[meta-freescale] Updates of meta-fsl-ppc dizzy branch on 2015-12-21
Zhenhua Luo
zhenhua.luo at nxp.com
Mon Dec 21 02:10:42 PST 2015
Hello all,
The following updates are merged in dizzy branch of meta-fsl-ppc, thanks.
commit 7574130137f72567fc1294be425b28a33f29cf71
Author: Sona Sarmadi <sona.sarmadi at enea.com>
Date: Tue Dec 15 13:57:33 2015 +0100
fs: CVE-2015-3339
Fixes race condition between chown() and execve() system calls in the
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3339
http://seclists.org/oss-sec/2015/q2/216
Upstream fix:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch
/?id=5176b77f1aacdc560eaeac4685ade444bb814689
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
Signed-off-by: Zhenhua Luo <zhenhua.luo at nxp.com>
commit 386c14696530aa137f662c19383f702b05b578ee
Author: Sona Sarmadi <sona.sarmadi at enea.com>
Date: Tue Dec 15 13:57:32 2015 +0100
net: CVE-2015-2041
Fixes information leak in llc2_timeout_table.
References:
http://www.openwall.com/lists/oss-security/2015/02/20/19
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2041
Upstream fix:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch
/?id=553dd569ff29bc38cebbf9f9dd7c791863ee9113
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
Signed-off-by: Zhenhua Luo <zhenhua.luo at nxp.com>
commit 3518613fa48ac30c20b67731c60acc92dd11abc1
Author: Sona Sarmadi <sona.sarmadi at enea.com>
Date: Tue Dec 15 13:57:31 2015 +0100
net-sctp: CVE-2015-1421
Fix slab corruption from use after free on INIT collisions
Reference:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1421
Upstream fix:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch/
?id=43e39c2f63240f67a67b4060882f67dac1a6f339
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
Signed-off-by: Zhenhua Luo <zhenhua.luo at nxp.com>
commit 210e6d5bd15a7b6dede180e2c4a8f9d5d4484e92
Author: Sona Sarmadi <sona.sarmadi at enea.com>
Date: Tue Dec 15 13:57:30 2015 +0100
ttusb-dec: CVE-2014-8884
Fixes buffer overflow in ioctl.
Reference:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8884
Upstream fix:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/
?id=482c6cb2dfb40838d67b0ba844b4b3d0af0f3d20
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
Signed-off-by: Zhenhua Luo <zhenhua.luo at nxp.com>
commit f297dfce5ef0fe2d1247b8f167beca1389e1a355
Author: Sona Sarmadi <sona.sarmadi at enea.com>
Date: Tue Dec 15 13:57:29 2015 +0100
mm: CVE-2014-312
try_to_unmap_cluster() should lock_page() before mlocking
Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3122
Upstream fix:
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/patch
/?id=400fc13141fe947c38e8485ee9d37066d4533363
Signed-off-by: Sona Sarmadi <sona.sarmadi at enea.com>
Signed-off-by: Zhenhua Luo <zhenhua.luo at nxp.com>
Best Regards,
Zhenhua
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.yoctoproject.org/pipermail/meta-freescale/attachments/20151221/5a28bdc2/attachment.html>
More information about the meta-freescale
mailing list