linux-hammerhead (3.4.0-1.12) xenial; urgency=low

  [ Andy Whitcroft ]

  * SAUCE: timeconst.pl -- fix use of defined on arrays
    - LP: #1549677

 -- Andy Whitcroft <apw@canonical.com>  Thu, 25 Feb 2016 09:02:21 +0000

linux-hammerhead (3.4.0-1.11) xenial; urgency=low

  [ Andy Whitcroft ]

  * [Config] depend on kmod in preference to module-init-tools -- part 2
    - LP: #1541917

 -- Andy Whitcroft <apw@canonical.com>  Wed, 24 Feb 2016 18:41:29 +0000

linux-hammerhead (3.4.0-1.10) xenial; urgency=low

  [ Andy Whitcroft ]

  * [Config] depend on kmod in preference to module-init-tools
    - LP: #1541917

 -- Andy Whitcroft <apw@canonical.com>  Wed, 24 Feb 2016 18:09:45 +0000

linux-hammerhead (3.4.0-1.9) utopic; urgency=low

  [ Upstream Kernel Changes ]

  * epoll: Add a flag, EPOLLWAKEUP, to prevent suspend while epoll events
    are ready
  * epoll: Fix user space breakage related to EPOLLWAKEUP

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Sun, 20 Jul 2014 04:30:38 -0300

linux-hammerhead (3.4.0-1.8) utopic; urgency=low

  [ Javier Martinez Canillas ]

  * SAUCE: (no-up) apparmor: fix bug that constantly spam the console
    - LP: #1323526

  [ John Johansen ]

  * Revert "SAUCE: apparmor: fix bad lock balance when introspecting
    policy"
  * Revert "SAUCE: apparmor: fix memleak of replacedby struct"
  * Revert "SAUCE: apparmor: fix memleak of the profile hash"
  * Revert "SAUCE: apparmor: allocate path lookup buffers during init"
  * Revert "SAUCE: apparmor: fix unix domain sockets to be mediated on
    connection"
  * Revert "SAUCE: (no-up) apparmor: Sync to apparmor 3 - alpha 4 snapshot"
  * SAUCE: (no-up) apparmor: Sync to apparmor 3 - alpha 6 snapshot
  * SAUCE: (no-ip) apparmor: update configs for apparmor 3 alpha 6
  * SAUCE: (no-up) apparmor: fix apparmor spams log with warning message
    - LP: #1308761
  * SAUCE: (no-up) apparmor: fix refcount bug in apparmor pivotroot
    - LP: #1308765
  * SAUCE: (no-up) apparmor: fix apparmor refcount bug in apparmor_kill
    - LP: #1308764
  * SAUCE: (no-up) apparmor: use custom write_is_locked macro
    - LP: #1323530
  * SAUCE: (no-up) apparmor fix: remove unused cxt var for unix_sendmsg
  * SAUCE: (no-up) apparmor: fix disconnected bind mnts reconnection
    - LP: #1319984

  [ Tyler Hicks ]

  * [Config] CONFIG_ECRYPT_FS=y
  * [Config] Sync LSM config options
  * [Config] Sync crypto config options
  * [Config] Sync IPsec config options

  [ Upstream Kernel Changes ]

  * Revert "kernel/sys.c: fix stack memory content leak via UNAME26"
  * Revert "ptrace: ensure arch_ptrace/ptrace_request can never race with
    SIGKILL"
  * Revert "ptrace: introduce signal_wake_up_state() and
    ptrace_signal_wake_up()"
  * Revert "perf: Treat attr.config as u64 in perf_swevent_init()"
  * Revert "ARM: 7809/1: perf: fix event validation for software group
    leaders"
    - CVE-2013-4254
  * kernel/sys.c: fix stack memory content leak via UNAME26
    - CVE-2012-0957
  * use clamp_t in UNAME26 fix
    - CVE-2012-0957
  * ptrace: introduce signal_wake_up_state() and ptrace_signal_wake_up()
    - CVE-2013-0871
  * ptrace: ensure arch_ptrace/ptrace_request can never race with SIGKILL
    - CVE-2013-0871
  * wake_up_process() should be never used to wakeup a TASK_STOPPED/TRACED
    task
    - CVE-2013-0871
  * net: fix incorrect credentials passing
    - CVE-2013-1979
  * perf: Treat attr.config as u64 in perf_swevent_init()
    - CVE-2013-2094
  * iscsi-target: fix heap buffer overflow on error
    - CVE-2013-2850
  * ARM: 7809/1: perf: fix event validation for software group leaders
    - CVE-2013-4254
  * n_tty: Fix n_tty_write crash when echoing in raw mode
    - CVE-2014-0196
  * floppy: ignore kernel-only members in FDRAWCMD ioctl input
    - CVE-2014-1737
  * floppy: don't write kernel-only members to FDRAWCMD ioctl output
    - CVE-2014-1738
  * futex: Test for pi_mutex on fault in futex_wait_requeue_pi()
    - CVE-2014-3153
  * futex: Fix bug in WARN_ON for NULL q.pi_state
    - CVE-2014-3153
  * futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi()
    - CVE-2014-3153
  * futex: Handle futex_pi OWNER_DIED take over correctly
    - CVE-2014-3153
  * futex: avoid wake_futex() for a PI futex_q
    - CVE-2014-3153
  * futex: Revert "futex: Mark get_robust_list as deprecated"
    - CVE-2014-3153
  * futex: fix handling of read-only-mapped hugepages
    - CVE-2014-3153
  * futex: Add another early deadlock detection check
    - CVE-2014-3153
  * futex: Prevent attaching to kernel threads
    - CVE-2014-3153
  * futex-prevent-requeue-pi-on-same-futex.patch futex: Forbid uaddr ==
    uaddr2 in futex_requeue(..., requeue_pi=1)
    - CVE-2014-3153
  * futex: Validate atomic acquisition in futex_lock_pi_atomic()
    - CVE-2014-3153
  * futex: Always cleanup owner tid in unlock_pi
    - CVE-2014-3153
  * futex: Make lookup_pi_state more robust
    - CVE-2014-3153

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Fri, 11 Jul 2014 17:01:29 -0300

linux-hammerhead (3.4.0-1.7) utopic; urgency=low

  [ Ricardo Salveti de Araujo ]

  * [Config] CONFIG_EXT3_FS_POSIX_ACL=y, CONFIG_EXT3_FS_SECURITY=y
  * [Config] Enable ext2 and ext4 security-related options
  * Initial release for utopic (LP: #1289455)

  [ Upstream Kernel Changes ]

  * power: batt_therm: add POWER_SUPPLY_PROP_ONLINE
  * power: report correct type in sysfs for POWER_SUPPLY_TYPE_BMS
  * exec/ptrace: fix get_dumpable() incorrect tests
    - LP: #1266546
    - CVE-2013-2929

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Fri, 27 Jun 2014 18:39:54 -0300

linux-hammerhead (3.4.0-1.6) trusty; urgency=low

  [ Ricardo Salveti de Araujo ]

  * Updating package meta-info
  * Updating getabis to retrieve the kernel from the archive
  * Initial release (LP: #1289455)

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Fri, 07 Mar 2014 13:25:28 -0300

linux-hammerhead (3.4.0-1.5) trusty; urgency=low

  [ Kees Cook ]

  * SAUCE: (no-up) Yama: add link restrictions

  [ Ricardo Salveti de Araujo ]

  * [Config] Enable Stacked Yama
  * [Config] CONFIG_RT_GROUP_SCHED=n
    - LP: #1284731
  * [Config] CONFIG_TMPFS_POSIX_ACL=y
    - LP: #1286184

  [ Upstream Kernel Changes ]

  * [1/2] backlight: lm3630: disable invalid check in bl_set_intensity
  * Yama: add additional ptrace scopes
  * Yama: higher restrictions should block PTRACE_TRACEME
  * security: allow Yama to be unconditionally stacked

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Fri, 07 Mar 2014 03:45:55 -0300

linux-hammerhead (3.4.0-0.4) trusty; urgency=low

  [ Ricardo Salveti de Araujo ]

  * [Config] Building BCMDHD as module (so it can be loaded during
    android's init)
  * getabis should use the PPA until it's available in the archive

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Fri, 07 Feb 2014 02:21:41 -0200

linux-hammerhead (3.4.0-0.3) trusty; urgency=low

  [ Upstream Kernel Changes ]

  * perf-script-json-export.txt: fixing man page header generation

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Thu, 06 Feb 2014 17:48:27 -0200

linux-hammerhead (3.4.0-0.2) trusty; urgency=low

  * First upload based on https://android.googlesource.com/kernel/msm.git
    android-msm-hammerhead-3.4-kitkat-mr1

 -- Ricardo Salveti de Araujo <ricardo.salveti@canonical.com>  Wed, 05 Feb 2014 23:43:25 -0200

linux-hammerhead (3.4.0-0.1) saucy; urgency=low

  * Unused entry

 -- Andy Whitcroft <apw@canonical.com>  Mon, 07 Oct 2013 18:23:03 +0100
