diff options
| author | Justin M. Forbes <jforbes@redhat.com> | 2017-02-07 08:18:43 -0600 |
|---|---|---|
| committer | Justin M. Forbes <jforbes@redhat.com> | 2017-02-07 08:18:43 -0600 |
| commit | 29855d3561284f59a03343905534d21412bf3a2d (patch) | |
| tree | f9ef876889a7ad82e55032a036677f242c5d2e0e /kernel.spec | |
| parent | 5d58fd5ccc73cd5347020ed16e5c49865bfb2bca (diff) | |
| download | kernel-29855d3561284f59a03343905534d21412bf3a2d.tar.gz kernel-29855d3561284f59a03343905534d21412bf3a2d.tar.xz kernel-29855d3561284f59a03343905534d21412bf3a2d.zip | |
CVE-2017-5897 ip6_gre: Invalid reads in ip6gre_err (rhbz 1419848 1419851)
Diffstat (limited to 'kernel.spec')
| -rw-r--r-- | kernel.spec | 12 |
1 files changed, 10 insertions, 2 deletions
diff --git a/kernel.spec b/kernel.spec index 99f4a21da..696852a82 100644 --- a/kernel.spec +++ b/kernel.spec @@ -42,7 +42,7 @@ Summary: The Linux kernel # For non-released -rc kernels, this will be appended after the rcX and # gitX tags, so a 3 here would become part of release "0.rcX.gitX.3" # -%global baserelease 1 +%global baserelease 2 %global fedora_build %{baserelease} # base_sublevel is the kernel version we're starting with and patching @@ -125,7 +125,7 @@ Summary: The Linux kernel # Set debugbuildsenabled to 1 for production (build separate debug kernels) # and 0 for rawhide (all kernels are debug kernels). # See also 'make debug' and 'make release'. -%define debugbuildsenabled 1 +%define debugbuildsenabled 0 # Want to build a vanilla kernel build without any non-upstream patches? %define with_vanilla %{?_with_vanilla: 1} %{?!_with_vanilla: 0} @@ -599,6 +599,10 @@ Patch853: 0001-Work-around-for-gcc7-and-arm64.patch #CVE-2017-2596 rhbz 1417812 1417813 Patch854: kvm-fix-page-struct-leak-in-handle_vmon.patch +#CVE-2017-5897 rhbz 1419848 1419851 +Patch855: ip6_gre-fix-ip6gre_err-invalid-reads.patch + + # END OF PATCH DEFINITIONS %endif @@ -2169,6 +2173,10 @@ fi # # %changelog +* Tue Feb 07 2017 Justin M. Forbes <jforbes@fedoraproject.org> - 4.10.0-0.rc7.git0.2 +- Reenable debugging options. +- CVE-2017-5897 ip6_gre: Invalid reads in ip6gre_err (rhbz 1419848 1419851) + * Mon Feb 06 2017 Justin M. Forbes <jforbes@fedoraproject.org> - 4.10.0-0.rc7.git0.1 - Disable debugging options. - Linux v4.10-rc7 |