[kernel/f19] Linux v3.14.5
Justin M. Forbes
jforbes at fedoraproject.org
Mon Jun 2 13:15:57 UTC 2014
commit ece962adcd88d23cc7b3108135f6608af6b05ce0
Author: Justin M. Forbes <jforbes at redhat.com>
Date: Mon Jun 2 08:15:17 2014 -0500
Linux v3.14.5
...Add-NO_INIT_REPORTS-quirk-for-Synaptics-T.patch | 44 --------
...ftdi_sio-add-id-for-Brainboxes-serial-car.patch | 112 --------------------
...ent-nla-extensions-to-peek-beyond-the-end.patch | 98 -----------------
kernel.spec | 33 +-----
modsign-uefi.patch | 6 +-
...capable-check-in-sock_diag_put_filterinfo.patch | 72 -------------
...ith-correct-mac_len-in-skb_network_protoc.patch | 48 ---------
...rent-group_info-should-be-put-after-using.patch | 64 -----------
sources | 2 +-
9 files changed, 8 insertions(+), 471 deletions(-)
---
diff --git a/kernel.spec b/kernel.spec
index 89052f1..200eb62 100644
--- a/kernel.spec
+++ b/kernel.spec
@@ -74,7 +74,7 @@ Summary: The Linux kernel
%if 0%{?released_kernel}
# Do we have a -stable update to apply?
-%define stable_update 4
+%define stable_update 5
# Is it a -stable RC?
%define stable_rc 0
# Set rpm version accordingly
@@ -715,15 +715,9 @@ Patch25047: drm-radeon-Disable-writeback-by-default-on-ppc.patch
#rhbz 1051748
Patch25035: Bluetooth-allocate-static-minor-for-vhci.patch
-#CVE-2014-2851 rhbz 1086730 1087420
-Patch25059: net-ipv4-current-group_info-should-be-put-after-using.patch
-
#rhbz 1074710
Patch25061: mm-page_alloc.c-change-mm-debug-routines-back-to-EXP.patch
-#rhbz 1071914
-Patch25063: USB-serial-ftdi_sio-add-id-for-Brainboxes-serial-car.patch
-
#rhbz 1048314
Patch25062: 0001-HID-rmi-introduce-RMI-driver-for-Synaptics-touchpads.patch
@@ -748,14 +742,10 @@ Patch25070: 0001-acpi-video-Add-4-new-models-to-the-use_native_backli.patch
#rhbz 1060327
Patch25071: drm-fix-qxl-mode-flags-backport.patch
-#rhbz 1093931
-Patch25073: net-Start-with-correct-mac_len-in-skb_network_protoc.patch
-
#rhbz 1089545
Patch25074: 0001-acpi-video-Add-use_native_backlight-quirks-for-Think.patch
#misc input fixes
-Patch25077: 0001-hid-quirks-Add-NO_INIT_REPORTS-quirk-for-Synaptics-T.patch
Patch25078: 0002-elantech-Fix-elantech-on-Gigabyte-U2442.patch
#rhbz 861573
@@ -765,7 +755,6 @@ Patch25079: 0003-samsung-laptop-Add-broken-acpi-video-quirk-for-NC210.patch
Patch25080: 0004-acpi-blacklist-Add-dmi_enable_osi_linux-quirk-for-As.patch
#CVE-2014-0181 rhbz 1094270 1094265
-Patch25081: net-Fix-ns_capable-check-in-sock_diag_put_filterinfo.patch
Patch25082: 1-5-netlink-Rename-netlink_capable-netlink_allowed.patch
Patch25083: 2-5-net-Move-the-permission-check-in-sock_diag_put_filterinfo-to-packet_diag_dump.patch
Patch25084: 3-5-net-Add-variants-of-capable-for-use-on-on-sockets.patch
@@ -775,9 +764,6 @@ Patch25086: 5-5-net-Use-netlink_ns_capable-to-verify-the-permisions-of-netlink-m
#rhbz 1082266
Patch25087: jme-fix-dma-unmap-error.patch
-# CVE-2014-3144 CVE-2014-3145 rhbz 1096775, 1096784
-Patch25090: filter-prevent-nla-extensions-to-peek-beyond-the-end.patch
-
#rhbz 1096436
Patch25091: 0001-synaptics-Add-min-max-quirk-for-the-ThinkPad-W540.patch
@@ -1454,15 +1440,9 @@ ApplyPatch 0001-HID-rmi-do-not-handle-touchscreens-through-hid-rmi.patch
#rhbz 1090161
ApplyPatch HID-rmi-do-not-fetch-more-than-16-bytes-in-a-query.patch
-#CVE-2014-2851 rhbz 1086730 1087420
-ApplyPatch net-ipv4-current-group_info-should-be-put-after-using.patch
-
#rhbz 1074710
ApplyPatch mm-page_alloc.c-change-mm-debug-routines-back-to-EXP.patch
-#rhbz 1071914
-ApplyPatch USB-serial-ftdi_sio-add-id-for-Brainboxes-serial-car.patch
-
#rhbz 1013466
ApplyPatch selinux-put-the-mmap-DAC-controls-before-the-MAC-controls.patch
@@ -1478,14 +1458,10 @@ ApplyPatch 0001-acpi-video-Add-4-new-models-to-the-use_native_backli.patch
#rhbz 1060327
ApplyPatch drm-fix-qxl-mode-flags-backport.patch
-#rhbz 1093931
-ApplyPatch net-Start-with-correct-mac_len-in-skb_network_protoc.patch
-
#rhbz 1089545
ApplyPatch 0001-acpi-video-Add-use_native_backlight-quirks-for-Think.patch
#misc input fixes
-ApplyPatch 0001-hid-quirks-Add-NO_INIT_REPORTS-quirk-for-Synaptics-T.patch
ApplyPatch 0002-elantech-Fix-elantech-on-Gigabyte-U2442.patch
#rhbz 861573
@@ -1495,7 +1471,6 @@ ApplyPatch 0003-samsung-laptop-Add-broken-acpi-video-quirk-for-NC210.patch
ApplyPatch 0004-acpi-blacklist-Add-dmi_enable_osi_linux-quirk-for-As.patch
#CVE-2014-0181 rhbz 1094270 1094265
-ApplyPatch net-Fix-ns_capable-check-in-sock_diag_put_filterinfo.patch
ApplyPatch 1-5-netlink-Rename-netlink_capable-netlink_allowed.patch
ApplyPatch 2-5-net-Move-the-permission-check-in-sock_diag_put_filterinfo-to-packet_diag_dump.patch
ApplyPatch 3-5-net-Add-variants-of-capable-for-use-on-on-sockets.patch
@@ -1505,9 +1480,6 @@ ApplyPatch 5-5-net-Use-netlink_ns_capable-to-verify-the-permisions-of-netlink-me
#rhbz 1082266
ApplyPatch jme-fix-dma-unmap-error.patch
-# CVE-2014-3144 CVE-2014-3145 rhbz 1096775, 1096784
-ApplyPatch filter-prevent-nla-extensions-to-peek-beyond-the-end.patch
-
#rhbz 1096436
ApplyPatch 0001-synaptics-Add-min-max-quirk-for-the-ThinkPad-W540.patch
@@ -2329,6 +2301,9 @@ fi
# and build.
%changelog
+* Mon Jun 02 2014 Justin M. Forbes <jforbes at fedoraproject.org> - 3.14.5-100
+- Linux v3.14.5
+
* Thu May 29 2014 Josh Boyer <jwboyer at fedoraproject.org>
- CVE-2014-3917 DoS with syscall auditing (rhbz 1102571 1102715)
diff --git a/modsign-uefi.patch b/modsign-uefi.patch
index 17009c1..a3f3a56 100644
--- a/modsign-uefi.patch
+++ b/modsign-uefi.patch
@@ -283,9 +283,9 @@ index 0ff5407..ba76e57 100644
+ are used by the module signature checking to reject loading of modules
+ signed with a blacklisted key.
+
- menuconfig MODULES
- bool "Enable loadable module support"
- option modules
+ config PROFILING
+ bool "Profiling support"
+ help
diff --git a/kernel/module_signing.c b/kernel/module_signing.c
index 0b6b870..0a29b40 100644
--- a/kernel/module_signing.c
diff --git a/sources b/sources
index acf61ae..22e5166 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
b621207b3f6ecbb67db18b13258f8ea8 linux-3.14.tar.xz
-116f27cf17c3522716b6678b17516067 patch-3.14.4.xz
+a56bf05cb9033097198f9269bbcff130 patch-3.14.5.xz
More information about the scm-commits
mailing list