Changelog
linux-2.6 (2.6.32-28) unstable; urgency=high
[ maximilian attems ] * ipc: initialize structure memory to zero for shmctl. * drm/i915: set DIDL using the ACPI video output device _ADR method return. * images: Nuke modules.devname on removal. (closes: #590607) * Newer Standards-Version 3.9.1 without changes. * drm/ttm: Clear the ghost cpu_writers flag on ttm_buffer_object_transfer. * [openvz] Update upstream patch to 2.6.32-dzhanibekov. * [openvz] ubc: Fix orphan count checks after merge. [ Martin Michlmayr ] * Update udlfb to 2.6.37: - udlfb: minor cleanups - udlfb: fix coding style issues - udlfb: fbdev character read and write support - udlfb: add DPMS support - udlfb: remove metrics_misc sysfs attribute - udlfb: revamp reference handling to insure successful shutdown - udlfb: enhance EDID and mode handling support - udlfb: fix big endian rendering error - udlfb: support for writing backup EDID to sysfs file - udlfb: add module options for console and fb_defio - udlfb: fix incorrect fb_defio implementation for multiple framebuffers - udlfb: fix checkpatch and style [ Ben Hutchings ] * Update debconf template translations: - Update Japanese (Nobuhiro Iwamatsu) (Closes: #602152) - Update Catalan (Jordi Mallach) (Closes: #602520) - Add Italian (Luca Bruno) (Closes: #602945) * sunrpc: Fix NFS client over TCP hangs due to packet loss (Closes: #589945) * brcm80211: Update to 2.6.37-rc1 * [powerpc] ALSA: Fix headphone and line-out detection on PowerMac G4 DA (Closes: #603419) * [x86] snd-hda-codec-cirrus: Add quirks for IMac 27", MacBookPro 5,5 and 7,1 * [x86] btusb: Add device IDs for MacBookPro 6,2 and 7,1 (Closes: #603651) * [x86] applesmc: Add support for iMac 9,1 and MacBookPro 2,2, 5,3, 5,4, 6,* and 7,* * [x86] applesmc, bcm5974, btusb, HID, mbp_nvidia_bl, snd-hda-codec-cirrus: Add support for MacBookAir 3,1 and 3,2 (Closes: #603395) * [x86] mbp_nvidia_bl: Add support for MacBookPro 7,1 * x25: Fix remote denial-of-service vulnerabilities: - x25 accesses fields beyond end of packet - memory corruption in X.25 facilities parsing (CVE-2010-3873) - Prevent crashing when parsing bad X.25 facilities (CVE-2010-4164) * tcp: Increase TCP_MAXSEG socket option minimum (CVE-2010-4165) * rds: Fix integer overflow in RDS cmsg handling * af_802154,decnet,econet,rds,x25: Disable auto-loading as mitigation against local exploits. These protocol modules are not widely used and can be explicitly loaded or aliased on systems where they are wanted. * atl1c: Add support for Atheros AR8151 and AR8152 (Closes: #599771) * Add stable 2.6.32.26: - synclink_cs: Fix information leak to userland - bluetooth: Fix missing NULL check - [x86] KVM: VMX: Fix host GDT.LIMIT corruption - [x86] KVM: Fix fs/gs reload oops with invalid ldt (CVE-2010-3698) - gdth: Fix integer overflow in ioctl (CVE-2010-4157) * [x86] KVM: SVM: Fix wrong intercept masks for KVM_{GET,SET}_VCPU_EVENTS on 32 bit, thanks to Philipp Matthias Hahn (Closes: #599507) [ dann frazier ] * [vserver] Update patch to 2.6.32.25-vs2.3.0.36.29.6 * add qlcnic driver * econet: Avoid stack overflow w/ large msgiovlen (CVE-2010-3848) * econet: disallow NULL remote addr for sendmsg() (CVE-2010-3849) * econet: Add mising CAP_NET_ADMIN check in SIOCSIFADDR (CVE-2010-3850) -- Ben Hutchings <email address hidden> Thu, 25 Nov 2010 01:20:50 +0000