user-mode-linux (2.6.32-1um-4+48squeeze6) squeeze-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-48squeeze5): * CVE-2014-0196: Jiri Slaby discovered a race condition in the pty layer, which could lead to denial of service or privilege escalation. * CVE-2014-1737 / CVE-2014-1738: Matthew Daley discovered that missing input sanitising in the FDRAWCMD ioctl and an information leak could result in privilege escalation. -- dann frazier Wed, 14 May 2014 11:54:02 -0600 user-mode-linux (2.6.32-1um-4+48squeeze5) squeeze-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-48squeeze5): * cciss: fix info leak in cciss_ioctl32_passthru() (CVE-2013-2147) * cpqarray: fix info leak in ida_locked_ioctl() (CVE-2013-2147) * HID: LG: validate HID output report details (CVE-2013-2893) * HID: zeroplus: validate output report details (CVE-2013-2889) * HID: provide a helper for validating hid reports (required by (CVE-2013-2889 and CVE-2013-2893) * ipv6: handling of temporary addresses (CVE-2013-0343) * ipv6: panic with UDP_CORK sockets (CVE-2013-4162) * dm snapshot: fix data corruption (CVE-2013-4299) * crypto: ansi_cprng - Fix off by one error in non-block size request (CVE-2013-4345) * uio: privilege escalation (CVE-2013-4511) * uml: check length in exitcode_proc_write() (CVE-2013-4512) * KVM: Validate VCPU parameter (CVE-2013-4587) * ipvs: Add boundary check on ioctl arguments (CVE-2013-4588) * aacraid: prevent invalid pointer dereference (CVE-2013-6380) * qeth: avoid buffer overflow in snmp ioctl (CVE-2013-6381) * aacraid: missing capable() check in compat ioctl (CVE-2013-6383) * Various socket leaks (Initially CVE-2013-6405, later split into CVE-2013-7263, CVE-2013-7264 and CVE-2013-7265) * xen-netfront: reduce gso_max_size to account for max TCP header (Closes: #740041) * exec/ptrace: fix get_dumpable() incorrect tests (CVE-2103-2929) * KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) * xfs: underflow bug in xfs_attrlist_by_handle() (CVE-2013-6382) * farsync: fix info leak in ioctl (CVE-2014-1444) * wanxl: fix info leak in ioctl (CVE-2014-1445) * hamradio/yam: fix info leak in ioctl (CVE-2014-1446) * net: sctp: fix sctp_sf_do_5_1D_ce to verify if we/peer is AUTH capable (CVE-2014-0101) * SELinux: Fix kernel BUG on empty security contexts (CVE-2014-1874) * s390: fix kernel crash due to linkage stack instructions (CVE-2014-2039) * netfilter: nf_conntrack_dccp: fix skb_header_pointer API usages (CVE-2014-2523) * rds: prevent dereference of a NULL device (CVE-2013-7339) -- dann frazier Thu, 24 Apr 2014 17:56:13 -0600 user-mode-linux (2.6.32-1um-4+48squeeze4) squeeze-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-48squeeze4): * drivers/cdrom/cdrom.c: use kzalloc() for failing hardware (CVE-2013-2164) * ipv6: ip6_sk_dst_check() must not assume ipv6 dst (CVE-2013-2232) * af_key: fix info leaks in notify messages (CVE-2013-2234) * af_key: initialize satype in key_notify_policy_flush() (CVE-2013-2237) * block: do not pass disk names as format strings (CVE-2013-2851) * b43: stop format string leaking into error msgs (CVE-2013-2852) * sctp: Use correct sideffect command in duplicate cookie handling (CVE-2013-2206) * kernel/signal.c: stop info leak via the tkill and the tgkill syscalls (CVE-2013-2141) * HID: validate HID report id size (CVE-2013-2888) * HID: check for NULL field when setting values * Information leak in openvz quota implementation (CVE-2013-2239) * HID: pantherlord: validate output report details (CVE-2013-2892) -- dann frazier Fri, 27 Sep 2013 16:29:32 -0600 user-mode-linux (2.6.32-1um-4+48squeeze3) squeeze-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-48squeeze1): * USB: io_ti: Fix NULL dereference in chase_port() (CVE-2013-1774) * keys: fix race with concurrent install_user_keyrings() (CVE-2013-1792) * atm: update msg_namelen in vcc_recvmsg() (CVE-2013-3222) * ax25: fix info leak via msg_name in ax25_recvmsg() (CVE-2013-3223) * Bluetooth: fix possible info leak in bt_sock_recvmsg() (CVE-2013-3224) * Bluetooth: RFCOMM - Fix missing msg_namelen update in rfcomm_sock_recvmsg() (CVE-2013-3225) * irda: Fix missing msg_namelen update in irda_recvmsg_dgram() (CVE-2013-3228) * iucv: Fix missing msg_namelen update in iucv_sock_recvmsg() (CVE-2013-3229) * llc: Fix missing msg_namelen update in llc_ui_recvmsg() (CVE-2013-3231) * rose: fix info leak via msg_name in rose_recvmsg() (CVE-2013-3234) * tipc: fix info leaks via msg_name in recv_msg/recv_stream (CVE-2013-3235) * ext4: AIO vs fallocate stale data exposure (CVE-2012-4508) * ext4: avoid hang when mounting non-journal filesystems with orphan list (CVE-2013-2015) * ptrace: Fix ptrace when task is in task_is_stopped() state (regression in 2.6.32-48squeeze1) (Closes: #704437) * [x86] KVM: unmap pages from the iommu when slots are removed (CVE-2012-2121) * inet: add RCU protection to inet->opt (CVE-2012-3552) * [x86] KVM: invalid opcode oops on SET_SREGS with OSXSAVE bit set (CVE-2012-4461) * xfrm_user: fix info leaks in copy_to_user_{policy,state,tmpl}() (CVE-2012-6537) * net: fix info leak in compat dev_ifconf() (CVE-2012-6539) * ipvs: fix info leak in getsockopt(IP_VS_SO_GET_TIMEOUT) (CVE-2012-6540) * llc: fix info leak via getsockname() (CVE-2012-6542) * Bluetooth: Fix information leaks (CVE-2012-6544, CVE-2012-6545) * atm: Fix information leaks (CVE-2012-6546) * udf: avoid info leak on export (CVE-2012-6548) * isofs: avoid info leak on export (CVE-2012-6549) * Bluetooth: Fix incorrect strncpy() in hidp_setup_hid() (CVE-2013-0349) * signal: always clear sa_restorer on execve (CVE-2013-0914) * tmpfs: fix use-after-free of mempolicy object (CVE-2013-1767) * fat: Fix stat->f_namelen * NLS: improve UTF8 -> UTF16 string conversion routine (CVE-2013-1773) * KVM: x86: fix for buffer overflow in handling of MSR_KVM_SYSTEM_TIME (CVE-2013-1796) * KVM: Fix bounds checking in ioapic indirect register reads (CVE-2013-1798) * xfrm_user: return error pointer instead of NULL (CVE-2013-1826) * USB: cdc-wdm: fix buffer overflow (CVE-2013-1860) * dcbnl: Fix netlink info leak (CVE-2013-2634) * intel-iommu: Flush unmaps at domain_exit * fs/compat_ioctl.c: VIDEO_SET_SPU_PALETTE missing error check (CVE-2013-1928) * tg3: fix length overflow in VPD firmware parsing (CVE-2013-1929) -- dann frazier Tue, 14 May 2013 09:27:34 -0600 user-mode-linux (2.6.32-1um-4+48squeeze1) stable-security; urgency=low * Rebuild against linux-source-2.6.32 (2.6.32-48squeeze1): * ptrace: Fix race condition allowing kernel stack corruption (CVE-2013-0871) * xen: pciback: rate limit error message from pciback_enable_msi() (CVE-2013-0231) * [s390] s390/time: fix sched_clock() overflow * Revert "time: Avoid making adjustments if we haven't accumulated anything" (regression in 2.6.32.60) * exec: Fix accounting of execv*() memory after vfork() * r8169: Fix bugs that can cause an interface to hang (possible fix for: #617220, #642025) - r8169: missing barriers. - r8169: fix unsigned int wraparound with TSO - r8169: remove the obsolete and incorrect AMD workaround * [x86] ALSA: hda_intel: Add device/class IDs for Intel Patsburg, Vortex86MX, VMware, Intel Panther Point and other Intel chips * header: fix broken headers for user space * nfsv4: Fix kernel panic when mounting NFSv4 * hpsa: Backport changes up to Linux 3.2.35 * net: fix route cache rebuilds * Add longterm release 2.6.32.60, including: - netxen: support for GbE port settings - futex: Fix uninterruptible loop due to gate_area - time: Improve sanity checking of timekeeping inputs - eCryptfs: Copy up lower inode attrs after setting lower xattr - eCryptfs: Clear ECRYPTFS_NEW_FILE flag during truncate - bonding: 802.3ad - fix agg_device_up - usbnet: increase URB reference count before usb_unlink_urb - usbnet: don't clear urb->dev in tx_complete - xfs: Fix missing xfs_iunlock() on error recovery path in xfs_readlink() - nilfs2: fix NULL pointer dereference in nilfs_load_super_block() - ntp: Fix integer overflow when setting time - ext4: check for zero length extent - Bluetooth: add NULL pointer check in HCI - Bluetooth: hci_ldisc: fix NULL-pointer dereference on tty_close - phonet: Check input from user before allocating - netlink: fix races after skb queueing - net: fix a race in sock_queue_err_skb() - net/ethernet: ks8851_mll fix rx frame buffer overflow - NFSv4: Revalidate uid/gid after open - ext3: Fix error handling on inode bitmap corruption - ext4: fix error handling on inode bitmap corruption - SCSI: fix scsi_wait_scan - fuse: fix stat call on 32 bit platforms - udf: Improve table length check to avoid possible overflow - eCryptfs: Properly check for O_RDONLY flag before doing privileged open - mm: Hold a file reference in madvise_remove (CVE-2012-3511) - SCSI: Avoid dangling pointer in scsi_requeue_command() - usbdevfs: Correct amount of data copied to user in processcompl_compat - ext4: don't let i_reserved_meta_blocks go negative - sctp: Fix list corruption resulting from freeing an association on a list - cipso: don't follow a NULL pointer when setsockopt() is called - net/tun: fix ioctl() based info leaks - futex: Test for pi_mutex on fault in futex_wait_requeue_pi() - futex: Fix bug in WARN_ON for NULL q.pi_state - futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() - mm: mmu_notifier: fix freed page still mapped in secondary MMU - fuse: verify all ioctl retry iov elements - vfs: missed source of ->f_pos races - compat_sys_{read,write}v() - NFSv3: Ensure that do_proc_get_root() reports errors correctly - Remove user-triggerable BUG from mpol_to_str - udf: Fix data corruption for files in ICB - ext3: Fix fdatasync() for files with only i_size changes - dccp: check ccid before dereferencing - [ia64] Add accept4() syscall - tcp: drop SYN+FIN messages - [x86] amd, xen: Avoid NULL pointer paravirt references - [x86] tls: Off by one limit check - sparc64: Eliminate obsolete __handle_softirq() function - udf: fix retun value on error path in udf_load_logicalvol - epoll: introduce POLLFREE to flush ->signalfd_wqh before kfree() - epoll: ep_unregister_pollwait() can use the freed pwq->whead - Don't limit non-nested epoll paths - epoll: limit paths (CVE-2011-1083) - epoll: clear the tfile_check_list on -ELOOP (CVE-2012-3375) - random: Improve random number generation on non-interactive systems + random: Use arch_get_random_int instead of cycle counter if avail + random: Use arch-specific RNG to initialize the entropy store + random: make 'add_interrupt_randomness()' do something sane + usb: feed USB device information to the /dev/random driver + net: feed /dev/random with the MAC address when registering a device + rtc: wm831x: Feed the write counter into device_add_randomness() + mfd: wm831x: Feed the device UUID into device_add_randomness() + dmi: Feed DMI table to /dev/random driver For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.60 and the bug report which this closes: #698022. - [ia64] Revert "pcdp: use early_ioremap/early_iounmap to access pcdp table", which breaks compilation of this driver * [x86] Don't use the EFI reboot method by default * [x86] drm/i915: Attempt to fix watermark setup on 85x (v2) * [x86] isci: Backport changes up to Linux 3.2.35 * [amd64] rtl8192e: Fix transmit on 64-bit architectures * [x86] usbip: Fix loss of isochronous packets that require padding * staging: Fix various log messages that were broken on 64-bit architectures * [x86] xen/x86: don't corrupt %eip when returning from a signal handler * [i386] xen: Fix stack corruption in xen_failsafe_callback for 32bit PVOPS guests. (CVE-2013-0190) * megaraid_sas: Backport changes up to Linux 3.0.56 * kmod: make __request_module() killable (CVE-2012-4398) * net: fix divide by zero in tcp algorithm illinois (CVE-2012-4565) * exec: do not leave bprm->interp on stack (CVE-2012-4530) * exec: use -ELOOP for max recursion depth (CVE-2012-4530) * ext4: Fix max file size and logical block counting of extent format file (CVE-2011-2695) * net: sk_add_backlog() take rmem_alloc into account (CVE-2010-4805) * ipv6: discard overlapping fragment (CVE-2012-4444) * x86/msr: Add capabilities check (CVE-2013-0268) * xen: netback: shutdown the ring if it contains garbage (CVE-2013-0216) * xen: netback: correct netbk_tx_err() to handle wrap around (CVE-2013-0217) * xen: don't assume %ds is usable in xen_iret for 32-bit PVOPS (CVE-2013-0228) * [s390] Enable IUCV special message support. * linux-image: Relax version dependency on linux-base, to simplify testing of bug fixes * [x86] linux-image: Fix minimum version of lilo * [openvz] proc: Fix extreme memory use for /proc/self/mountinfo in container, thanks to Andrew Vagin, Christoph Lechleitner * usb: Fix deadlock in hid_reset when Dell iDRAC is reset * drm: Apply changes deferred from 2.6.32.42+drm33.19: - drm: implement helper functions for scanning lru list - drm/i915: Implement fair lru eviction across both rings. (v2) - drm/i915: Maintain LRU order of inactive objects upon access by CPU (v2) - drm/i915/evict: Ensure we completely cleanup on failure * Add drm changes from 2.6.32.46+drm33.20, 2.6.32.48+drm33.21, 2.6.32.56+drm33.22, 2.6.32.57+drm33.23, 2.6.32.58+drm33.24 including: - drm/radeon/kms: prefer high post dividers in legacy pll algo - drm: mm: fix range restricted allocations (regression in 2.6.32-36) - drm/i915: no lvds quirk for AOpen MP45 * [armel/kirkwood] ahci: Add JMicron 362 device IDs * tcp: Don't change unlocked socket state in tcp_v4_err(). * locks: fix checking of fcntl_setlease argument * sfc: Fix maximum number of TSO segments and minimum TX queue size (CVE-2012-3412) * ath5k: initialize default noise floor * ath5k: use noise calibration from madwifi hal * sky2: Add 'legacy_pme' option for PCI legacy power management (works around regression introduced in 2.6.32-22) * Avoid leap second deadlock and early hrtimer/futex expiration issue * net: sock: validate data_len before allocating skb in sock_alloc_send_pskb() (CVE-2012-2136) * dl2k: Clean up rio_ioctl, add missing CAP_NET_ADMIN checks (CVE-2012-2313) * hfsplus: Fix potential buffer overflows (CVE-2012-2319) * hugetlb: fix resv_map leak in error path (CVE-2012-2390) * mm: fix vma_resv_map() NULL pointer (CVE-2012-2390) * cred: copy_process() should clear child->replacement_session_keyring (CVE-2012-2745) * udf: Fix buffer overflow when parsing sparing table (CVE-2012-3400) * rds: set correct msg_namelen (CVE-2012-3430) -- dann frazier Mon, 25 Feb 2013 17:04:57 -0700 user-mode-linux (2.6.32-1um-4+45) stable-security; urgency=low * Rebuild against linux-source-2.6.32 (2.6.32-45): * Ignore arch_pick_mmap_layout ABI change on s390 * [x86] mm: Fix pgd_lock deadlock * [s390] vdso: use ntp adjusted clock multiplier * Revert "Work around unhappy compat problem on x86-64", included in stable update 2.6.32.58, due to userspace beakage. * CVE-2012-0879: - block: Fix io_context leak after clone with CLONE_IO - block: Fix io_context leak after failure of clone with CLONE_IO * KVM: Ensure all vcpus are consistent with in-kernel irqchip settings (CVE-2012-1601) * hugepages: fix use after free bug in "quota" handling (CVE-2012-2133) * fcaps: clear the same personality flags as suid when fcaps are used (CVE-2012-2123) * jbd2: clear BH_Delay & BH_Unwritten in journal_unmap_buffer (CVE-2011-4086) -- dann frazier Wed, 09 May 2012 16:43:58 -0600 user-mode-linux (2.6.32-1um-4+41squeeze2) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-41squeeze2): * ext4: fix undefined behavior in ext4_fill_flex_info() (CVE-2009-4307) * ecryptfs: Add mount option to check uid of device being mounted = expect uid (CVE-2011-1833) * KVM: Remove ability to assign devices without IOMMU support * KVM: Check permissions before permitting device assignment (CVE-2011-4347) * Fix CVE-2012-0045, with backport work from Ben Hutchings: - KVM: extend "struct x86_emulate_ops" with "get_cpuid" - KVM: syscall instruction induced guest panic * V4L/DVB: v4l2-ioctl: integer overflow in video_usercopy() * drm: Fix authentication kernel crash * relay: prevent integer overflow in relay_open() * Further refine the fix for CVE-2011-4127: - sd_compat_ioctl: Replace ENOTTY error with ENOIOCTLCMD - kernel.h: fix wrong usage of __ratelimit() - printk_ratelimited(): fix uninitialized spinlock * cifs: fix dentry refcount leak when opening a FIFO on lookup (CVE-2012-1090) * regset: Prevent null pointer reference on readonly regsets (CVE-2012-1097) * eCryptfs: Make truncate path killable * eCryptfs: Infinite loop due to overflow in ecryptfs_write() * cdrom: use copy_to_user() without the underscores -- dann frazier Mon, 26 Mar 2012 16:16:04 -0600 user-mode-linux (2.6.32-1um-4+41) stable; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-41): * Add longterm releases 2.6.32.47 and 2.6.32.48, including: - atm: br2684: Fix oops due to skb->dev being NULL - md/linear: avoid corrupting structure while waiting for rcu_free to complete. - xen/smp: Warn user why they keel over - nosmp or noapic and what to use instead. (Closes: #637308) - md: Fix handling for devices from 2TB to 4TB in 0.90 metadata. - net/9p: fix client code to fail more gracefully on protocol error - fs/9p: Fid is not valid after a failed clunk. - TPM: Call tpm_transmit with correct size (CVE-2011-1161) - TPM: Zero buffer after copying to userspace (CVE-2011-1162) - libiscsi_tcp: fix LLD data allocation - cfg80211: Fix validation of AKM suites - USB: pid_ns: ensure pid is not freed during kill_pid_info_as_uid - kobj_uevent: Ignore if some listeners cannot handle message (Closes: #641661) - nfsd4: ignore WANT bits in open downgrade - [s390] KVM: check cpu_id prior to using it - cfq: merge cooperating cfq_queues - [x86] KVM: Reset tsc_timestamp on TSC writes (fixes guest performance regression introduced in 2.6.32-35) - ext4: fix BUG_ON() in ext4_ext_insert_extent() - ext2,ext3,ext4: don't inherit APPEND_FL or IMMUTABLE_FL for new inodes For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.47 http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.48 and the bug report which this closes: #647624. * tg3: Fix I/O failures after chip reset (Closes: #645308; regression in 2.6.32-36) * Add longterm release 2.6.32.49, including: - SCSI: st: fix race in st_scsi_execute_end - NFS/sunrpc: don't use a credential with extra groups. - netlink: validate NLA_MSECS length - hfs: add sanity check for file name length (CVE-2011-4330) - md/raid5: abort any pending parity operations when array fails. - mm: avoid null pointer access in vm_struct via /proc/vmallocinfo - ipv6: udp: fix the wrong headroom check (CVE-2011-4326) - USB: Fix Corruption issue in USB ftdi driver ftdi_sio.c For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.49 and the bug report which this closes: #650160. * ipv6: Allow inet6_dump_addr() to handle more than 64 addresses (Closes: #651255) * Add longterm release 2.6.32.50, including: - PCI hotplug: shpchp: don't blindly claim non-AMD 0x7450 device IDs (see #638863) - sched, x86: Avoid unnecessary overflow in sched_clock - [x86] mpparse: Account for bus types other than ISA and PCI (Closes: #586494) For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.50 and the bug report which this closes: #651367. * [vserver] Update patch to 2.6.32.48-vs2.3.0.36.29.8 - nfs: Fix client uid/gid caching (Closes: #633526) * [x86] Add isci driver from Linux 3.1 (Closes: #652857) - libsas: fix definition of wideport, include local sas address - [x86] Introduce pci_map_biosrom() * Add longterm release 2.6.32.51, including: - percpu: fix chunk range calculation - xfrm: Fix key lengths for rfc3686(ctr(aes)) (Closes: #650652) - jbd/jbd2: validate sb->s_first in journal_get_superblock() (CVE-2011-4132) - Make taskstats require root access (CVE-2011-2494) - hfs: fix hfs_find_init() sb->ext_tree NULL ptr oops (CVE-2011-2203) - oprofile, x86: Fix nmi-unsafe callgraph support - ext4: avoid hangs in ext4_da_should_update_i_disksize() * xen: backport upstream (xen.git#xen/stable-2.6.32.y) fixes to event handling: - multiple fixes to PIRQ event channel handling (Closes: #638172) - setup IRQ before binding VIRQ to it. - correctly setup event channel mask for secondary CPUs on restore. - use locked set/clear bit when manipulating event channel masks. - ensure event channels are handled in a fair/round-robin order preventing lower numbered event channels from starving higher. * xen: blkback: don't fail empty barrier requests (Closes: #637234) * ipv6: make fragment identifications less predictable (CVE-2011-2699) - fix NULL dereference in udp6_ufo_fragment (see #643817) * Add longterm release 2.6.32.52: - Revert "clockevents: Set noop handler in clockevents_exchange_device()", included in stable update 2.6.32.50 (Closes: #653398) * Add longterm release 2.6.32.53, including: - cfq-iosched: fix cfq_cic_link() race confition For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/ChangeLog-2.6.32.53 and the bug report which this closes: #655049. -- dann frazier Mon, 16 Jan 2012 15:10:25 -0700 user-mode-linux (2.6.32-1um-4+39squeeze1) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-39squeeze1): * Revert "ipv6: make fragment identifications less predictable" (Closes: #643817). This reopens CVE-2011-2699. * xen: Revert "xen: Use IRQF_FORCE_RESUME". Fixes live migration regression in 2.6.32.42. (Closes: #644604) * Really fix bugs in IPv6 forwarding with GRO/GSO (Closes: #630730): - e1000e,igb,igbvf,ixgbe: Fix IPv6 GSO type checks - ipv6: Add GSO support on forwarding path * [powerpc] vserver: Wire up syscall (Closes: #646132) * Restrict ioctl forwarding on partitions and logical volumes (CVE-2011-4127) * xfs: Fix possible memory corruption in xfs_readlink (CVE-2011-4077) * KEYS: Fix a NULL pointer deref in the user-defined key type (CVE-2011-4110) * [x86] KVM: Prevent starting PIT timers in the absence of irqchip support (CVE-2011-4622) * rose: Add length checks to CALL_REQUEST parsing (CVE-2011-4914) -- dann frazier Mon, 09 Jan 2012 21:17:41 +0100 user-mode-linux (2.6.32-1um-4+37) stable; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-37): * pm: Fix definition of SET_SYSTEM_SLEEP_PM_OPS used in backported drivers (fixes FTBFS on ia64) * splice: Fix write position in output file (Closes: #641419) * PCI: Add definition of pci_pcie_cap(), used in backported e1000e (fixes FTBFS on armel, mips, mipsel, sparc) * [openvz] cpt: Allow ext4 mounts (Closes: #642380) * Add drm change from 2.6.32.41+drm33.18: - drm/radeon/kms: fix bad shift in atom iio table parser * [opvenz] ptrace: Don't allow to trace a process without memory map. * Add drm change from 2.6.32.42+drm33.19, including: - drm/i915: Add a no lvds quirk for the Asus EeeBox PC EB1007 - drm/radeon/kms: fix for radeon on systems >4GB without hardware iommu * Add longterm release 2.6.32.43, including: - ksm: fix NULL pointer dereference in scan_get_next_rmap_item() (CVE-2011-2183) - TTY: ldisc, do not close until there are readers - uvcvideo: Remove buffers from the queues when freeing - inet_diag: fix inet_diag_bc_audit() (CVE-2011-2213) - net: filter: Use WARN_RATELIMIT - af_packet: prevent information leak - ipv6/udp: Use the correct variable to determine non-blocking condition - mm: prevent concurrent unmap_mapping_range() on the same inode For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.43 and the bug report which this closes: #637848. * Add longterm release 2.6.32.42, including: - ftrace: Only update the function code on write to filter files - kmemleak: Do not return a pointer to an object that kmemleak did not get - ext3: Fix fs corruption when make_indexed_dir() fails - jbd: fix fsync() tid wraparound bug - PCI: allow matching of prefetchable resources to non-prefetchable windows (Closes: #637659) - loop: handle on-demand devices correctly - xhci: Fix full speed bInterval encoding; fix interval calculation for FS isoc endpoints (regressions in 2.6.32-34) - OHCI: fix regression caused by nVidia shutdown workaround (regression in 2.6.32-31) - brd: handle on-demand devices correctly - xen mmu: fix a race window causing leave_mm BUG() - SCSI: Fix oops caused by queue refcounting failure - fat: Fix corrupt inode flags when remove ATTR_SYS flag - pata_cm64x: fix boot crash on parisc (Closes: #622745, #622997) - Revert "iwlagn: Support new 5000 microcode." (Closes: #632778) For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.42 and the bug report which this closes: #631465. * [vserver] Update patch to 2.6.32.41-vs2.3.0.36.29.7 - Apply sched changes deferred from 2.6.32.29 * e1000e: Backport changes up to Linux 2.6.38 (Closes: #627700) - Add support for i82567V-4 and i82579 - Fix support for i82577, i82578 and i82583 * e1000e: Fix selection of alternate MAC address on device id 0x1060 (regression in 2.6.34) * igb,igbvf: Backport changes up to Linux 3.0.4 (Closes: #627702) - Add support for i82576-ET2, i82580, DH89xxCC, i340 and i350 * r8169: Backport changes up to Linux 3.0.2 (Closes: #627704) - Fix support for RTL8102E and RTL8168DP - Add support for RTL8105E, RTL8168E and another variant of RTL8168DP - Add support for D-Link DGE-530T rev C1 * tg3,broadcom: Backport changes up to Linux 2.6.38 (Closes: #627705) - Add support for BCM5717, BCM5719, BCM57765 - Add support for BCM50610M and BCM5241 PHYs - Fix support for BCM5755 * Remove net device features from bug reports (Closes: #638956) * Revert "net/ipv4: Check for mistakenly passed in non-IPv4 address" included in 2.6.32.43, which might break some applications * Add longterm release 2.6.32.44, including: - NFSv4.1: update nfs4_fattr_bitmap_maxsz - hwmon: (max1111) Fix race condition causing NULL pointer exception - bridge: send proper message_age in config BPDU - USB: OHCI: fix another regression for NVIDIA controllers (Closes: #620848) - ext3: Fix oops in ext3_try_to_allocate_with_rsv() - svcrpc: fix list-corrupting race on nfsd shutdown - alpha: fix several security issues (CVE-2011-2208, CVE-2011-2209, CVE-2011-2210, CVE-2011-2211) - ALSA: sound/core/pcm_compat.c: adjust array index - atm: [br2684] allow routed mode operation again For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.44 and the bug report which this closes: #639425. * Add longterm release 2.6.32.45, including: - ALSA: timer - Fix Oops at closing slave timer For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.45 and the bug report which this closes: #639426. * sched: Work around sched_group::cpu_power == 0 (Ameliorates: #636797) * [x86] Revert "x86, hotplug: Use mwait to offline a processor, fix the legacy case" (Closes: #622259) * Fix bugs in IPv6 forwarding with GRO/GSO (Closes: #630730): - e1000e,igb,igbvf,ixgbe: Fix IPv6 GSO type checks - ipv6: Add GSO support on forwarding path * devpts: correctly check d_alloc_name() return code (Closes: #640650) * ipv6: make fragment identifications less predictable (CVE-2011-2699) * Add longterm release 2.6.32.46, including: - atm: br2864: sent packets truncated in VC routed mode (Closes: #638656) - hwmon: (ibmaem) add missing kfree - ALSA: snd-usb-caiaq: Correct offset fields of outbound iso_frame_desc - ALSA: snd_usb_caiaq: track submitted output urbs - futex: Fix regression with read only mappings - x86-32, vdso: On system call restart after SYSENTER, use int $0x80 - fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message For the complete list of changes, see: http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.46 and the bug report which this closes: #641232. * drm/ttm: fix ttm_bo_add_ttm(user) failure path * 3c503: fix broken IRQ autoprobing (Closes: #566522) -- dann frazier Thu, 29 Sep 2011 20:23:36 -0600 user-mode-linux (2.6.32-1um-4+35squeeze2) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-35squeeze2), whose changelog can be viewed at: http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.32-35squeeze2/changelog -- dann frazier Sat, 10 Sep 2011 13:14:18 -0600 user-mode-linux (2.6.32-1um-4+35squeeze1) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-35squeeze1), whose changelog can be viewed at: http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.32-35squeeze1/changelog -- dann frazier Thu, 08 Sep 2011 10:26:52 -0600 user-mode-linux (2.6.32-1um-4+34squeeze1) stable-security; urgency=high * Rebuild against linux-source-2.6.32 (2.6.32-34squeeze1), whose changelog can be viewed at: http://packages.debian.org/changelogs/pool/main/l/linux-2.6/linux-2.6_2.6.32-34squeeze1/changelog -- dann frazier Mon, 23 May 2011 13:50:50 -0600 user-mode-linux (2.6.32-1um-4) unstable; urgency=high * Update kernel config to the latest available for squeeze -- Mattia Dongili Thu, 27 Jan 2011 07:30:00 +0900 user-mode-linux (2.6.32-1um-3) unstable; urgency=low * Sigh, the new 2.6.32 upload includes the IF_NOTIFY_RESUME patch included in the previous version so u-m-l failed to build again :( -- Mattia Dongili Fri, 08 Jan 2010 21:30:39 +0900 user-mode-linux (2.6.32-1um-2) unstable; urgency=low * Fix build failure due to SUBARCH being passed with a wrong value -- Mattia Dongili Fri, 08 Jan 2010 07:32:04 +0900 user-mode-linux (2.6.32-1um-1) unstable; urgency=low * New upstream release (Closes: #560673). [ Mattia Dongili (4) ] Update dependencies and prepare 2.6.32 add a patch to fix IF_NOTIFY_RESUME build error Update kernel configurations Allow setting the target architecture ont the command line Make lintian really slightly happier Override -rpath lintian tag, this is required for uml to work -- Mattia Dongili Thu, 07 Jan 2010 21:11:42 +0900 user-mode-linux (2.6.30-1um-1) unstable; urgency=low * New upstream release. * Remove 07_vde_user_build_fix which has been merged upstream. * Add 04_remove_irqf_disabled.patch to bring get a working network inside the guest. * Removed possibly MIA uploaders (Stefano Melchior) (Closes: #514667). * Include more config options (i.e.: IP_VS) (Closes: #509434). * Stop suggesting linux-patch-skas, not in the repository anymore (Closes: #495651). * Suggest: vde2 for the vde UML network driver. * Fix strrchr symbol clash on forced static builds (Closes: #494995). -- Mattia Dongili Sun, 05 Jul 2009 11:07:28 +0900 user-mode-linux (2.6.26-1um-2) unstable; urgency=low * remove debian/patches/08_fix_ptrace_crash.patch (in 2.6.26.1) and rebuild against the current stable revision released from the Debian kernel team * cleanup unused patches -- Mattia Dongili Sat, 09 Aug 2008 14:29:08 +0900 user-mode-linux (2.6.26-1um-1) unstable; urgency=medium * New upstream release. * added two fixes from uptream: debian/patches/07_vde_user_build_fix.patch debian/patches/08_fix_ptrace_crash.patch (in 2.6.26.1) -- Mattia Dongili Sat, 02 Aug 2008 12:17:12 +0900 user-mode-linux (2.6.25-1um-2) unstable; urgency=medium * Fix build error in amd64 (Closes: #491921) * slightly bump urgency to try to be in testing quicker to allow a new upload uml 2.6.26 when the kernel team uploads linux-source-2.6.26 -- Mattia Dongili Thu, 24 Jul 2008 07:18:01 +0900 user-mode-linux (2.6.25-1um-1) unstable; urgency=low * New upstream release. * now obviously depends on linux-source-2.6.25 (Closes: #488830) * added a patch successfully build with gcc-4.3 (Closes: #467475) * added a patch to fix UML segfaulting on negative semaphore values -- Mattia Dongili Sat, 19 Jul 2008 19:58:26 +0900 user-mode-linux (2.6.24-1um-1) unstable; urgency=low * New upstream release. [Mattia Dongili]: * add libvdeplug2 dependency -- Mattia Dongili Sun, 03 Feb 2008 16:08:54 +0900 user-mode-linux (2.6.23-1um-1) unstable; urgency=low * New upstream release (Closes: #456836). [Mattia Dongili]: * set NETFILTER_XT_TARGET_CONNMARK (Closes: #440083) * bump Standards-Version to 3.7.3 * update i386 and amd64 configurations * rework debian/rules because of some bugs detected when building with -j6 * remove 04_restructure-do_aio.patch which has been included upstream -- Mattia Dongili Mon, 24 Dec 2007 17:34:02 +0900 user-mode-linux (2.6.22-1um-1) unstable; urgency=low * New upstream release (Closes: #436388). [Mattia Dongili]: * remove inactive people from uploaders * remove debugging options from .config * remove umldefconfig as it's easy to get from the kernel sources [Upstream patch]: * Restructure do_aio (Closes: #438568) -- Mattia Dongili Sun, 19 Aug 2007 11:04:10 +0900 user-mode-linux (2.6.21-1um-1) unstable; urgency=low * New upstream release. * add amd64 (Closes: #384881) -- Mattia Dongili Sun, 27 May 2007 13:22:18 +0900 user-mode-linux (2.6.20-1um-1) unstable; urgency=low * New upstream release. * Build against 2.6.20 which _is_ in the archive (Closes: #422398) * Included more crypto algorithms [Stefano Melchior] (Closes: #410597) * Configured more and more options (Closes: #416517) (Closes: #422145) * Removed 04_include_PAGESHIFT_definition.patch, included upstream -- Mattia Dongili Mon, 07 May 2007 12:20:55 +0900 user-mode-linux (2.6.18-1um-2) unstable; urgency=low * removed patches/04_no-syscall, included in the 2.6.18 stable branch. * added patches/04_include_PAGESHIFT_definition to fix build failure with recent glibc. -- Mattia Dongili Thu, 09 Nov 2006 19:08:36 +0100 user-mode-linux (2.6.18-1um-1) unstable; urgency=low * New upstream release. * add patches/04_no-syscall from upstream to fix build failure. * 'mv debian/NEWS debian/NEWS.Debian' so that it will be catched by apt-listchanges. -- Mattia Dongili Tue, 03 Oct 2006 20:46:05 +0200 user-mode-linux (2.6.17-1um-2) unstable; urgency=low * Include IP_VS support. (Closes: #382295) * Update config.i386 against current linux-source package. -- Mattia Dongili Fri, 11 Aug 2006 13:15:21 +0200 user-mode-linux (2.6.17-1um-1) unstable; urgency=low * New upstream release: - includes TLS support (Closes: #312562) (Closes: #265486) - merged 01_uml_net patch (hence dropped from the package) * Build with HOST_2G_2G as the kernel team doesn't seem to care about setting a decent PAGE_OFFSET (hopefully closes: #366915). -- Mattia Dongili Sat, 24 Jun 2006 11:57:45 +0200 user-mode-linux (2.6.16-2um-1) unstable; urgency=low [Mattia Dongili]: * add 03_uml_switch patch (Closes: #367132) * use the alternatives system to avoid conflicting with kernel-package self-build UML kernels. * don't include the debian directory in orig.tar.gz * bump Standards-Version to the latest (3.7.2) * enable dm-* and cyphers modules in config. -- Mattia Dongili Wed, 31 May 2006 18:06:30 +0200 user-mode-linux (2.6.16-1um-2) unstable; urgency=low [Mattia Dongili]: * set Uploaders and Maintainer to reflect the team work. * add CONFIG_INITRD=y to allow bootstrapping install media. * set CONFIG_ISO9660_FS=y to allow mounting iso images when bootstrapping from install media. * remove useless lintian.overrides file. -- Mattia Dongili Sat, 29 Apr 2006 21:23:58 +0200 user-mode-linux (2.6.16-1um-1) unstable; urgency=low * New upstream release (definitely Closes: #264772). [Mattia Dongili]: * added myself to the uploaders * fixed dependency on module-init-tools for kernel 2.6 * using dpatch to apply patches, current patches are: - 01_uml_net - 02_x-terminal-emulator * updated config for 2.6.16 * installing uml defconfig as a reference * converted lots of stuff to modular build * updated manpage for the linux executable -- Mattia Dongili Sat, 01 Apr 2006 15:58:36 +0200 user-mode-linux (2.6.15-1um-1) unstable; urgency=low * New upstream release -- Stefano Melchior Fri, 17 Feb 2006 20:40:54 +0100 user-mode-linux (2.6.14-1um-1) unstable; urgency=low * New upstream release -- Stefano Melchior Sat, 14 Jan 2006 20:30:41 +0100 user-mode-linux (2.6.12-1um-1) unstable; urgency=low * New upstream release (Closes: #271246, Closes: #271246, Closes: #276993, Closes: #170878). * 2.4 and 2.6 support available (Closes: #264722). * uml_net support fixed bug (Closes: #140790). -- Stefano Melchior Wed, 26 Oct 2005 14:58:47 +0200 user-mode-linux (2.4.26-3um-1) unstable; urgency=low * New upstream release - mara-13-hostfs_access.diff is now obsolete - Includes updated config for current Debian kernel source (Closes: #268286) -- Matt Zimmerman Wed, 8 Sep 2004 16:49:52 -0700 user-mode-linux (2.4.26-2um-1) unstable; urgency=low * New upstream release - Obsoletes (at least mostly) mara-12-hostfs.diff, remove - Obsoletes hostfs-perms.diff, remove - Hostfs is back to a basic working state (Closes: #221196), but still has serious bugs - Should fix the wait_for_stop panic (Closes: #256873) * Enable CONFIG_KMOD (Closes: #231057) * Enable packet classifiers (Closes: #235037) -- Matt Zimmerman Fri, 16 Jul 2004 17:15:39 -0700 user-mode-linux (2.4.26-1um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sat, 5 Jun 2004 11:25:39 -0700 user-mode-linux (2.4.25-1um-1) unstable; urgency=low * New upstream release * Hostfs is broken, include some patches to fix it: - mara-12-hostfs.diff, mara-13-hostfs_access.diff: patches from Henrik Nordstrom - hostfs-perms.diff: patch from me to fix one more case * Patch needed to fix tt mode on 2.6 hosts is still not merged; include it (Closes: #220526) -- Matt Zimmerman Fri, 4 Jun 2004 18:18:01 -0700 user-mode-linux (2.4.24-1um-2) unstable; urgency=high * Build-Depends: kernel-source-2.4.24 (>= 2.4.24-3) to get the fix for CAN-2004-0077 (mremap) -- Matt Zimmerman Mon, 1 Mar 2004 18:06:08 -0800 user-mode-linux (2.4.24-1um-1) unstable; urgency=low * New upstream release - Fixes timestamps on /proc (Closes: #224215) -- Matt Zimmerman Mon, 16 Feb 2004 22:52:45 -0800 user-mode-linux (2.4.23-2um-1) unstable; urgency=low * New upstream release - Fixes RTC problems with processors faster than 2GHz (Closes: #226744) -- Matt Zimmerman Mon, 19 Jan 2004 09:40:43 -0800 user-mode-linux (2.4.23-1um-3) unstable; urgency=low * Improve the README.Debian suggestions regarding kernel modules * Update file:// URLs in man page to include the html/ subdir in user-mode-linux-doc (Closes: #224956) * Include upstream changelog (Closes: #224488) -- Matt Zimmerman Tue, 13 Jan 2004 09:53:43 -0800 user-mode-linux (2.4.23-1um-2) unstable; urgency=low * Fix reversed test for DH_BUILD_OPTIONS=nostrip which caused (enormous) unstripped modules to be included in the .deb -- Matt Zimmerman Tue, 30 Dec 2003 10:11:27 -0800 user-mode-linux (2.4.23-1um-1) unstable; urgency=low * New upstream release * Build-depend on kernel-source-2.4.23, kernel-patch-uml >= 20031230-1 * Add debian/crypto.diff to source the crypto config (moved from kernel-patch-uml) * Remove build-dep on gcc-2.95 -- Matt Zimmerman Tue, 30 Dec 2003 09:06:28 -0800 user-mode-linux (2.4.22-7um-2) unstable; urgency=low * Start building with the default gcc again. This seems to work OK now, and, coincidentally, building with gcc 2.95 seems to break things in subtle ways, apparently related to threads. (Closes: #224431) This may reopen #176485 (broken slirp transport), but with the new uml-utilities uml_switch setup, slirp isn't as interesting, and it's much better to have a working UML * Modules broken due to missing exported symbols; moving on to 2.4.23 rather than patching it -- Matt Zimmerman Tue, 30 Dec 2003 08:59:22 -0800 user-mode-linux (2.4.22-7um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 16 Dec 2003 14:52:03 -0800 user-mode-linux (2.4.22-6um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 16 Dec 2003 13:58:22 -0800 user-mode-linux (2.4.22-5um-1) unstable; urgency=low * New upstream release * Don't strip loadable modules if DEB_BUILD_OPTIONS contains nostrip * Don't rely on the timestamp of arch/um in debian/rules * Change the default path to the uml_switch socket to match what is used by the uml_switch started by uml-utilities. This means that you can now use just "eth0=daemon" and connect to uml_switch. -- Matt Zimmerman Fri, 19 Sep 2003 21:34:28 -0400 user-mode-linux (2.4.22-3um-1) unstable; urgency=low * Support DEB_BUILD_OPTIONS=noopt to build with -O1 rather than -O2 * Update linux(1) for latest daemon transport syntax -- Matt Zimmerman Fri, 12 Sep 2003 09:58:04 -0400 user-mode-linux (2.4.21-1um-1) unstable; urgency=low * New upstream release * No 2.4.22 yet, as there is not yet a kernel-source-2.4.22 * New kernel-patch-uml fixes some bugs: - 2.4.21-based (Closes: #205135) - Exports missing symbols so that modules work (Closes: #208355) -- Matt Zimmerman Thu, 4 Sep 2003 17:08:41 -0400 user-mode-linux (2.4.20-8um-2) unstable; urgency=low * Fix man page to correctly document the daemon transport -- Matt Zimmerman Mon, 1 Sep 2003 14:05:14 -0400 user-mode-linux (2.4.20-8um-1) unstable; urgency=low * New upstream release * Disable SMP support because it breaks the build * Minor debian/rules cleanup -- Matt Zimmerman Mon, 1 Sep 2003 00:44:54 -0400 user-mode-linux (2.4.20-7um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 8 Aug 2003 18:25:16 -0400 user-mode-linux (2.4.20-6um-2) unstable; urgency=low * Build-Depends: modutils (Closes: #198337) * Build-Depends: kernel-patch-uml (= 20030606-2) -- Matt Zimmerman Thu, 24 Jul 2003 09:30:46 -0400 user-mode-linux (2.4.20-6um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 6 Jun 2003 10:11:56 -0400 user-mode-linux (2.4.20-5um-1) unstable; urgency=low * New upstream release * Add reference to linux --help in man page * Remove old info about root-hostfs from man page 'ubd' section, point to 'root' * Clean up debian/rules a bit -- Matt Zimmerman Fri, 23 May 2003 18:25:21 -0400 user-mode-linux (2.4.20-4um-1) unstable; urgency=low * New upstream release - Fixes hostfs permissions bug (Closes: #188320) * Correct file:// URLs in man page (Closes: #190412) * Document new hostfs root syntax in man page (Closes: #190676) -- Matt Zimmerman Fri, 25 Apr 2003 00:26:24 -0400 user-mode-linux (2.4.20-3um-1) unstable; urgency=low * New upstream release * Enable netfilter stuffs (Closes: #187399) -- Matt Zimmerman Fri, 4 Apr 2003 19:27:05 -0500 user-mode-linux (2.4.20-2um-1) unstable; urgency=low * New upstream release * Build with gcc-2.95 (hopefully Closes: #176485) -- Matt Zimmerman Mon, 24 Mar 2003 23:37:59 -0500 user-mode-linux (2.4.20-1um-1) unstable; urgency=low * New upstream release * Change version number slightly to match upstream's scheme * Suggest kernel-patch-skas, now in unstable -- Matt Zimmerman Fri, 28 Feb 2003 14:06:46 -0500 user-mode-linux (2.4.19.50um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 6 Feb 2003 22:55:27 -0500 user-mode-linux (2.4.19.49um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sun, 2 Feb 2003 20:22:22 -0500 user-mode-linux (2.4.19.48um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 28 Jan 2003 00:08:29 -0500 user-mode-linux (2.4.19.46um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 9 Jan 2003 19:46:07 -0500 user-mode-linux (2.4.19.45um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 24 Dec 2002 17:19:14 -0500 user-mode-linux (2.4.19.40um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 19 Dec 2002 20:10:17 -0500 user-mode-linux (2.4.19.38um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sun, 15 Dec 2002 21:41:23 -0500 user-mode-linux (2.4.19.37um-1) unstable; urgency=low * New upstream release * Enable SKAS support (requires host kernel patch in order to work) -- Matt Zimmerman Thu, 12 Dec 2002 09:45:05 -0500 user-mode-linux (2.4.19.33um-1) unstable; urgency=low * New upstream release * Enable NFS root and dependent options * Enable initrd (Closes: #170681) -- Matt Zimmerman Mon, 2 Dec 2002 14:55:01 -0500 user-mode-linux (2.4.19.25um-1) unstable; urgency=low * New upstream release * Remove temporary module work area in 'clean' target * Use xargs --no-run-if-empty to avoid an error if no modules are configured * Compile in loop device support, rather than building as a module, to allow for easier installation testing (Closes: #165958) * Enable NFS (v2 and v3), SMB, NCP, Coda and Intermezzo support (Closes: #166780) -- Matt Zimmerman Sun, 3 Nov 2002 15:38:45 -0500 user-mode-linux (2.4.19.20um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 25 Oct 2002 00:41:16 -0400 user-mode-linux (2.4.19.17um-1) unstable; urgency=low * New upstream release * Temporarily disable pcap transport, since it didn't build correctly * Enable MD and LVM * Enable slirp transport. This may allow for networking with minimal configuration and no root privileges, but is relatively new. * Enable SMP! -- Matt Zimmerman Mon, 21 Oct 2002 21:44:42 -0400 user-mode-linux (2.4.19.12um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Mon, 7 Oct 2002 22:05:55 -0400 user-mode-linux (2.4.19.11um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sun, 6 Oct 2002 22:46:24 -0400 user-mode-linux (2.4.19.9um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 4 Oct 2002 23:49:52 -0400 user-mode-linux (2.4.19.6um-1) unstable; urgency=low * Remove gcc and make from Build-Depends, as they are clearly build-essential. What was I thinking... * Suggest x-terminal-emulator, rater than xterm, since it works now (since 2.4.18.48um-1) -- Matt Zimmerman Sun, 22 Sep 2002 11:44:19 -0400 user-mode-linux (2.4.19.4um-1) unstable; urgency=low * New upstream release * Add note to README.Debian about how kernel modules are handled -- Matt Zimmerman Sat, 14 Sep 2002 12:45:19 -0400 user-mode-linux (2.4.19.2um-2) unstable; urgency=low * Now to take care of some easy bugs... * Add "UML" to description (Closes: #156806) * Enable IPv6 module (Closes: #156465) * Enable netfilter (Closes: #154674) * Enable a bunch of other networking stuff as well, since network testing seems to be a popular UML application -- Matt Zimmerman Thu, 5 Sep 2002 22:44:37 -0400 user-mode-linux (2.4.19.2um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 5 Sep 2002 22:13:34 -0400 user-mode-linux (2.4.18.49um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sat, 3 Aug 2002 12:08:52 -0400 user-mode-linux (2.4.18.48um-1) unstable; urgency=low * New upstream release * Mention DevFS config in README.Debian (Closes: #154276) * This version supports non-xterm terminal emulators, so use x-terminal-emulator by default -- Matt Zimmerman Wed, 31 Jul 2002 00:24:17 -0400 user-mode-linux (2.4.18.41um-1) unstable; urgency=low * New upstream release * Disable the hostaudio driver, since it doesn't build anymore -- Matt Zimmerman Thu, 18 Jul 2002 23:32:54 -0400 user-mode-linux (2.4.18.39um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Mon, 8 Jul 2002 21:32:20 -0400 user-mode-linux (2.4.18.37um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sun, 7 Jul 2002 00:27:08 -0400 user-mode-linux (2.4.18.36um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 5 Jul 2002 17:36:01 -0400 user-mode-linux (2.4.18.35um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sat, 29 Jun 2002 10:34:15 -0400 user-mode-linux (2.4.18.32um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sat, 15 Jun 2002 12:42:09 -0400 user-mode-linux (2.4.18.31um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Wed, 5 Jun 2002 21:22:45 -0400 user-mode-linux (2.4.18.30um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Wed, 29 May 2002 23:18:46 -0400 user-mode-linux (2.4.18.29um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 23 May 2002 19:58:34 -0400 user-mode-linux (2.4.18.28um-1) unstable; urgency=low * New upstream release * Requires uml-utilities >= 20020521 -- Matt Zimmerman Tue, 21 May 2002 20:32:43 -0400 user-mode-linux (2.4.18.26um-1) unstable; urgency=low * New upstream release * Fixed symbol export issue which prevented release of 25um -- Matt Zimmerman Sun, 19 May 2002 12:20:42 -0400 user-mode-linux (2.4.18.25um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Wed, 15 May 2002 19:25:14 -0400 user-mode-linux (2.4.18.24um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Mon, 13 May 2002 23:11:43 -0400 user-mode-linux (2.4.18.23um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 7 May 2002 23:27:44 -0400 user-mode-linux (2.4.18.22um-1) unstable; urgency=low * New upstream release * UML is now self-hosting, meaning that you can now run UML within itself http://www.geocrawler.com/lists/3/SourceForge/709/0/8569643/ -- Matt Zimmerman Sun, 5 May 2002 20:29:59 -0400 user-mode-linux (2.4.18.21um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sun, 28 Apr 2002 23:09:11 -0400 user-mode-linux (2.4.18.20um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Sat, 27 Apr 2002 14:08:16 -0400 user-mode-linux (2.4.18.18um-1) unstable; urgency=low * New upstream release * Remove obsolete note about devfs in README.Debian -- Matt Zimmerman Sun, 21 Apr 2002 23:13:45 -0400 user-mode-linux (2.4.18.17um-1) unstable; urgency=low * New upstream release * Enable initrd support * Add note to README.Debian about devfs and Debian root filesystems -- Matt Zimmerman Sat, 13 Apr 2002 18:13:59 -0400 user-mode-linux (2.4.18.16um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Wed, 10 Apr 2002 23:08:16 -0400 user-mode-linux (2.4.18.15um-1) unstable; urgency=low * New upstream release, lots of bug fixes - Now supports COW on block devices (Closes: #140789) - I think #140791 may be fixed as well, but have no way to test * Requires uml-utilities 20020407 -- Matt Zimmerman Tue, 9 Apr 2002 00:49:31 -0400 user-mode-linux (2.4.18.13um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Tue, 2 Apr 2002 20:39:18 -0500 user-mode-linux (2.4.18.12um-1) unstable; urgency=low * New upstream release - Fixes the console flow control bug which resulted in truncated output -- Matt Zimmerman Thu, 28 Mar 2002 21:39:17 -0500 user-mode-linux (2.4.18.11um-1) unstable; urgency=low * New upstream release. Jeff Dike : - Since I don't yet know how to eliminate the problems people are seeing withthe SIGWINCH setup, I made UML more robust against them. You may see ugly error messages, but they shouldn't kill UML any more. I'd appreciate knowing about any easy ways that anyone finds of getting the ugly error messages to happen. - The crash in the network setup that Matt Zimmerman saw should be gone. - bfs filesystems will now mount now that the ubd hard sector size is 512 bytes. - apt-get now works on hostfs now that hostfs_writepage returns the proper value on success. - John Byrne's thread creation fixes are now in. - I cleaned up various other small items as well. -- Matt Zimmerman Sun, 24 Mar 2002 00:08:00 -0500 user-mode-linux (2.4.18.10um-1) unstable; urgency=low * New upstream release. Jeff Dike : - This patch fixes the winch_interrupt infinite error flood plus some other SIGWINCH bugs. - The ptrace headers were cleaned up so that they match the updated UML porting guide. - Added TIOCMGET to the list of officially unsupported serial line ioctls. This gets rid of the error messages you get when you hook two UMLs together overa serial line consisting of a host pty/tty pair. - I added in some of John Byrne's smaller thread fixes. * Build-depend on exact versions of user-mode-linux and kernel-patch-uml -- Matt Zimmerman Fri, 22 Mar 2002 23:08:54 -0500 user-mode-linux (2.4.18.9um-1) unstable; urgency=low * New upstream release - Now supports SIGWINCH for terminals * Fixes unresolved symbols in loop and isofs * Requires uml-utilities >= 20020320 which is required for port channels -- Matt Zimmerman Thu, 21 Mar 2002 22:15:28 -0500 user-mode-linux (2.4.18.8um-1) unstable; urgency=low * New upstream release * Require uml-utilities >= 20020318 * Temporarily disable the loop block device and isofs due to unresolved symbols -- Matt Zimmerman Tue, 19 Mar 2002 09:14:56 -0500 user-mode-linux (2.4.18.7um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Fri, 15 Mar 2002 21:27:49 -0500 user-mode-linux (2.4.18.6um-1) unstable; urgency=low * New upstream release -- Matt Zimmerman Thu, 14 Mar 2002 19:27:02 -0500 user-mode-linux (2.4.18.4um-3) unstable; urgency=medium * Rebuild with kernel-source-2.4.18 2.4.18-3, which includes the zlib security fix -- Matt Zimmerman Thu, 14 Mar 2002 09:21:50 -0500 user-mode-linux (2.4.18.4um-2) unstable; urgency=low * Don't mount devfs by default, to match the Debian packaged kernels. A base Debian system will not work in UML if devfs is mounted (unless devfs is running), so everyone had to pass devfs=nomount. It's easier to pass devfs=mount if the UML system supports it. -- Matt Zimmerman Wed, 13 Mar 2002 09:15:20 -0500 user-mode-linux (2.4.18.4um-1) unstable; urgency=low * New upstream release * Remove 'build' symlink from kernel module tree (Closes: #138028) -- Matt Zimmerman Tue, 12 Mar 2002 22:37:21 -0500 user-mode-linux (2.4.18.2um-1) unstable; urgency=low * New upstream release, now that kernel-source-2.4.18 is in * Suggests the newly-released rootstrap tool for easy building of UML root filesystems * Enhance the man page, including mentioning the 's' (synchronous) option for ubd devices (Closes: #137375) * Disable CONFIG_FS_NTFS because it results in undefined symbols -- Matt Zimmerman Sat, 9 Mar 2002 15:41:32 -0500 user-mode-linux (2.4.17.14um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Mon, 25 Feb 2002 00:10:05 -0500 user-mode-linux (2.4.17.13um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Fri, 22 Feb 2002 22:59:30 -0500 user-mode-linux (2.4.17.12um-1) unstable; urgency=low * New upstream release. * Do the initial modules installation in a temporary directory, due to some weirdness with depmod walking the filesystem and finding /usr/bin/linux * Install a lintian override for statically linked /usr/bin/linux * Strip debugging symbols from UML modules. This makes the installed package MUCH smaller. * Build in cramfs support, so that it can be used for booting * Enable tmpfs module * Not releasing due to a panic every time klogd is killed when using my test images -- Matt Zimmerman Wed, 20 Feb 2002 23:22:51 -0500 user-mode-linux (2.4.17.11um-1) unstable; urgency=low * New upstream release. * Requires the latest uml-utilities, as the control sockets are now under $HOME instead of /tmp -- Matt Zimmerman Tue, 12 Feb 2002 23:43:03 -0500 user-mode-linux (2.4.17.10um-1) unstable; urgency=low * New upstream release. * Flesh out the man page some, including content from user-mode-linux-doc, and use references to that package instead of the website where appropriate * Note in README.Debian that apt-get build-dep must be run as root * Now searches PATH to find kernel when rebooting (Closes: #130875) * Build some additional modules which might be useful * Compile in ext3 and reiserfs support so that they can be used for the root filesystem * Include modules unpacked instead of in a tarball, so that they can more easily be accessed from UML via hostfs -- Matt Zimmerman Thu, 31 Jan 2002 00:10:22 -0500 user-mode-linux (2.4.17.9um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Fri, 25 Jan 2002 21:47:16 -0500 user-mode-linux (2.4.17.8um-1) unstable; urgency=low * New upstream release. * Suggests: user-mode-linux-doc (which is in incoming) -- Matt Zimmerman Tue, 22 Jan 2002 17:32:59 -0500 user-mode-linux (2.4.17.7um-1) unstable; urgency=low * New upstream release. * Add Suggests: xterm (Closes: #129776) -- Matt Zimmerman Tue, 22 Jan 2002 02:14:06 -0500 user-mode-linux (2.4.17.5um-1) unstable; urgency=medium * New upstream release. * Compile in hostfs support (Closes: #128506) -- Matt Zimmerman Mon, 14 Jan 2002 19:03:26 -0500 user-mode-linux (2.4.17.4um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Fri, 4 Jan 2002 20:20:58 -0500 user-mode-linux (2.4.17.3um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Wed, 2 Jan 2002 01:00:06 -0500 user-mode-linux (2.4.17.2um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Sun, 30 Dec 2001 22:19:52 -0500 user-mode-linux (2.4.17.1um-1) unstable; urgency=low * New upstream release. * Modified versioning scheme to match upstream's apparent intent * Depend on newer uml-utilities, as the path to uml_net changed * Enhance README.Debian to explain how to build with a different kernel version -- Matt Zimmerman Sat, 29 Dec 2001 19:00:45 -0500 user-mode-linux (0.53-2.4.16.2um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Mon, 10 Dec 2001 01:25:30 -0500 user-mode-linux (0.53-2.4.16.1um-1) unstable; urgency=low * New upstream release. -- Matt Zimmerman Sun, 9 Dec 2001 22:47:23 -0500 user-mode-linux (0.51-2.4.14-6-1) unstable; urgency=low * Initial Release. (Closes: #82484) -- Matt Zimmerman Thu, 6 Dec 2001 13:16:53 -0500