Debian Package Tracker

From: Ben Hutchings <ben@decadent.org.uk>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted linux 3.16.68-2 (all source) into oldstable
Date: Mon, 17 Jun 2019 17:57:52 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 17 Jun 2019 16:57:59 +0100
Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16 linux-support-3.16.0-9
Source: linux
Architecture: all source
Version: 3.16.68-2
Distribution: jessie-security
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <ben@decadent.org.uk>
Description: 
 linux-doc-3.16 - Linux kernel specific documentation for version 3.16
 linux-manual-3.16 - Linux kernel API manual pages for version 3.16
 linux-source-3.16 - Linux kernel source for version 3.16 with Debian patches
 linux-support-3.16.0-9 - Support files for Linux 3.16
Changes:
 linux (3.16.68-2) jessie-security; urgency=high
 .
   * mwifiex: Fix possible buffer overflows at parsing bss descriptor
     (CVE-2019-3846)
   * mwifiex: Abort at too short BSS descriptor element
   * mwifiex: Don't abort on small, spec-compliant vendor IEs
   * mm: introduce vma_is_anonymous(vma) helper
   * mm/mincore.c: make mincore() more conservative (CVE-2019-5489)
   * tcp: limit payload size of sacked skbs (CVE-2019-11477)
   * tcp: tcp_fragment() should apply sane memory limits (CVE-2019-11478)
   * tcp: add tcp_min_snd_mss sysctl (CVE-2019-11479)
   * tcp: enforce tcp_min_snd_mss in tcp_mtu_probing()
   * tcp: fix fack_count accounting on tcp_shift_skb_data()
   * tcp: Avoid ABI change for DoS fixes
   * scsi: megaraid_sas: return error when create DMA pool failed
     (CVE-2019-11810)
   * ext4: zero out the unused memory region in the extent tree block
     (CVE-2019-11833)
   * Bluetooth: hidp: fix buffer overflow (CVE-2019-11884)
   * mwifiex: Fix heap overflow in mwifiex_uap_parse_tail_ies() (CVE-2019-10126)
Checksums-Sha1: 
 7ef10ed6f76ac9203bdcf83beb2aa8116376d66d 140642 linux_3.16.68-2.dsc
 9a116da5a47f22b71e369c0f2991f27519f8afd6 1173100 linux_3.16.68-2.debian.tar.xz
 9d2224d9bd196dbc97cd87bc427acda313275c8b 8411212 linux-doc-3.16_3.16.68-2_all.deb
 2ad2e26741c8e9255107cc9ead9b57e5c01c4b7b 3806240 linux-manual-3.16_3.16.68-2_all.deb
 5bf72a646e79ed8e9f4c7363c6270b399de730df 454916 linux-support-3.16.0-9_3.16.68-2_all.deb
 1cbb9f2a029b9e1ad714e082b532a0a063f8c9b6 83966870 linux-source-3.16_3.16.68-2_all.deb
Checksums-Sha256: 
 c4cba65e509d36fce9a94b3a0a7940fa48d3507fe7e2d8266969962e87b6e8ea 140642 linux_3.16.68-2.dsc
 b9b5b6a44fdca1f12c328edd6d61b7e386008cb3ebc087f3e536aeac8c96704c 1173100 linux_3.16.68-2.debian.tar.xz
 0af50c75c59437739fb0f9cf89db855a4e8ceb07a5d25d81b4402c464aea3b97 8411212 linux-doc-3.16_3.16.68-2_all.deb
 5315c06aa0f7177ac690e503d6e138b869def9d2dc16be1d99f7116b361a1fea 3806240 linux-manual-3.16_3.16.68-2_all.deb
 c664db324c12b69b7cd455baa55148f48a867add02cc8227d147bb5f46ce9dfc 454916 linux-support-3.16.0-9_3.16.68-2_all.deb
 35544bd7fc7af801360556f69e8493df4427cb90cce6d549c65dc90f904c1ca8 83966870 linux-source-3.16_3.16.68-2_all.deb
Files: 
 84a70b2201c678698257c2b533a66408 140642 kernel optional linux_3.16.68-2.dsc
 596f380b45cf6f69d464f8e557218a85 1173100 kernel optional linux_3.16.68-2.debian.tar.xz
 e18bee7d133cd676e0271927b6461a2f 8411212 doc optional linux-doc-3.16_3.16.68-2_all.deb
 d90a66830acb7ca638fd579fb4fb8d1d 3806240 doc optional linux-manual-3.16_3.16.68-2_all.deb
 c0f93317952c951a8defcdcc4276ac11 454916 devel optional linux-support-3.16.0-9_3.16.68-2_all.deb
 3fef71e4b64c4994a8402a892d3a1b74 83966870 kernel optional linux-source-3.16_3.16.68-2_all.deb

-----BEGIN PGP SIGNATURE-----
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=iJWS
-----END PGP SIGNATURE-----
News for package linux
