gnu: linux-libre: Add fixes for CVE-2016-8655 et al.

* gnu/packages/linux.scm (linux-libre, linux-libre-arm-generic):
Add patches for CVE-2016-8655 and the vulnerability described in
<http://seclists.org/oss-sec/2016/q4/644>.
This commit is contained in:
Mark H Weaver 2016-12-09 18:19:22 -05:00
parent 1134e99d86
commit 6b2921c3ac
No known key found for this signature in database
GPG Key ID: 7CEF29847562C516

View File

@ -330,7 +330,25 @@ It has been modified to remove all non-free binary blobs.")
(make-linux-libre "4.8.13"
"1n1bhasqih8acag2glwaqsh76avpinvchvwg6g4q1pfm2vs1499x"
%intel-compatible-systems
#:configuration-file kernel-config))
#:configuration-file kernel-config
#:patches
(list %boot-logo-patch
(origin
(method url-fetch)
(uri "\
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable-rc.git/patch/?id=9bd018da073c1360c260d2e11e0da9b24911c4a8")
(file-name "linux-libre-4.8-CVE-2016-8655.patch")
(sha256
(base32
"1pq80vnwv01l0rj2g0r7i4rjnx3ll8iq4rpl6w3fmc77agdb3bpq")))
(origin
(method url-fetch)
(uri "\
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable-rc.git/patch/?id=af8a38c78233a3356c626c1fabfc93c66094e6e8")
(file-name "linux-libre-4.8-iovec-fix.patch")
(sha256
(base32
"082a5dpkgsc0mjlzqc03d815xx8gdqk0s4glvi4y1b9vl8c4vmwy"))))))
(define-public linux-libre-4.4
(make-linux-libre "4.4.37"
@ -371,7 +389,25 @@ https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable-rc.git/patch/?i
%linux-libre-hash
'("armhf-linux")
#:defconfig "multi_v7_defconfig"
#:extra-version "arm-generic"))
#:extra-version "arm-generic"
#:patches
(list %boot-logo-patch
(origin
(method url-fetch)
(uri "\
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable-rc.git/patch/?id=9bd018da073c1360c260d2e11e0da9b24911c4a8")
(file-name "linux-libre-4.8-CVE-2016-8655.patch")
(sha256
(base32
"1pq80vnwv01l0rj2g0r7i4rjnx3ll8iq4rpl6w3fmc77agdb3bpq")))
(origin
(method url-fetch)
(uri "\
https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable-rc.git/patch/?id=af8a38c78233a3356c626c1fabfc93c66094e6e8")
(file-name "linux-libre-4.8-iovec-fix.patch")
(sha256
(base32
"082a5dpkgsc0mjlzqc03d815xx8gdqk0s4glvi4y1b9vl8c4vmwy"))))))
;;;