1. posterid:3617043
  2. Updates of meta-fsl-ppc dizzy branch on 2015-12-21

Updates of meta-fsl-ppc dizzy branch on 2015-12-21

Zhenhua Luo
 

Hello all,

 

The following updates are merged in dizzy branch of meta-fsl-ppc, thanks.

 

commit 7574130137f72567fc1294be425b28a33f29cf71

Author: Sona Sarmadi <sona.sarmadi@...>

Date:   Tue Dec 15 13:57:33 2015 +0100

 

    fs: CVE-2015-3339

   

    Fixes race condition between chown() and execve() system calls in the

   

    References:

   https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3339

    http://seclists.org/oss-sec/2015/q2/216

   

    Upstream fix:

    https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch

    /?id=5176b77f1aacdc560eaeac4685ade444bb814689

   

    Signed-off-by: Sona Sarmadi <sona.sarmadi@...>

    Signed-off-by: Zhenhua Luo <zhenhua.luo@...>

 

commit 386c14696530aa137f662c19383f702b05b578ee

Author: Sona Sarmadi <sona.sarmadi@...>

Date:   Tue Dec 15 13:57:32 2015 +0100

 

    net: CVE-2015-2041

   

    Fixes information leak in llc2_timeout_table.

   

    References:

    http://www.openwall.com/lists/oss-security/2015/02/20/19

    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2041

   

    Upstream fix:

    https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch

    /?id=553dd569ff29bc38cebbf9f9dd7c791863ee9113

   

    Signed-off-by: Sona Sarmadi <sona.sarmadi@...>

    Signed-off-by: Zhenhua Luo <zhenhua.luo@...>

 

commit 3518613fa48ac30c20b67731c60acc92dd11abc1

Author: Sona Sarmadi <sona.sarmadi@...>

Date:   Tue Dec 15 13:57:31 2015 +0100

 

    net-sctp: CVE-2015-1421

   

    Fix slab corruption from use after free on INIT collisions

   

    Reference:

    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1421

   

    Upstream fix:

    https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch/

    ?id=43e39c2f63240f67a67b4060882f67dac1a6f339

   

    Signed-off-by: Sona Sarmadi <sona.sarmadi@...>

    Signed-off-by: Zhenhua Luo <zhenhua.luo@...>

 

commit 210e6d5bd15a7b6dede180e2c4a8f9d5d4484e92

Author: Sona Sarmadi <sona.sarmadi@...>

Date:   Tue Dec 15 13:57:30 2015 +0100

 

    ttusb-dec: CVE-2014-8884

   

    Fixes buffer overflow in ioctl.

   

    Reference:

    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884

   

    Upstream fix:

    https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/

    ?id=482c6cb2dfb40838d67b0ba844b4b3d0af0f3d20

   

    Signed-off-by: Sona Sarmadi <sona.sarmadi@...>

    Signed-off-by: Zhenhua Luo <zhenhua.luo@...>

 

commit f297dfce5ef0fe2d1247b8f167beca1389e1a355

Author: Sona Sarmadi <sona.sarmadi@...>

Date:   Tue Dec 15 13:57:29 2015 +0100

 

    mm: CVE-2014-312

   

    try_to_unmap_cluster() should lock_page() before mlocking

   

    Reference:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3122

   

    Upstream fix:

    https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch

    /?id=400fc13141fe947c38e8485ee9d37066d4533363

   

    Signed-off-by: Sona Sarmadi <sona.sarmadi@...>

    Signed-off-by: Zhenhua Luo <zhenhua.luo@...>

 

 

Best Regards,

 

Zhenhua
Join {meta-freescale@lists.yoctoproject.org to automatically receive all group messages.