-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 24 Sep 2019 01:31:30 +0100 Binary: linux-doc-3.16 linux-manual-3.16 linux-source-3.16 linux-support-3.16.0-10 Source: linux Architecture: all source Version: 3.16.74-1 Distribution: jessie-security Urgency: high Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org> Changed-By: Ben Hutchings <ben@decadent.org.uk> Description: linux-doc-3.16 - Linux kernel specific documentation for version 3.16 linux-manual-3.16 - Linux kernel API manual pages for version 3.16 linux-source-3.16 - Linux kernel source for version 3.16 with Debian patches linux-support-3.16.0-10 - Support files for Linux 3.16 Changes: linux (3.16.74-1) jessie-security; urgency=high . * New upstream stable update: https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.73 - ext4: brelse all indirect buffer in ext4_ind_remove_space() - ext4: cleanup bh release code in ext4_ind_remove_space() https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.74 - media: ivtv: update *pos correctly in ivtv_read_pos() - media: cx18: update *pos correctly in cx18_read_pos() - [armhf] dts: exynos: Fix interrupt for shared EINTs on Exynos5260 - [armhf] media: wl128x: Fix an error code in fm_download_firmware() - pwm: Fix deadlock warning when removing PWM device - [armhf] pwm: tiehrpwm: Update shadow register for disabling PWMs - scsi: qla4xxx: avoid freeing unallocated dma memory - [armhf] OMAP2+: Fix potentially uninitialized return value for _setup_reset() - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler - [armhf] media: wl128x: prevent two potential buffer overflows - kobject: Don't trigger kobject_uevent(KOBJ_REMOVE) twice. - cxgb3/l2t: Fix undefined behaviour - drm/fb-helper: dpms_legacy(): Only set on connectors in use - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS routines - PCI: Factor out pcie_retrain_link() function - PCI: Work around Pericom PCIe-to-PCI bridge Retrain Link erratum - jbd2: check superblock mapped prior to committing - crypto: crct10dif-generic - fix use via crypto_shash_digest() - [x86] crypto: crct10dif-pcl - fix use via crypto_shash_digest() - scsi: qla2xxx: Unregister chrdev if module initialization fails - [x86] hwmon: (f71805f) Use request_muxed_region for Super-IO accesses - hwmon: (pc87427) Use request_muxed_region for Super-IO accesses - [x86] hwmon: (smsc47b397) Use request_muxed_region for Super-IO accesses - [x86] hwmon: (smsc47m1) Use request_muxed_region for Super-IO accesses - [x86] hwmon: (w83627hf) Use request_muxed_region for Super-IO accesses - hwmon: (vt1211) Use request_muxed_region for Super-IO accesses - RDMA/cxgb4: Fix null pointer dereference on alloc_skb failure - [x86] platform: alienware-wmi: fix kfree on potentially uninitialized pointer - crypto: salsa20 - don't access already-freed walk.iv - media: pvrusb2: Prevent a buffer overflow - PCI: Mark Atheros AR9462 to avoid bus reset - [x86] uaccess: Dont leak the AC flag into __put_user() argument evaluation - ALSA: usb-audio: Handle the error from snd_usb_mixer_apply_create_quirk() - fuse: fix writepages on 32bit - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate - fuse: fallocate: fix return with locked inode - bcache: fix memory corruption in init error path - bcache: fix a race between cache register and cacheset unregister - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim() - TTY: serial_core, add ->install - [x86] PCI: Reset Lenovo ThinkPad P50 nvgpu at boot if necessary - Bluetooth: Align minimum encryption key size for LE and BR/EDR connections (CVE-2019-9506) - Bluetooth: Fix regression with minimum encryption key size alignment - Bluetooth: Fix faulty expression for minimum encryption key size check - at76c50x-usb: Don't register led_trigger if usb_register_driver failed - mwl8k: Fix rate_idx underflow - p54: drop device reference count if fails to enable device - ext4: actually request zeroing of inode table after grow - USB: serial: fix initial-termios handling - ALSA: hda/realtek - EAPD turn on later - ALSA: hda/realtek - Fix overridden device-specific initialization - ALSA: usb-audio: Fix a memory leak bug - cdc-acm: fix race between callback and unthrottle - cdc-acm: store in and out pipes in acm structure - cdc-acm: handle read pipe errors - usb: cdc-acm: fix race during wakeup blocking TX traffic - USB: cdc-acm: fix unthrottle races - USB: serial: use variable for status - USB: serial: fix unthrottle races - of: fix clang -Wunsequenced for be32_to_cpu() - [x86] iommu/vt-d: Set intel_iommu_gfx_mapped correctly - ALSA: hda/hdmi - Read the pin sense from register when repolling - [x86] ASoC: max98090: Fix restore of DAPM Muxes - ceph: flush dirty inodes before proceeding with remount - cifs: fix strcat buffer overflow and reduce raciness in smb21_set_oplock_level() - tracing: Fix partial reading of trace event's id file - ipv4: Fix raw socket lookup for local traffic - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while loop - [armhf] media: omap_vout: potential buffer overflow in vidioc_dqbuf() - [x86] platform: alienware-wmi: printing the wrong error code - [x86] platform: sony-laptop: Fix unintentional fall-through - netfilter: ebtables: CONFIG_COMPAT: reject trailing data after last rule - ntp: Allow TAI-UTC offset to be set to zero - NFS4: Fix v4.0 client state corruption when mount - drm/radeon: prefer lower reference dividers - ext4: fix data corruption caused by overlapping unaligned and aligned IO - bonding: fix arp_validate toggling in active-backup mode - ocfs2: fix ocfs2 read inode data panic in ocfs2_iget - [x86] speculation/mds: Revert CPU buffer clear on double fault exit - [x86] speculation/mds: Improve CPU buffer clear documentation - GFS2: Fix rgrp end rounding problem for bsize < page size - GFS2: don't set rgrp gl_object until it's inserted into rgrp tree (CVE-2016-10905) - xfs: clear sb->s_fs_info on mount failure (CVE-2018-20976) - rsi: add fix for crash during assertions (CVE-2018-21008) - mac80211: add API to request TDLS operation from userspace - mac80211: drop robust management frames from unknown TA (CVE-2019-0136) - mac80211: handle deauthentication/disassociation from TDLS peer (CVE-2019-0136) - mwifiex: vendor_ie length check for parse WMM IEs - mwifiex: Fix three heap overflow at parsing element in cfg80211_ap_settings (CVE-2019-14814, CVE-2019-14815, CVE-2019-14816) - vhost: make sure log_num < in_num (CVE-2019-14835) - ALSA: usb-audio: Fix an OOB bug in parse_audio_mixer_unit (CVE-2019-15117) - ALSA: usb-audio: Fix a stack buffer overflow bug in check_input_term (CVE-2019-15118) - media: radio-raremono: change devm_k*alloc to k*alloc (CVE-2019-15211) - USB: rio500: refuse more than one device at a time (CVE-2019-15212) - media: cpia2_usb: first wake up, then free in disconnect (CVE-2019-15215) - media: usb: siano: Fix general protection fault in smsusb (CVE-2019-15218) - media: usb: siano: Fix false-positive "uninitialized variable" warning - media: smsusb: better handle optional alignment - USB: sisusbvga: fix oops in error path of sisusb_probe (CVE-2019-15219) - p54usb: Fix race between disconnect and firmware loading (CVE-2019-15220) - ALSA: line6: Fix write on zero-sized buffer (CVE-2019-15221) - appletalk: Fix use-after-free in atalk_proc_exit (CVE-2019-15292) - scsi: libsas: delete sas port if expander discover failed (CVE-2019-15807) - Bluetooth: hci_ldisc: Fix null pointer derefence in case of early data - Bluetooth: hci_ldisc: Postpone HCI_UART_PROTO_READY bit set in hci_uart_set_proto() (CVE-2019-15917) - ath6kl: add some bounds checking (CVE-2019-15926) - KVM: coalesced_mmio: add bounds checking (CVE-2019-14821) - [i386] staging: comedi: dt282x: fix a null pointer deref on interrupt . [ Ben Hutchings ] * PCI: Avoid ABI change in 3.16.74 * sound/pci/hda: Ignore ABI changes Checksums-Sha1: df04944e9fbd0baf36255e2bbf9b4f2527c63738 143027 linux_3.16.74-1.dsc ac91c04b61f421fd6142261f79641e9781da33d9 82058548 linux_3.16.74.orig.tar.xz 365703e28375d2418ca632aadef40ddf6d462bdc 1849152 linux_3.16.74-1.debian.tar.xz 9a4e5a7fff825a5b32c3ab36f70dc8fd193529ed 461948 linux-support-3.16.0-10_3.16.74-1_all.deb 007bd235b3311d293507cee704250297e8b5fef2 8411356 linux-doc-3.16_3.16.74-1_all.deb 89025d7a4c1e6f534a7655a36abe6c1db814b491 3803206 linux-manual-3.16_3.16.74-1_all.deb 00ff400dfc91136e87aa1bd05730ea3439ec86c0 83915082 linux-source-3.16_3.16.74-1_all.deb Checksums-Sha256: 6971ce4cbd4b0468875f944a0de446b6fcf42d279792e56b4b1eaa20446d3954 143027 linux_3.16.74-1.dsc 0196deabe4c21c5582ea6b1ee081b1367a07294d701715eb1ef665187b453834 82058548 linux_3.16.74.orig.tar.xz 7e341fe84f48da743788ca05048783212da189057ef52c905cd9cea71675b43a 1849152 linux_3.16.74-1.debian.tar.xz 9cc3f160562438a08718b7fb39e22a4a09256b7e95f6c8a3c7bb6b6002326c89 461948 linux-support-3.16.0-10_3.16.74-1_all.deb 0e23b98ba82ab9ce821aee99f38bfcfa78a96ad7a3718b927936dd88f60e4aac 8411356 linux-doc-3.16_3.16.74-1_all.deb 5e5df645628150432a50c32a0ba8aa0b3e0168d53341c7c9cb609fd85671a9cf 3803206 linux-manual-3.16_3.16.74-1_all.deb c88581e856e5b12d4bc6cd70ea700b04ca81c283fb09a7fd9a7fd471aa6ced87 83915082 linux-source-3.16_3.16.74-1_all.deb Files: eb71947893996b059c55126b31867e64 143027 kernel optional linux_3.16.74-1.dsc 6b9a80ef62579a9275d3360bbb9aeb14 82058548 kernel optional linux_3.16.74.orig.tar.xz 3aa4a8fd3ef3967ee0cf3e4c893f9808 1849152 kernel optional linux_3.16.74-1.debian.tar.xz 4c9eb80c0de687f8f0e7952f4efd314e 461948 devel optional linux-support-3.16.0-10_3.16.74-1_all.deb d61eddcfc4b770618aae9b05d3453b0a 8411356 doc optional linux-doc-3.16_3.16.74-1_all.deb eb40baec7d9fbdb27fb2b77577e0c973 3803206 doc optional linux-manual-3.16_3.16.74-1_all.deb d945067c8d66f953c34dc2e26311666e 83915082 kernel optional linux-source-3.16_3.16.74-1_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAl2JhEgACgkQ57/I7JWG EQmKOw//ejOEDaD6RqMdV6AqeqqPJbvMI0JnLb2WND+SqiWJ9TN3WOg6hDsKQq4a ovlklPU7V4UVhIHkUpcp1PmD5gKwfENs0EmaB6vL7T+WFuaxfMnosQBogipQ83xU xOc31F9e8IY9UGdElqEuDHmPDejmzSLRCmxEmMBsNDq64h10alRsxX+oQG9j8O2k j350NerDuy2mvboRZv5VRN3i6IT73fO9Io46BJGcBhIqyzW4ny8o82wfItCOWipH dAZFKwgGO6K1BHaZGMIUKUUTJLp+Y8+dXHL0sfYdEnVtVuWntOUFn1mqItrRytBd mzrIsuQrY2l+hggSvJZ7ijXWvUyEX0znOAYKnKyPaXadpvVhHY4D5hYiPtFAUZPa ysokxTbtdegpZfhRexHrRxPlJwGfnmKF3NNRplbLe5y1vSVSM+xJc4d8loLYrSfW 0Hd6MlwBE78z3VlO363an3UZ8HChV1+4gfEvuX7JTDaxMoVblh558bpiv2crxY23 R6EaAtQJR06giLTj+6sFiQ5iVwoSTfzor7wPir5nj4D6KtN3+YRmnC5GFoB/xskp Y/YHlQI6MgPKEdbdqOjq+LSOlIODM1cPHSVWIr/Pc0OkP/m7iAmZ/9O3B/W9vzHy irV8OuGqK2hNJJtG3P7uOqgXg1AViOh8lcAevLPlqRlkVqeS01w= =I1/G -----END PGP SIGNATURE-----