-sources ebuild.


^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [gentoo-kernel] [ANNOUNCE] genpatches-3.10.7-1 release
  2013-09-25 17:13 [gentoo-kernel] [ANNOUNCE] genpatches-3.10.7-1 release Tom Wijsman 
@ 2013-09-25 17:47 ` Tom Wijsman
  0 siblings, 0 replies; 2+ messages in thread
From: Tom Wijsman @ 2013-09-25 17:47 UTC (permalink / raw
  To: gentoo-kernel

[-- Attachment #1: Type: text/plain, Size: 3295 bytes --]

On Wed, 25 Sep 2013 17:13:14 +0000 (UTC)
TomWij@gentoo.org (Tom Wijsman ) wrote:

> This is an automated email announcing the release of
> genpatches-3.10.7-1
> 
> PATCHES
> -------
> 
> When the website updates, the complete patch list and split-out
> patches will be available here:
> http://dev.gentoo.org/~mpagano/genpatches/patches-3.10.7-1.htm
> http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.base.tar.bz2
> http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.extras.tar.bz2
> http://dev.gentoo.org/~mpagano/genpatches/tarballs/genpatches-3.10.7-1.experimental.tar.bz2

If you are wondering what this is...

This is a revision bump to =sys-kernel/gentoo-sources-3.10.7, it
backports some stability and security fixes that are a bit more
important than the usual fixes; here is the summary:

Revision 2497:
Import 3.10-13 (3.10.7 release) as 3.10.7 branch, to bring security
fixes to stable. (tomwij)

Revision 2498:
fs/proc/task_mmu.c: fix buffer overflow in add_page_map() reported by
stintel on IRC, backported from 3.10.8. (tomwij)
Added: 1500_task-mmu_fix-buffer-overflow-in-add_page_map.patch

Revision 2517:
Added CVE-2013-4300 patch to 3.10 and 3.10.7 branches for security bug
#483614. (tomwij)
Added:
1500_CVE-2013-4300-net-Check-the-correct-namespace-when-spoofing-pid-ov.patch

Revision 2527:
Added patches for HID security flaws for CVE-2013-2888 - CVE-2013-2899,
see bug #482896 for more information. (tomwij)
Added: 1500_CVE-2013-2888-HID-validate-HID-report-id-size.patch
Added:
1500_CVE-2013-2889-HID-zeroplus-validate-output-report-details.patch
Added:
1500_CVE-2013-2891-HID-steelseries-validate-output-report-details.patch
Added:
1500_CVE-2013-2892-HID-pantherlord-validate-output-report-details.patch
Added:
1500_CVE-2013-2894-HID-lenovo-tpkbd-validate-output-report-details.patch
Added:
1500_CVE-2013-2895-HID-logitech-dj-validate-output-report-details.patch
Added:
1500_CVE-2013-2896-HID-ntrig-validate-feature-report-details.patch
Added: 1500_CVE-2013-2897-HID-multitouch-validate-indexes-details.patch
Added:
1500_CVE-2013-2898-HID-sensor-hub-validate-feature-report-details.patch
Added:
1500_CVE-2013-2899-HID-picolcd_core-validate-output-report-details.patch
Added: 1500_HID-check-for-NULL-field-when-setting-values.patch
Added: 1500_HID-provide-a-helper-for-validating-hid-reports.patch

The commit message used for =sys-kernel/gentoo-sources-3.10.7-r1:

Revision bump for 3.10.7. Fixed an important buffer overflow in
add_page_map() causing kernel panics, backported from 3.10.8; reported
by stintel on IRC. Fixed PID Spoofing Privilege Escalation, backported
from 3.11, see bug #483614; CVE-2013-4300. Fixed multiple HID security
flaws, backported from GregKH's stable queue and Linus' master, see bug
#482896; from CVE-2013-2888 till CVE-2013-2899. Users that had kernel
panics due to buffer overflows or need additional security are
suggested to update.

Not sure if anybody needs this information, just added for completeness.

-- 
With kind regards,

Tom Wijsman (TomWij)
Gentoo Developer

E-mail address  : TomWij@gentoo.org
GPG Public Key  : 6D34E57D
GPG Fingerprint : C165 AF18 AB4C 400B C3D2  ABF0 95B2 1FCD 6D34 E57D

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 490 bytes --]

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2013-09-25 17:53 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-09-25 17:13 [gentoo-kernel] [ANNOUNCE] genpatches-3.10.7-1 release Tom Wijsman 
2013-09-25 17:47 ` Tom Wijsman

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox