upstream update 4.10.2; apply fix for CVE-2017-2636

2017-03-13 16:54:12 +00:00
parent d84fdf5144
commit 352b804aa4
2 changed files with 319 additions and 4 deletions
--- a/12
+++ b/12
@@ -4,7 +4,7 @@
 pkgbase=linux               # Build stock -ARCH kernel
 #pkgbase=linux-custom       # Build kernel with a different name
 _srcname=linux-4.10
-pkgver=4.10.1
+pkgver=4.10.2
 pkgrel=1
 arch=('i686' 'x86_64')
 url="https://www.kernel.org/"
@@ -21,16 +21,17 @@ source=("https://www.kernel.org/pub/linux/kernel/v4.x/${_srcname}.tar.xz"
        '99-linux.hook'
        # standard config files for mkinitcpio ramdisk
        'linux.preset'
-        )
+        0001-tty-n_hdlc-get-rid-of-racy-n_hdlc_tbuf.patch)

 sha256sums=('3c95d9f049bd085e5c346d2c77f063b8425f191460fcd3ae9fe7e94e0477dc4b'
            'SKIP'
-            'da560125aa350f76f0e4a5b9373a0d0a1c27ccefe3b7bd9231724f3a3c4ebb9e'
+            '3e2c2ba9dd2c421ea4f7e10150cc5f5fa5fdbaffef5377988fabb7d6f7d65bab'
            'SKIP'
            '386051f19482672c871e7865fc62f5e2c8010d857729134ba13044734962e42c'
            '12a87284e2935cd17e2846a207cc76f1728531416523735d66ef8a0ae690884c'
            '834bd254b56ab71d73f59b3221f056c72f559553c04718e350ab2a3e2991afe0'
-            'ad6344badc91ad0630caacde83f7f9b97276f80d26a20619a87952be65492c65')
+            'ad6344badc91ad0630caacde83f7f9b97276f80d26a20619a87952be65492c65'
+            'd0b412416963cefbb9baa06ef055e2b9485e2b9f948da14dfe50ee863577405c')
 validpgpkeys=(
              'ABAF11C65A2970B130ABE3C479BE3E4300411886' # Linus Torvalds
              '647F28654894E3BD457199BE38DBBDC86092693E' # Greg Kroah-Hartman
@@ -47,6 +48,9 @@ prepare() {
  # add latest fixes from stable queue, if needed
  # http://git.kernel.org/?p=linux/kernel/git/stable/stable-queue.git

+  # patch for CVE-2017-2636)
+  patch -p1 -i "${srcdir}/0001-tty-n_hdlc-get-rid-of-racy-n_hdlc_tbuf.patch"
+
  cat "${srcdir}/config.${CARCH}" > ./.config

  if [ "${_kernelname}" != "" ]; then